Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: crypto: caam – Prevent crashes during suspension with iMX8QM/iMX8ULP Since the CAAM on these SoCs is managed by another ARM core, called the SECO Security Controller on iMX8QM and Secure Enclave on iMX8ULP. The SECO also...

SUSE CVE-2025-39722

In the Linux kernel, the following vulnerability has been resolved: crypto: caam - Prevent crash on suspend with iMX8QM / iMX8ULP Since the CAAM on these SoCs is managed by another ARM core, called the SECO Security Controller on iMX8QM and Secure Enclave on iMX8ULP, which also reserves access to...

CVE-2025-39722

The CVE-2025-39722 issue is in the Linux kernel crypto/caam suspend path for iMX8QM/iMX8ULP SoCs. Root cause: CAAM register access during suspend is reserved by SECO/OPTEE, causing suspend-time crashes unless page 0 is protected; a new state variable no_page0 tracks external reservations, and sus...

CVE-2025-39722 crypto: caam - Prevent crash on suspend with iMX8QM / iMX8ULP

In the Linux kernel, the following vulnerability has been resolved: crypto: caam - Prevent crash on suspend with iMX8QM / iMX8ULP Since the CAAM on these SoCs is managed by another ARM core, called the SECO Security Controller on iMX8QM and Secure Enclave on iMX8ULP, which also reserves access to...

CVE-2025-39722 crypto: caam - Prevent crash on suspend with iMX8QM / iMX8ULP

In the Linux kernel, the following vulnerability has been resolved: crypto: caam - Prevent crash on suspend with iMX8QM / iMX8ULP Since the CAAM on these SoCs is managed by another ARM core, called the SECO Security Controller on iMX8QM and Secure Enclave on iMX8ULP, which also reserves access to...

Exploit for Integer Overflow or Wraparound in Tesla Model_3_Firmware

CVE-2025-2082 – Function Pointer Overwrite PoV VCSEC-style...

PT-2025-36316

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's crypto/caam module that can lead to a system crash during suspend operations on iMX8QM and iMX8ULP SoCs. This occurs because the CAAM on these systems...

📄 HP Sure Access Enterprise / Sure Click Enterprise Missing Authentication

SEC Consult conducted penetration tests on Sure Access in 2022 and on Sure Click in 2023 and established a contact with HP afterwards. After several rounds of emails and meetings with the product development team, the scope and limitations of Sure Access and Sure Click were made clear. This...

PHOENIX CONTACT CHARX SEC 命令注入漏洞

The PHOENIX CONTACT CHARX SEC is a series of AC charging controllers from PHOENIX CONTACT, Germany. An input validation error vulnerability exists in PHOENIX CONTACT CHARX SEC-3000 version 1.5.1 and prior versions, which could allow a remote attacker to execute remote code...

PHOENIX CONTACT CHARX SEC Input Validation Error Vulnerability

PHOENIX CONTACT CHARX SEC is a series of AC charge controllers from PHOENIX CONTACT, Germany. An input validation error vulnerability exists in PHOENIX CONTACT CHARX SEC-3000 v1.5.1 prior to v1.5.1, which stems from incorrect input validation and allows a low-privileged, local attacker to gain ro...

The vulnerability of the class verifier in the IBM J9 VM allows a hacker to disable the security controller and increase their privileges.

The vulnerability of the class verifier in the IBM J9 VM is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to disable the security controller and gain increased privileges...