EUVD-2026-4634

In the Linux kernel, the following vulnerability has been resolved: dmaengine: tegra-adma: Fix use-after-free A use-after-free bug exists in the Tegra ADMA driver when audio streams are terminated, particularly during XRUN conditions. The issue occurs when the DMA buffer is freed by...

CVE-2025-71162 dmaengine: tegra-adma: Fix use-after-free

In the Linux kernel, the following vulnerability has been resolved: dmaengine: tegra-adma: Fix use-after-free A use-after-free bug exists in the Tegra ADMA driver when audio streams are terminated, particularly during XRUN conditions. The issue occurs when the DMA buffer is freed by...

CVE-2025-71162

CVE-2025-71162 describes a use-after-free in the Tegra ADMA driver within the Linux kernel, triggered when an audio DMA buffer is freed during XRUN handling before the vchan completion tasklet runs. The race occurs after a DMA transfer completes and schedules a completion tasklet, while tegra_adm...

Linux Distros Unpatched Vulnerability : CVE-2025-71162

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - dmaengine: tegra-adma: Fix use-after-free A use-after-free bug exists in the Tegra ADMA driver when audio streams are terminated, particularly during XRUN...

Azure Linux 3.0 Security Update: hyperv-daemons (CVE-2024-35801)

The version of hyperv-daemons installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-35801 advisory. - In the Linux kernel, the following vulnerability has been resolved: x86/fpu: Keep xfdstate in sync...

Azure Linux 3.0 Security Update: kernel (CVE-2025-22053)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-22053 advisory. - In the Linux kernel, the following vulnerability has been resolved: net: ibmveth: make vethpoolstore stop...

ROS-20260122-73-0022

A vulnerability in the V8 JavaScript script handler of Google Chrome browser is related to synchronization errors when using a shared resource "Race Situation". Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service using a specially crafted HTML pa...

Azure Linux 3.0 Security Update: kernel (CVE-2025-38181)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38181 advisory. - In the Linux kernel, the following vulnerability has been resolved: calipso: Fix null-ptr-deref in...

Azure Linux 3.0 Security Update: kernel (CVE-2024-39486)

"The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-39486 advisory. - In the Linux kernel, the following vulnerability has been resolved: drm/drmfile: Fix pid refcounting race ,...

Azure Linux 3.0 Security Update: kernel (CVE-2025-38058)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38058 advisory. - In the Linux kernel, the following vulnerability has been resolved: legitimizemnt: check for MNTSYNCUMOUNT...

Azure Linux 3.0 Security Update: kernel (CVE-2024-36930)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-36930 advisory. - In the Linux kernel, the following vulnerability has been resolved: spi: fix null pointer dereference within...

ROS-20260121-73-0029

A vulnerability in the streamzap.c component of the Linux operating system kernel is related to simultaneous execution using a shared resource with improper synchronization. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

ROS-20260121-73-0004

A vulnerability in the getrandomu32 function of the time/clocksource.c component of the Linux operating system kernel is related to synchronization errors. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

ROS-20260120-73-0004

A vulnerability in the ipcmsgsendrequest function of the fs/smb/server/transportipc.c module of the Linux operating system kernel is related to synchronization errors when using a shared resource. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

ROS-20260120-73-0001

A vulnerability in the drivers/gpio/gpio-aggregator.c module of the Linux kernel is related to synchronization errors when using a shared resource. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

ROS-20260120-7345

A vulnerability in the mptcppmnlappendnewlocaladdr function of the net/mptcp/pmnetlink.c module of the Linux operating system kernel is related to synchronization errors when using a shared resource. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of...

MiracleLinux 8 : virt:rhel and virt-devel:rhel (AXSA:2024-8876:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8876:01 advisory. QEMU: virtio: DMA reentrancy issue leads to double free vulnerability CVE-2024-3446 QEMU: Denial of Service via Improper Synchronization in QEMU NBD...

ROS-20260119-7319

A vulnerability in the net/rose/rosetimer.c component of the Linux operating system kernel is related to simultaneous execution using a shared resource with improper synchronization. Exploitation of the vulnerability could allow an attacker to gain access to sensitive data, compromise its...

CVE-2026-1000 MailerLite - WooCommerce integration <= 3.1.3 - Missing Authorization to Data Deletion

The MailerLite - WooCommerce integration plugin for WordPress is vulnerable to unauthorized data modification and deletion in all versions up to, and including, 3.1.3. This is due to missing capability checks on the resetIntegration function. This makes it possible for authenticated attackers, wi...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004062)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004062 advisory. A flaw was found in Linux Kernel because access to the global variable fgconsole is not properly synchronized leading to a use after free in confontop. Tenable has...