PT-2025-8820

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A potential use-after-free UAF access issue has been identified in the Linux kernel, specifically in the scsi: ufs: bsg component. The issue arises from not setting bsg queue to NULL aft...

tuned security update

2.22.1-5.0.1 - Fix RPS/XPS and busy polling optimization not getting applied Orabug: 32153315 - Fix error in uninstalling tuned Orabug: 351528377 - Updated patch with the more recent version Orabug: 30730976 - Set AMD CPU freq governor to ondemand when unapplying cpu tunings Orabug: 30033199 -...

The vulnerability of the Microsoft Message Queuing (MSMQ) queue service on Microsoft Windows operating systems allows a perpetrator to execute arbitrary code.

The vulnerability of the Microsoft Message Queuing MSMQ service on Microsoft Windows operating systems is related to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker to execute arbitrary code remotely...

PT-2025-3667 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue arises in the Linux kernel's netfs subsystem, specifically when handling the copy to cache on write-begin operation for ceph filesystems. At the end of netfs unlock read foli...

CVE-2024-50154

...

CVE-2024-50162

...

kernel: net: avoid potential underflow in qdisc_pkt_len_init() with UFO

In the Linux kernel, the following vulnerability has been resolved: net: avoid potential underflow in qdiscpktleninit with UFO After commit 7c6d2ecbda83 "net: be more gentle about silly gso requests coming from user" virtionethdrtoskb had sanity check to detect malicious attempts from user space ...

kernel: blk-rq-qos: fix crash on rq_qos_wait vs. rq_qos_wake_function race

In the Linux kernel, the following vulnerability has been resolved: blk-rq-qos: fix crash on rqqoswait vs. rqqoswakefunction race We're seeing crashes from rqqoswakefunction that look like this: BUG: unable to handle page fault for address: ffffafe180a40084 PF: supervisor write access in kernel...

PT-2024-9463 · Microsoft · Message Queue +1

Name of the Vulnerable Software and Affected Versions: Microsoft Message Queue MSMQ affected versions not specified Description: The issue is related to a remote code execution problem. It is associated with the use of memory after it has been freed, which can be exploited by a remote attacker to...

PT-2024-9345 · Microsoft · Message Queue +1

Name of the Vulnerable Software and Affected Versions: Microsoft Message Queue MSMQ affected versions not specified Description: The issue is related to an uncontrolled consumption of resources in Microsoft Message Queue MSMQ, which can lead to a denial of service. This can be exploited by a remo...

PT-2024-9439 · Microsoft · Message Queue +1

Name of the Vulnerable Software and Affected Versions: Microsoft Message Queue MSMQ affected versions not specified Description: The issue is related to a remote code execution problem. It is associated with the use of memory after it has been freed. This could allow a remote attacker to execute...

Microsoft Message Queuing 资源管理错误漏洞

Microsoft Message Queuing is used to implement solutions for asynchronous and synchronous scenarios that require high performance. A resource management error vulnerability exists in Microsoft Message Queuing. An attacker could exploit this vulnerability to remotely execute code. The following...

PT-2024-36983

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.12.0 Description A vulnerability in the Linux kernel has been resolved, related to the virtio net module. When virtnet close is followed by virtnet open, some TX completions can remain unconsumed, leading to a...

Ruijie Networks ReyeeOS 安全漏洞

Ruijie Networks ReyeeOS is a router from Ruijie Networks China. A security vulnerability exists in Ruijie Networks ReyeeOS versions 2.206.x through 2.320.x prior. An attacker could use this vulnerability to send messages to certain topics using an MQTT client connected with device credentials...

The vulnerability of the blk-mq component in the Linux operating system’s kernel allows a hacker to cause a service failure.

The vulnerability of the blk-mq component in the Linux operating system’s kernel is related to the assignment of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...

PT-2025-3661 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue concerns the RDMA/bnxt re component in the Linux kernel, where the maximum number of SGEs Scatter-Gather Elements for a Work Request is not properly handled. Specifically, Ge...

SUSE CVE-2024-53118

In the Linux kernel, the following vulnerability has been resolved: vsock: Fix skerrorqueue memory leak Kernel queues MSGZEROCOPY completion notifications on the error queue. Where they remain, until explicitly recved. To prevent memory leaks, clean up the queue when the socket is destroyed...

SUSE CVE-2024-53119

In the Linux kernel, the following vulnerability has been resolved: virtio/vsock: Fix acceptqueue memory leak As the final stages of socket destruction may be delayed, it is possible that virtiotransportrecvlisten will be called after the acceptqueue has been flushed, but before the SOCKDONE flag...

PT-2025-2833

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved, related to the nvme-rdma module. The issue occurs when the admin q is destroyed while creating a controller, causing the kernel to...

The vulnerability of AdvaBuild software for designing and managing construction projects lies in the insufficient protection of command queues, allowing attackers to open arbitrary files.

The vulnerability of AdvaBuild software for designing and managing construction projects is related to insufficient protection of the command queue. Exploiting this vulnerability could allow a malicious actor to open arbitrary files...