290 matches found
CVE-2025-37798
In the Linux kernel, the following vulnerability has been resolved: codel: remove sch-q.qlen check before qdisctreereducebacklog After making all -qlennotify callbacks idempotent, now it is safe to remove the check of qlen!=0 from both fqcodeldequeue and codelqdiscdequeue...
CVE-2022-49876
In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix general-protection-fault in ieee80211subifstartxmit When device is running and the interface status is changed, the gpf issue is triggered. The problem triggering process is as follows: Thread A: Thread B...
CVE-2025-23163
In the Linux kernel, the following vulnerability has been resolved: net: vlan: don't propagate flags on open With the device instance lock, there is now a possibility of a deadlock: 1.211455 ============================================ 1.211571 WARNING: possible recursive locking detected 1.21168...
CVE-2025-0716
Improper sanitization of the value of the 'href' and 'xlink:href' attributes in '' SVG elements in AngularJS allows attackers to bypass common image source restrictions. This can lead to a form of Content Spoofing https://owasp.org/www-community/attacks/ContentSpoofing and also negatively affect...
CVE-2025-22871 affecting package golang for versions less than 1.22.7-3
CVE-2025-22871 affecting package golang for versions less than 1.22.7-3. A patched version of the package is available...
CVE-2023-3019 affecting package qemu for versions less than 6.2.0-23
CVE-2023-3019 affecting package qemu for versions less than 6.2.0-23. A patched version of the package is available...
CVE-2025-22127
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix potential deadloop in preparecompressoverwrite Jan Prusakowski reported a kernel hang issue as below: When running xfstests on linux-next kernel 6.14.0-rc3, 6.12 I encountered a problem in generic/475 test where fsstres...
Moderate: kernel security update
The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: ALSA: usb-audio: Fix out of bounds reads when finding clock sources CVE-2024-53150 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and oth...
GHSA-M454-3XV7-QJ85 vulnerabilities
Vulnerabilities for packages: telegraf...
Updated graphicsmagick packages fix security vulnerabilities
ReadJXLImage in JXL in GraphicsMagick before 1.3.46 lacks image dimension resource limits. CVE-2025-27795...
CVE-2025-22870 affecting package telegraf for versions less than 1.29.4-14
CVE-2025-22870 affecting package telegraf for versions less than 1.29.4-14. A patched version of the package is available...
GHSA-RR8G-9FPQ-6WMG vulnerabilities
Vulnerabilities for packages: yara-x, samply, linkerd-await, linkerd-extension-init, wasmcloud, parseable, ntpd-rs, sdp-k8s-injector, geckodriver, guestproxyagent, cargo-audit, lychee, nushell, pgcat, wash, yazi, uv, netavark, mdbook, bootupd, fnm, zola, efs-utils, linkerd-network-validator,...
CVE-2025-3416
A flaw was found in OpenSSL's handling of the properties argument in certain functions. This vulnerability can allow use-after-free exploitation, which may result in undefined behavior or incorrect property parsing, leading to OpenSSL treating the input as an empty string...
GHSA-4FCV-W3QC-PPGG vulnerabilities
Vulnerabilities for packages: zed, rustup, sccache, linkerd-extension-init, berg, sdp-k8s-injector, lychee, nushell...
CVE-2025-21441
Memory corruption when IOCTL call is invoked from user-space to write board data to WLAN driver...
gimp security update
2:2.99.8-4 - Applying fixes for vulnerabilities that led to possible RCE conditions. - Fixes: CVE-2023-44441 CVE-2023-44442 CVE-2023-44443 CVE-2023-44444 - Resolves: RHEL-86048 RHEL-86045 RHEL-86042 RHEL-86039...
CVE-2025-21897
In the Linux kernel, the following vulnerability has been resolved: schedext: Fix picktaskscx picking non-queued tasks when it's called without balance a6250aa251ea "schedext: Handle cases where picktaskscx is called without preceding balancescx" added a workaround to handle the cases where...
CVE-2025-21895
In the Linux kernel, the following vulnerability has been resolved: perf/core: Order the PMU list to fix warning about unordered pmuctxlist Syskaller triggers a warning due to prevepc-pmu != nextepc-pmu in perfeventswaptaskctxdata. vmcore shows that two lists have the same perfeventpmucontext, bu...
CVE-2024-26812 affecting package kernel for versions less than 5.15.176.3-3
CVE-2024-26812 affecting package kernel for versions less than 5.15.176.3-3. A patched version of the package is available...
CVE-2025-27832
An issue was discovered in Artifex Ghostscript before 10.05.0. The NPDL device has a Compression buffer overflow for contrib/japanese/gdevnpdl.c...