Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an incorrectly freed SKB and a counter type elevation error that could lead to a memory leak...

PT-2025-54020

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak was identified and resolved in the mt7996 mcu exit routine within the mt76 module for the mt7996 wireless chipset. The issue involved failing to properly purge memory queue...

PT-2025-53993

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw related to Bluetooth ISO Isochronous connections. Specifically, the issue involves incorrect locking and validity checks concerning the sk state variable...

PT-2025-53924

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's iwlwifi component related to the mei driver. Specifically, a potential NULL pointer dereference can occur after an attempt to clone an SKB Socket Buff...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992370)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992370 advisory. In the Linux kernel, the following vulnerability has been resolved: kcm: annotate data-races around kcm-rxpsock kcm-rxpsock can be read locklessly in kcmrfree...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-992670)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992670 advisory. In the Linux kernel, the following vulnerability has been resolved: ipvlan: Dont Use skb-sk in ipvlanprocessv4,6outbound Raw packet from PFPACKET socket ontop of an...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992659)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992659 advisory. In the Linux kernel, the following vulnerability has been resolved: mptcp: always handle address removal under msk socket lock Syzkaller reported a lockdep splat in...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992240)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992240 advisory. In the Linux kernel, the following vulnerability has been resolved: bpf: make sure skb-len != 0 when redirecting to a tunneling device syzkaller managed to trigger...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-992678)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992678 advisory. In the Linux kernel, the following vulnerability has been resolved: net: usb: smsc75xx: Limit packet length to skb-len Packet length retrieved from skb data may be...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992427)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992427 advisory. In the Linux kernel, the following vulnerability has been resolved: ice: xsk: prohibit usage of non-balanced queue id Fix the following scenario: 1. ethtool -L $IFAC...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992663)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992663 advisory. In the Linux kernel, the following vulnerability has been resolved: netsched: skbprio: Remove overly strict queue assertions In the current implementation, skbprio...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992645)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992645 advisory. In the Linux kernel, the following vulnerability has been resolved: net: gso: fix ownership in udpgsosegment In udpgsosegment the skb destructor is removed before...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992627)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992627 advisory. In the Linux kernel, the following vulnerability has been resolved: netfilter: socket: Lookup orig tuple for IPv6 SNAT nfsklookupslowv4 does the conntrack lookup for...

PT-2025-53956

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw related to TCP socket handling. Specifically, the sk error queue is not properly purged during socket closure, potentially leading to memory leaks and...

PT-2025-54121

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.1.0-rc5+ Description The Linux kernel contains a flaw in the RDMA/rxe module where a null pointer dereference can occur in the rxe qp do cleanup function when socket creation fails. This issue arises due to the...

PT-2025-54067

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to memory management within the mlx5 driver. Specifically, a memory leak occurs during Precision Time Protocol PTP resynchronization operations,...

CVE-2025-68161

The Socket Appender in Apache Log4j Core versions 2.0-beta9 through 2.25.2 does not perform TLS hostname verification of the peer certificate, even when the verifyHostName https://logging.apache.org/log4j/2.x/manual/appenders/network.htmlSslConfiguration-attr-verifyHostName configuration attribut...

Linux Distros Unpatched Vulnerability : CVE-2023-54115

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - pcmcia: rsrcnonstatic: Fix memory leak in nonstaticreleaseresourcedb When nonstaticreleaseresourcedb frees all resources associated with an PCMCIA socket, it...

CVE-2025-68372

In the Linux kernel, the following vulnerability has been resolved: nbd: defer config put in recvwork There is one uaf issue in recvwork when running NBDCLEARSOCK and NBDCMDRECONFIGURE: nbdgenlconnect // confref=2 connect and recvwork A nbdopen // confref=3 recvwork A done // confref=2 NBDCLEARSO...

bpf: Check skb->transport_header is set in bpf_skb_check_mtu

...