USN-7288-1: Linux kernel vulnerabilities

Attila Szász discovered that the HFS+ file system implementation in the Linux Kernel contained a heap overflow vulnerability. An attacker could use a specially crafted file system image that, when mounted, could cause a denial of service system crash or possibly execute arbitrary code...

The vulnerability of the ALSA kernel component in Linux operating systems, which allows a hacker to cause a service failure

The vulnerability of the ALSA kernel component in Linux operating systems is related to improper locking of resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the ets_class_from_arg() function in the net/sched/sch_ets.c module of the net/sched subsystem of the Linux operating system allows a hacker to gain unauthorized access to protected information.

The vulnerability of the etsclassfromarg function in the net/sched/schets.c module of the net/sched subsystem of the Linux operating system lies in the handling of buffer overflow attacks. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

USN-7277-1 linux-aws, linux-azure, linux-gcp, linux-oracle, linux-raspi, linux-realtime vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM32 architecture; - ARM64 architecture; - PowerPC architecture; - RISC-V architecture; - S390 architecture; -...

USN-7276-1: Linux kernel vulnerabilities

Attila Szász discovered that the HFS+ file system implementation in the Linux Kernel contained a heap overflow vulnerability. An attacker could use a specially crafted file system image that, when mounted, could cause a denial of service system crash or possibly execute arbitrary code...

kernel: tcp/dccp: Don't use timer_pending() in reqsk_queue_unlink().

A use-after-free UAF vulnerability was found and fixed in the Linux kernel's TCP subsystem related to request socket reqsk timers during handshake handling. This issue stems from a race condition caused by relying on timerpending in reqskqueueunlink. This could result in the timer continuing to r...

PT-2025-34421

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The parse longname function in the Ceph subsystem does not guarantee a NUL-terminated string when using strrchr, leading to a potential issue. The function utilizes kmemdup nul to crea...

The vulnerability of the Linux operating system’s kernel component “perf”, which allows a hacker to trigger a service failure

The vulnerability of the net/mlx5e components in the Linux operating system’s kernel is related to the lack of memory release after the effective lifespan of these components has ended. Exploiting this vulnerability can allow an attacker to cause a service failure...

CVE-2023-5753

Potential buffer overflows in the Bluetooth subsystem due to asserts being disabled in /subsys/bluetooth/host/hcicore.c...

[SECURITY] Fedora 40 Update: keyring-ima-signer-0.1.0-17.fc40

The IMA Integrity Measurement Architecture is a key component of the Linux integrity subsystem designed to ensure integrity, authenticity, and confidentiality of systems including hardware root of trusts TPM. This tool allows signing of files in userspace, inclusding options of including the...

Ubuntu: Security Advisory (USN-7234-4)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-7234-4: Linux kernel (AWS) vulnerabilities

Ye Zhang and Nicolas Wu discovered that the iouring subsystem in the Linux kernel did not properly handle locking for rings with IOPOLL, leading to a double-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code...

Ubuntu 22.04 LTS : Linux kernel (Azure) vulnerabilities (USN-7236-3)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7236-3 advisory. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in...

CVE-2025-21367

Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability...

CVE-2025-21367

Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability...

CVE-2025-21367 Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability

...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: netfilter: iptables: Fixed null-ptr-deref in iptablenattableinit. We received a report that iptables-restore sometimes triggered null-ptr-deref at boot time. 0 The problem is that iptablenattableinit is exposed to user space befo...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: mISDN: Fixed an use-after-free in hfcmultitx Do not dereference sp after calling devkfreeskbsp...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: security/keys: Fixed an out-of-bounds read in keytaskpermission. KASAN reported an out-of-bounds read: - BUG: KASAN: Out-of-bounds read in kuidval, include/linux/uidgid.h: Line 36 - BUG: KASAN: Out-of-bounds read in uideq,...

USN-7262-1: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Multiple devices driver; - Network drivers; - Sonic Silicon Backplane drivers; - File systems infrastructure; -...