[SECURITY] Fedora 44 Update: pgbouncer-1.25.2-1.fc44

pgbouncer is a lightweight connection pooler for PostgreSQL and uses libevent for low-level socket handling...

Exploit for Incorrect Resource Transfer Between Spheres in Linux Linux_Kernel

CVE-2026-31431 Linux Privileg...

CVE-2026-23120

In the Linux kernel, the following vulnerability has been resolved: l2tp: avoid one data-race in l2tptunneldelwork We should read sk-sksocket only when dealing with kernel sockets. syzbot reported the following data-race: BUG: KCSAN: data-race in l2tptunneldelwork / skcommonrelease write to...

Linux Distros Unpatched Vulnerability : CVE-2025-40139

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - smc: Use skdstget and dstdevrcu in in smcclcprfxset. smcclcprfxset is called during connect and not under RCU nor RTNL. Using skdstgetsk-dev could trigger UAF...

EUVD-2017-15414

Malware in sbrugna...

EUVD-2011-1169

Malware in sbrugna...

EUVD-2006-7231

Malware in sbrugna...

EUVD-2018-13796

Malware in sbrugna...

EUVD-2023-58762

Malicious code in bioql PyPI...

EUVD-2025-22682

Malicious code in bioql PyPI...

EUVD-2022-54860

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2023-53198

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - raw: Fix NULL deref in rawgetnext. Dae R. Jeong reported a NULL deref in rawgetnext 0. It seems that the repro was running these sequences in parallel so that o...

CVE-2025-38475 smc: Fix various oops due to inet_sock type confusion.

In the Linux kernel, the following vulnerability has been resolved: smc: Fix various oops due to inetsock type confusion. syzbot reported weird splats 01 in cipsov4socksetattr while freeing inetsksk-inetopt. The address was freed multiple times even though it was read-only memory...

SUSE-SU-2025:20449-1 Security update for kernel-livepatch-MICRO-6-0_Update_4

This update for kernel-livepatch-MICRO-6-0Update4 fixes the following issues: - CVE-2024-56605: Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2capsockcreate bsc1235062 - CVE-2024-56582: btrfs: fix use-after-free in btrfsencodedreadendio bsc1235129 - CVE-2024-56601: net: inet: do...

CVE-2025-38079

The CVE-2025-38079 entry concerns a vulnerability in the Linux kernel crypto/algif_hash: a double free in hash_accept when accept(2) is used on an algif_hash socket with MSG_MORE and crypto_ahash_import fails. This leads to a slab-use-after-free due to sk2 being freed in both hash_accept and af_a...

CVE-2023-53072

CVE-2023-53072 (Linux kernel, MPTCP) : A use-after-free UaF at token lookup during MPTCP passive socket initialization was fixed by changing cleanup order to destroy unaccepted MPTCP sockets via a workqueue, ensuring the MPC subflow cleanup ends with the msk released. The fix reuses the MPTCP_WOR...

[SECURITY] Fedora 42 Update: pgbouncer-1.24.1-2.fc42

pgbouncer is a lightweight connection pooler for PostgreSQL and uses libevent for low-level socket handling...

[SECURITY] Fedora 40 Update: pgbouncer-1.24.1-2.fc40

pgbouncer is a lightweight connection pooler for PostgreSQL and uses libevent for low-level socket handling...

[SECURITY] Fedora 41 Update: pgbouncer-1.24.1-2.fc41

pgbouncer is a lightweight connection pooler for PostgreSQL and uses libevent for low-level socket handling...

Linux Distros Unpatched Vulnerability : CVE-2024-53210

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - s390/iucv: MSGPEEK causes memory leak in iucvsockdestruct Passing MSGPEEK flag to skbrecvdatagram increments skb refcount skb-users and iucvsockrecvmsg does not...