Linux Distros Unpatched Vulnerability : CVE-2022-50634

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - power: supply: cw2015: Fix potential null-ptr-deref in cwbatprobe cwbatprobe calls createsinglethreadworkqueue and not checked the ret value, which may return...

Linux Distros Unpatched Vulnerability : CVE-2023-53849

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/msm: fix workqueue leak on bind errors Make sure to destroy the workqueue also in case of early errors during bind e.g. a subcomponent failing to bind. Sinc...

Linux Distros Unpatched Vulnerability : CVE-2022-50663

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: stmmac: fix possible memory leak in stmmacdvrprobe The bitmapfree should be called to free priv-afxdpzcqps when createsinglethreadworkqueue fails, otherwis...

CVE-2025-40309 Bluetooth: SCO: Fix UAF on sco_conn_free

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: SCO: Fix UAF on scoconnfree BUG: KASAN: slab-use-after-free in scoconnfree net/bluetooth/sco.c:87 inline BUG: KASAN: slab-use-after-free in krefput include/linux/kref.h:65 inline BUG: KASAN: slab-use-after-free in...

SUSE CVE-2025-40249

In the Linux kernel, the following vulnerability has been resolved: gpio: cdev: make sure the cdev fd is still active before emitting events With the final call to fput on a file descriptor, the release action may be deferred and scheduled on a work queue. The reference count of that descriptor i...

Oracle Linux 10 : ELSA-2025-20095-0: / kernel (ELSA-2025-200950)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-200950 advisory. - selftests: tls: add tests for zero-length records CKI Backport Bot RHEL-114328 CVE-2025-39682 - tls: fix handling of zero-length records on the...

PT-2025-52893

Name of the Vulnerable Software and Affected Versions Linux Kernel affected versions not specified Description A flaw exists in the Linux kernel related to the allocation of a workqueue for asynchronous reads within the iomap subsystem. Specifically, after a certain commit, error completions for...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-41063)

Bluetooth: hcicore: deadlock at destroyworkqueue. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504797; scriptversion"1.3";...

SUSE CVE-2025-40196

In the Linux kernel, the following vulnerability has been resolved: fs: quota: create dedicated workqueue for quotareleasework There is a kernel panic due to WARNONCE when paniconwarn is set. This issue occurs when writeback is triggered due to sync call for an opened fileie, writeback reason is...

mptcp: use the workqueue to destroy unaccepted sockets

...

EUVD-2025-150378

In the Linux kernel, the following vulnerability has been resolved: fs: quota: create dedicated workqueue for quotareleasework There is a kernel panic due to WARNONCE when paniconwarn is set. This issue occurs when writeback is triggered due to sync call for an opened fileie, writeback reason is...

Siemens SIMATIC S7-1500 Improper Handling of Exceptional Conditions (CVE-2024-53140)

In the Linux kernel, the following vulnerability has been resolved: netlink: terminate outstanding dump on socket close Netlink supports iterative dumping of data. It provides the families the following ops: - start - optional kicks off the dumping process - dump - actual dump helper, keeps getti...

CVE-2025-40196

In the Linux kernel, the following vulnerability has been resolved: fs: quota: create dedicated workqueue for quotareleasework There is a kernel panic due to WARNONCE when paniconwarn is set. This issue occurs when writeback is triggered due to sync call for an opened fileie, writeback reason is...

UBUNTU-CVE-2025-40196

In the Linux kernel, the following vulnerability has been resolved: fs: quota: create dedicated workqueue for quotareleasework There is a kernel panic due to WARNONCE when paniconwarn is set. This issue occurs when writeback is triggered due to sync call for an opened fileie, writeback reason is...

CVE-2025-40196

CVE-2025-40196 concerns the Linux kernel quota subsystem. A writeback-triggered flush could trigger a kernel panic due to MEM_RECLAIM flag mismatch when quota_release_work runs on the non MEM_RECLAIM queue. The patch adds a dedicated workqueue with the WQ_MEM_RECLAIM flag for quota_release_work t...

CVE-2025-40196 fs: quota: create dedicated workqueue for quota_release_work

In the Linux kernel, the following vulnerability has been resolved: fs: quota: create dedicated workqueue for quotareleasework There is a kernel panic due to WARNONCE when paniconwarn is set. This issue occurs when writeback is triggered due to sync call for an opened fileie, writeback reason is...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990825)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990825 advisory. In the Linux kernel, the following vulnerability has been resolved: RDMA/iwcm: Fix WARNING:atkernel/workqueue.c:checkflushdependency In the commit aee2424246f9...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990898)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990898 advisory. In the Linux kernel, the following vulnerability has been resolved: serial: max3100: Lock port-lock when calling uarthandlectschange uarthandlectschange has to be...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990790)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990790 advisory. In the Linux kernel, the following vulnerability has been resolved: net: ena: Fix error handling in enainit The enainit won't destroy workqueue created by...

kernel: workqueue: Put the pwq after detaching the rescuer from the pool

A vulnerability was found in the Linux kernel's work queue subsystem, which manages background task execution. The issue stems from improper handling of the "rescuer" thread during the cleanup of unbound work queues...