LoongArch: KVM: Mark hrtimer to expire in hard interrupt context

...

Release Information for Veeam ONE 13 Patch 1

Veeam ONE 13 Releases 13.0.2.6723 2026-05-27 What's New New Features and Improvements Suspicious Incremental Backup Size Alarm -- Extended Platform Support The Suspicious Incremental Backup Size alarm now covers all platforms supported in Veeam ONE v13, including Proxmox VE, oVirt KVM Oracle Linu...

Linux Distros Unpatched Vulnerability : CVE-2022-4134

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in openstack-glance. This issue could allow a remote, authenticated attacker to tamper with images, compromising the integrity of virtual...

Linux Distros Unpatched Vulnerability : CVE-2018-10191

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In versions of mruby up to and including 1.4.0, an integer overflow exists in src/vm.c::mrbvmexec when handling OPGETUPVAR in the presence of deep scope nesting...

Linux Distros Unpatched Vulnerability : CVE-2020-14628

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.44, prior to...

DEBIAN-CVE-2025-29364

spimsimulator spim v9.1.24 and before is vulnerable to Buffer Overflow in the READSYSCALL and WRITESYSCALL system calls. The application verifies the legitimacy of the starting and ending addresses for memory read/write operations. By configuring the starting and ending addresses for memory...

CVE-2025-29364

spimsimulator spim v9.1.24 and before is vulnerable to Buffer Overflow in the READSYSCALL and WRITESYSCALL system calls. The application verifies the legitimacy of the starting and ending addresses for memory read/write operations. By configuring the starting and ending addresses for memory...

PT-2025-35095

Name of the Vulnerable Software and Affected Versions: spimsimulator spim versions prior to 9.1.24 Description: spimsimulator spim versions prior to 9.1.24 are susceptible to a buffer overflow in the READ SYSCALL and WRITE SYSCALL system calls. The application’s verification of starting and endin...

Linux Distros Unpatched Vulnerability : CVE-2022-42334

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - x86/HVM pinned cache attributes mis-handling This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to...

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 Azure kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-36028: mm/hugetlb: fix DEBUGLOCKSWARNON1 when dissolvefreehugetlbfolio bsc1225707. CVE-2024-36348, CVE-2024-36349, CVE-2024-36350, CVE-2024-36357:...

CVE-2019-2684 vulnerabilities

Vulnerabilities for packages: openjdk-26-openj9, openjdk-11-openj9, openjdk-8-openj9, openjdk-25-openj9, openjdk-17-openj9, openjdk-21-openj9...

GHSA-W522-FX29-439V vulnerabilities

Vulnerabilities for packages: openjdk-26-openj9, openjdk-11-openj9, openjdk-8-openj9, openjdk-25-openj9, openjdk-17-openj9, openjdk-21-openj9...

SUSE CVE-2025-38618

In the Linux kernel, the following vulnerability has been resolved: vsock: Do not allow binding to VMADDRPORTANY It is possible for a vsock to autobind to VMADDRPORTANY. This can cause a use-after-free when a connection is made to the bound socket. The socket returned by accept also has port...

tomcat: Apache Tomcat denial of service

A denial of service flaw was found in Apache Tomcat. A race condition during connection closure could trigger a JVM crash when using the APR/Native connector, leading to a denial of service. This issue was particularly noticeable with client-initiated closures of HTTP/2 connections...

tomcat: Apache Tomcat denial of service

A denial of service flaw was found in Apache Tomcat. A race condition during connection closure could trigger a JVM crash when using the APR/Native connector, leading to a denial of service. This issue was particularly noticeable with client-initiated closures of HTTP/2 connections...

Cryostat 安全漏洞

Cryostat is a container-native JVM application open-sourced by Cryostat. A security vulnerability exists in Cryostat that stems from binding all network interfaces, which could lead to unauthorized access...

Linux Distros Unpatched Vulnerability : CVE-2021-4024

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in podman. The podman machine function used to create and manage Podman virtual machine containing a Podman process spawns a gvproxy process on...

CVE-2025-38611

In the Linux kernel, the following vulnerability has been resolved: vmci: Prevent the dispatching of uninitialized payloads The reproducer executes the host's unlockedioctl call in two different tasks. When initcontext fails, the struct vmcieventctx is not fully initialized when executing...

CVE-2025-38611

Removed by vendor...

PT-2025-44106

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.16.0-smp--e6c618b51cfe-sleep 782 Description The Linux kernel contained an issue in the KVM component related to SVM fastpath emulation. Specifically, the fastpath emulation was not being skipped on VM-Exit if...