PT-2025-53009

Name of the Vulnerable Software and Affected Versions Linux Kernel affected versions not specified Description The Linux kernel contains a flaw in the memory region overlap check within the mshv subsystem. The existing check incorrectly assesses overlaps, only verifying if the start or end of a...

PT-2025-53002

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel landlock subsystem had a flaw in how it handled disconnected directories. These directories could appear when files or directories were accessed through a bind mount but...

PT-2025-53134

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s SCSI subsystem, specifically within the smartpqi driver. This issue relates to incorrect device counting for multi-actuator drives, potentially leadin...

PT-2025-53012

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s SPI subsystem, specifically within the tegra210-quad driver. Under conditions of high CPU load on the processor handling QSPI interrupts typically CPU...

PT-2025-53115

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An integer overflow exists in the encode comp t function within the kernel’s accounting subsystem. This occurs because the exp variable, of type int, can exceed the maximum value of a co...

PT-2025-53143

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A reference count leak exists in the xgmiitorgmii probe function within the networking subsystem of the Linux kernel. The of phy find device function returns a device node with an...

PT-2025-53123

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's media subsystem, specifically within the camss component, related to the handling of received buffers when streaming fails to start. If media pipeline...

PT-2025-53022

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A resource leak exists in the Linux kernel’s DRM/amdgpu subsystem. Specifically, a PCI device reference count leak occurs because the pci dev put function was not called before returning...

PT-2025-52975

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s DRM/MSM/HDMI subsystem. Specifically, a missing check for the return value of alloc ordered workqueue can lead to a NULL pointer dereference in hdmi...

PT-2025-53179

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A buffer overflow issue exists in the Linux kernel's scsi subsystem, specifically within the lpfc debugfs lockstat write function. A static code analysis identified that copy from user...

SUSE CVE-2025-68331

In the Linux kernel, the following vulnerability has been resolved: usb: uas: fix urb unmapping issue when the uas device is remove during ongoing data transfer When a UAS device is unplugged during data transfer, there is a probability of a system panic occurring. The root cause is an access to ...

PT-2025-52758

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s CAN subsystem, specifically within the gs usb receive bulk callback function. This issue relates to insufficient validation of the length of data...

PT-2025-52759

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the CAN subsystem, specifically in the gs usb receive bulk callback function. The driver incorrectly assumes the presence of a gs host frame...

CVE-2025-68337 jbd2: avoid bug_on in jbd2_journal_get_create_access() when file system corrupted

In the Linux kernel, the following vulnerability has been resolved: jbd2: avoid bugon in jbd2journalgetcreateaccess when file system corrupted There's issue when file system corrupted: ------------ cut here ------------ kernel BUG at fs/jbd2/transaction.c:1289! Oops: invalid opcode: 0000 1 SMP...

CVE-2025-68324 scsi: imm: Fix use-after-free bug caused by unfinished delayed work

In the Linux kernel, the following vulnerability has been resolved: scsi: imm: Fix use-after-free bug caused by unfinished delayed work The delayed work item 'immtq' is initialized in immattach and scheduled via immqueuecommand for processing SCSI commands. When the IMM parallel port SCSI host...

SUSE CVE-2025-68290

In the Linux kernel, the following vulnerability has been resolved: most: usb: fix double free on late probe failure The MOST subsystem has a non-standard registration function which frees the interface on registration failures and on deregistration. This unsurprisingly leads to bugs in the MOST...

EulerOS Virtualization 2.13.0 : kernel (EulerOS-SA-2025-2581)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : KVM: VMX: Do all initialization before exposing /dev/kvm to userspaceCVE-2022-49932 drivers:md:fix a potential use-after-free...

USN-7940-1: Linux kernel (Azure FIPS) vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

kernel: ALSA: usb-audio: Validate UAC3 power domain descriptors, too

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Validate UAC3 power domain descriptors, too UAC3 power domain descriptors need to be verified with its variable bLength for avoiding the unexpected OOB accesses by malicious firmware, too...

kernel: clone_private_mnt(): make sure that caller has CAP_SYS_ADMIN in the right userns

A vulnerability was found in cloneprivatemount in fs/namespace.c in filesystem subsystem in the Linux Kernel.This flaw could allow a local attacker to crash the system or leak kernel internal information...