35 matches found
USN-8529-1: Linux kernel vulnerabilities
It was discovered that a logic flaw existed in the XFRM ESP-in-TCP subsystem in the Linux kernel when handling socket buffer fragments. This flaw is known as Fragnesia. A local attacker could use this to escalate privileges, or possibly escape a container. CVE-2026-43503 Several security issues...
CVE-2026-44499 ZEBRA: Permanent Block Discovery Halt via Gossip Queue Saturation and Syncer Poisoning
ZEBRA is a Zcash node written entirely in Rust. Prior to version 4.4.0, a composite denial-of-service vulnerability in Zebra's block discovery pipeline allows an unauthenticated remote attacker to permanently halt all new block discovery on a targeted node. The attack exploits three independent...
USN-7864-1 linux-gcp, linux-gcp-6.8, linux-gke vulnerabilities
Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...
EUVD-2020-18320
Malware in sbrugna...
EUVD-2018-6526
Malware in sbrugna...
EUVD-2022-34838
Malicious code in bioql PyPI...
PT-2025-29021
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A flaw was identified in the Linux kernel's nvmem subsystem, specifically within the zynqmp nvmem driver. A recent change introduced an expectation for the device pointer to be passed ...
Linux Distros Unpatched Vulnerability : CVE-2023-39193
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the Netfilter subsystem in the Linux kernel. The sctpmtcheck did not validate the flagcount field. This flaw allows a local privileged...
Linux Distros Unpatched Vulnerability : CVE-2021-42739
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The firewire subsystem in the Linux kernel through 5.14.13 has a buffer overflow related to drivers/media/firewire/firedtv-avc.c and...
PT-2025-30753
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the drm/xe subsystem related to handling device wedges. Specifically, the issue occurs when a device wedges during a GuC upload, leading to an...
The vulnerability of the kvm_for_each_vcpu() function in the KVM virtualization subsystem of Linux kernels allows a attacker to cause a service failure.
The vulnerability of the kvmforeachvcpu function in the KVM virtualization subsystem of Linux operating systems is related to errors in pointer manipulation when processing the createdvcpus parameter. Exploiting this vulnerability can allow a remote attacker to trigger a service failure...
LSN-0100-1 Kernel Live Patch Security Notice
It was discovered that the SMB network file sharing protocol implementation in the Linux kernel did not properly handle certain error conditions, leading to a use-after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary...
Ubuntu 18.04 ESM / 20.04 LTS : Linux kernel vulnerabilities (USN-6548-1)
The remote Ubuntu 18.04 ESM / 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6548-1 advisory. It was discovered that Spectre-BHB mitigations were missing for Ampere processors. A local attacker could potentially use this to expose...
SUSE-SU-2023:3607-1 Security update for the Linux Kernel (Live Patch 23 for SLE 15 SP3)
This update for the Linux Kernel 5.3.18-1503005990 fixes several issues. The following security issues were fixed: - CVE-2023-32233: Fixed a use-after-free in Netfilter nftables when processing batch requests bsc1211187. - CVE-2023-2156: Fixed a flaw in the networking subsystem within the handlin...
kernel: u8 overflow problem in cfg80211_update_notlisted_nontrans()
A buffer overflow flaw was found in the u8 overflow in cfg80211updatenotlistednontrans in net/wireless/scan.c in the Linux kernel’s wifi subcomponent. This flaw allows an attacker to crash the system or leak internal kernel information...
Ubuntu 22.04 LTS : Linux kernel (OEM) vulnerabilities (USN-6071-1)
The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6071-1 advisory. It was discovered that the Traffic-Control Index TCINDEX implementation in the Linux kernel did not properly perform filter deactivation in some...
PT-2022-6586 · Apple · Macos Big Sur +5
Name of the Vulnerable Software and Affected Versions: iOS versions prior to 15.7.2 iPadOS versions prior to 15.7.2 macOS Big Sur versions prior to 11.7.2 macOS Monterey versions prior to 12.6.2 macOS Ventura versions prior to 13.1 Description: A logic issue was addressed with improved...
MGASA-2022-0379 Updated kernel packages fix security vulnerabilities
This kernel update is based on upstream 5.15.74 and fixes at least the following security issues: A flaw was found in the Linux kernel. The existing KVM SEV API has a vulnerability that allows a non-root host user-level application to crash the host kernel by creating a confidential guest VM...
SUSE-SU-2022:2869-1 Security update for u-boot
This update for u-boot fixes the following issues: - CVE-2022-33103: Fixed a flaw in the squashfs subsystem that could lead to arbitrary code execution bsc1201213...
SUSE-SU-2022:2868-1 Security update for u-boot
This update for u-boot fixes the following issues: - CVE-2022-33103: Fixed a flaw in the squashfs subsystem that could lead to arbitrary code execution bsc1201213...