Lucene search
K

45 matches found

SUSE CVE
SUSE CVE
added 2025/10/29 12:24 a.m.5 views

SUSE CVE-2025-40063

In the Linux kernel, the following vulnerability has been resolved: crypto: comp - Use same definition of context alloc and free ops In commit 42d9f6c77479 "crypto: acomp - Move scomp stream allocation code into acomp", the cryptoacompstreams struct was made to rely on having the allocctx and...

5.5CVSS6.5AI score0.0017EPSS
Exploits0References3
NVD
NVD
added 2025/10/28 12:15 p.m.6 views

CVE-2025-40063

In the Linux kernel, the following vulnerability has been resolved: crypto: comp - Use same definition of context alloc and free ops In commit 42d9f6c77479 "crypto: acomp - Move scomp stream allocation code into acomp", the cryptoacompstreams struct was made to rely on having the allocctx and...

0.0017EPSS
Exploits0References2
OSV
OSV
added 2025/10/28 12:15 p.m.3 views

UBUNTU-CVE-2025-40063

In the Linux kernel, the following vulnerability has been resolved: crypto: comp - Use same definition of context alloc and free ops In commit 42d9f6c77479 "crypto: acomp - Move scomp stream allocation code into acomp", the cryptoacompstreams struct was made to rely on having the allocctx and...

5.7AI score0.0017EPSS
Exploits0References10
CVE
CVE
added 2025/10/28 11:48 a.m.13 views

CVE-2025-40063

In CVE-2025-40063, the Linux kernel fixed a cryptographic component mismatch: crypto_acomp_streams and scomp_alg relied on alloc_ctx/free_ctx in the same order, but structure layout randomization could desynchronize their definitions. The fix removes a union from scomp_alg so both structures shar...

6.1AI score0.0017EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/10/28 11:48 a.m.7 views

CVE-2025-40063 crypto: comp - Use same definition of context alloc and free ops

In the Linux kernel, the following vulnerability has been resolved: crypto: comp - Use same definition of context alloc and free ops In commit 42d9f6c77479 "crypto: acomp - Move scomp stream allocation code into acomp", the cryptoacompstreams struct was made to rely on having the allocctx and...

0.0017EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/28 11:48 a.m.7 views

EUVD-2025-36465

In the Linux kernel, the following vulnerability has been resolved: crypto: comp - Use same definition of context alloc and free ops In commit 42d9f6c77479 "crypto: acomp - Move scomp stream allocation code into acomp", the cryptoacompstreams struct was made to rely on having the allocctx and...

6AI score0.0017EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/10/28 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2025-40063

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: crypto: comp - Use same definition of context alloc and free ops In commit 42d9f6c77479...

6.4AI score0.0017EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-28935

Malicious code in bioql PyPI...

6.3AI score0.00119EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/09/14 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-39777

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: crypto: acomp - Fix CFI failure due to type punning To avoid a crash when control flow...

5.5CVSS6.2AI score0.00119EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/09/11 11:23 p.m.1 views

SUSE CVE-2025-39777

In the Linux kernel, the following vulnerability has been resolved: crypto: acomp - Fix CFI failure due to type punning To avoid a crash when control flow integrity is enabled, make the workspace "stream" free function use a consistent type, and call it through a function pointer that has that sa...

5.5CVSS6.5AI score0.00119EPSS
Exploits0References3
NVD
NVD
added 2025/09/11 5:15 p.m.4 views

CVE-2025-39777

In the Linux kernel, the following vulnerability has been resolved: crypto: acomp - Fix CFI failure due to type punning To avoid a crash when control flow integrity is enabled, make the workspace "stream" free function use a consistent type, and call it through a function pointer that has that sa...

5.5CVSS0.00119EPSS
Exploits0References2
OSV
OSV
added 2025/09/11 5:15 p.m.2 views

DEBIAN-CVE-2025-39777

In the Linux kernel, the following vulnerability has been resolved: crypto: acomp - Fix CFI failure due to type punning To avoid a crash when control flow integrity is enabled, make the workspace "stream" free function use a consistent type, and call it through a function pointer that has that sa...

5.5CVSS5.4AI score0.00119EPSS
Exploits0References1
OSV
OSV
added 2025/09/11 5:15 p.m.4 views

UBUNTU-CVE-2025-39777

In the Linux kernel, the following vulnerability has been resolved: crypto: acomp - Fix CFI failure due to type punning To avoid a crash when control flow integrity is enabled, make the workspace "stream" free function use a consistent type, and call it through a function pointer that has that sa...

5.5CVSS5.7AI score0.00119EPSS
Exploits0References5
CVE
CVE
added 2025/09/11 4:56 p.m.17 views

CVE-2025-39777

The CVE-2025-39777 entry concerns the Linux kernel crypto: acomp component, where a control flow integrity (CFI) failure was caused by type punning. The issue could lead to a crash when CFG is enabled. The documented fix uses a consistent type for the workspace free function and ensures it is inv...

5.5CVSS6.1AI score0.00119EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2025/09/11 4:56 p.m.6 views

CVE-2025-39777 crypto: acomp - Fix CFI failure due to type punning

In the Linux kernel, the following vulnerability has been resolved: crypto: acomp - Fix CFI failure due to type punning To avoid a crash when control flow integrity is enabled, make the workspace "stream" free function use a consistent type, and call it through a function pointer that has that sa...

5.5CVSS6.2AI score0.00119EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/09/11 12:0 a.m.5 views

PT-2025-37235

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains an issue related to control flow integrity CFI. A type punning issue within the acomp component could lead to a crash when CFI is enabled. The resolution...

6.1AI score0.00119EPSS
Exploits0References4
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.0 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: mm: zswap: properly synchronize freeing resources during CPU hotunplug In zswapcompress and zswapdecompress, the per-CPU acompctx of the current CPU at the beginning of the operation is retrieved and used throughout. However, sin...

7.8CVSS6.2AI score0.00191EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.4 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: mm: zswap: fix cryptofreeacomp deadlock in zswapcpucompdead Currently, zswapcpucompdead calls cryptofreeacomp while holding the per-CPU acompctx mutex. cryptofreeacomp then holds the scomplock through cryptoexitscompopsasync. On...

5.5CVSS6.1AI score0.00164EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/04/18 1:24 a.m.6 views

SUSE CVE-2025-22030

In the Linux kernel, the following vulnerability has been resolved: mm: zswap: fix cryptofreeacomp deadlock in zswapcpucompdead Currently, zswapcpucompdead calls cryptofreeacomp while holding the per-CPU acompctx mutex. cryptofreeacomp then holds scomplock through cryptoexitscompopsasync. On the...

4.7CVSS7.7AI score0.00164EPSS
Exploits0References16
OSV
OSV
added 2025/04/16 3:15 p.m.8 views

DEBIAN-CVE-2025-22030

In the Linux kernel, the following vulnerability has been resolved: mm: zswap: fix cryptofreeacomp deadlock in zswapcpucompdead Currently, zswapcpucompdead calls cryptofreeacomp while holding the per-CPU acompctx mutex. cryptofreeacomp then holds scomplock through cryptoexitscompopsasync. On the...

5.5CVSS5.6AI score0.00164EPSS
Exploits0References1
Rows per page
Query Builder