CVE-2026-23258 net: liquidio: Initialize netdev pointer before queue setup

In the Linux kernel, the following vulnerability has been resolved: net: liquidio: Initialize netdev pointer before queue setup In setupnicdevices, the netdev is allocated using allocetherdevmq. However, the pointer to this structure is stored in oct-propsi.netdev only after the calls to...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414559)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414559 advisory. fs/nfs/nfs4client.c in the Linux kernel before 5.13.4 has incorrect connection-setup ordering, which allows operators of remote NFSv4 servers to cause a denial of...

CVE-2025-38722 habanalabs: fix UAF in export_dmabuf()

In the Linux kernel, the following vulnerability has been resolved: habanalabs: fix UAF in exportdmabuf As soon as we'd inserted a file reference into descriptor table, another thread could close it. That's fine for the case when all we are doing is returning that descriptor to userland it's a...

SUSE CVE-2025-38216

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Restore context entry setup order for aliased devices Commit 2031c469f816 "iommu/vt-d: Add support for static identity domain" changed the context entry setup during domain attachment from a set-and-check policy to a...

DEBIAN-CVE-2025-38216

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Restore context entry setup order for aliased devices Commit 2031c469f816 "iommu/vt-d: Add support for static identity domain" changed the context entry setup during domain attachment from a set-and-check policy to a...

UBUNTU-CVE-2025-38216

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Restore context entry setup order for aliased devices Commit 2031c469f816 "iommu/vt-d: Add support for static identity domain" changed the context entry setup during domain attachment from a set-and-check policy to a...

CVE-2025-38216

CVE-2025-38216 (Linux kernel) affects iommu/vt-d context entry setup order for aliased PCI devices behind PCIe-to-PCI bridges. The issue arose after commit 2031c469f816 changed domain attach context entry setup from set-and-check to clear-and-reset, regressing PCI aliased devices and causing inpu...

CVE-2025-38216 iommu/vt-d: Restore context entry setup order for aliased devices

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Restore context entry setup order for aliased devices Commit 2031c469f816 "iommu/vt-d: Add support for static identity domain" changed the context entry setup during domain attachment from a set-and-check policy to a...

SUSE CVE-2024-35977

In the Linux kernel, the following vulnerability has been resolved: platform/chrome: crosecuart: properly fix race condition The crosecuartprobe function calls devmserdevdeviceopen before it calls serdevdevicesetclientops. This can trigger a NULL pointer dereference: BUG: kernel NULL pointer...