SUSE-SU-2025:20807-1 Security update for kernel-livepatch-MICRO-6-0_Update_4

This update for kernel-livepatch-MICRO-6-0Update4 fixes the following issues: - CVE-2025-21692: net: sched: fix ets qdisc OOB Indexing bsc1237048 - CVE-2025-21791: vrf: use RCU protection in l3mdevl3out bsc1240744 - CVE-2024-53168: sunrpc: fix one UAF issue caused by sunrpc kernel tcp socket...

SUSE-SU-2025:20835-1 Security update for kernel-livepatch-MICRO-6-0_Update_5

This update for kernel-livepatch-MICRO-6-0Update5 fixes the following issues: - CVE-2025-21692: net: sched: fix ets qdisc OOB Indexing bsc1237048 - CVE-2025-21791: vrf: use RCU protection in l3mdevl3out bsc1240744 - CVE-2025-38089: sunrpc: handle SVCGARBAGE during svc auth processing as auth erro...

SUSE-SU-2025:20833-1 Security update for kernel-livepatch-MICRO-6-0_Update_3

This update for kernel-livepatch-MICRO-6-0Update3 fixes the following issues: - CVE-2024-50154: tcp/dccp: Don't use timerpending in reqskqueueunlink bsc1233072 - CVE-2025-21692: net: sched: fix ets qdisc OOB Indexing bsc1237048 - CVE-2025-21791: vrf: use RCU protection in l3mdevl3out bsc1240744 -...

SUSE-SU-2025:20832-1 Security update for kernel-livepatch-MICRO-6-0_Update_2

This update for kernel-livepatch-MICRO-6-0Update2 fixes the following issues: - CVE-2024-50154: tcp/dccp: Don't use timerpending in reqskqueueunlink bsc1233072 - CVE-2025-21692: net: sched: fix ets qdisc OOB Indexing bsc1237048 - CVE-2025-21791: vrf: use RCU protection in l3mdevl3out bsc1240744 -...

CVE-2023-53685 tun: Fix memory leak for detached NAPI queue.

In the Linux kernel, the following vulnerability has been resolved: tun: Fix memory leak for detached NAPI queue. syzkaller reported 0 memory leaks of sk and skb related to the TUN device with no repro, but we can reproduce it easily with: struct ifreq ifr = int fdtun, fdtmp; char buf4 = ; fdtun ...

CVE-2023-53661 bnxt: avoid overflow in bnxt_get_nvram_directory()

In the Linux kernel, the following vulnerability has been resolved: bnxt: avoid overflow in bnxtgetnvramdirectory The value of an arithmetic expression is subject of possible overflow due to a failure to cast operands to a larger data type before performing arithmetic. Used macro for multiplicati...

CVE-2022-50555

CVE-2022-50555 (Linux kernel tipc_topsrv_accept) has a concrete fix across multiple advisories. The issue allowed a null pointer dereference when srv->listener could be NULL if tipc_topsrv_stop() ran concurrently with tipc_topsrv_accept. The patch adds a protection: check srv->listener unde...

CVE-2022-50518 parisc: Fix locking in pdc_iodc_print() firmware call

In the Linux kernel, the following vulnerability has been resolved: parisc: Fix locking in pdciodcprint firmware call Utilize pdclock spinlock to protect parallel modifications of the iodcdbuf buffer, check length to prevent buffer overflow of iodcdbuf, drop the iodcretbuf buffer and fix some wro...

EUVD-2025-32872

Insufficiently Protected Credentials in the Crowdstrike connector can lead to Crowdstrike credentials being leaked. A malicious user can access cached credentials from a Crowdstrike connector in another space by creating and running a Crowdstrike connector in a space to which they have access...

SUSE-SU-2025:03469-1 Security update for the Linux Kernel RT (Live Patch 6 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506001020 fixes several issues. The following security issues were fixed: - CVE-2025-38477: net/sched: schqfq: Fix race condition on qfqaggregate bsc1247315. - CVE-2024-53168: sunrpc: fix one UAF issue caused by sunrpc kernel tcp socket bsc1243650. -...

SUSE-SU-2025:03468-1 Security update for the Linux Kernel RT (Live Patch 4 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506001014 fixes several issues. The following security issues were fixed: - CVE-2025-38477: net/sched: schqfq: Fix race condition on qfqaggregate bsc1247315. - CVE-2024-53168: sunrpc: fix one UAF issue caused by sunrpc kernel tcp socket bsc1243650. -...

CVE-2025-11314

A vulnerability has been found in Tipray 厦门天锐科技股份有限公司 Data Leakage Prevention System 天锐数据泄露防护系统 1.0. Affected is the function findRolePage of the file findSingConfigPage.do. Such manipulation of the argument sort leads to sql injection. The attack may be launched remotely. The exploit has been...

SUSE CVE-2023-53608

In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix potential UAF of struct nilfsscinfo in nilfssegctorthread The finalization of nilfssegctorthread can race with nilfssegctorkillthread which terminates that thread, potentially causing a use-after-free BUG as KASAN...

EUVD-2009-1332

Malware in sbrugna...

EUVD-2020-3115

Malware in sbrugna...

EUVD-2007-2379

Malware in sbrugna...

EUVD-2013-3884

Malware in sbrugna...

EUVD-2004-1928

Malware in sbrugna...

EUVD-2011-1335

Malware in sbrugna...

EUVD-2016-2285

Malware in sbrugna...