CVE-2025-39976

The CVE-2025-39976 issue concerns the Linux kernel futex handling during fork. The root cause was an incorrect exit path from futex_hash_allocate_default(), where copy_process() exited without proper lock state, causing improper unlocking of tasklist_lock and siglock. The corrected exit path uses...

DEBIAN-CVE-2025-11274

A vulnerability was determined in Open Asset Import Library Assimp 6.0.2. Affected is the function Q3DImporter::InternReadFile of the file assimp/code/AssetLib/Q3D/Q3DLoader.cpp. This manipulation causes allocation of resources. The attack is restricted to local execution. The exploit has been...

EUVD-2025-28255

Malicious code in bioql PyPI...

EUVD-2025-28964

Malicious code in bioql PyPI...

EUVD-2023-59842

Malicious code in bioql PyPI...

EUVD-2024-15882

Malicious code in bioql PyPI...

netfilter: nft_set_pipapo: prevent overflow in lookup table allocation

...

wifi: ath12k: Fix memory leak due to multiple rx_stats allocation

...

zlib: Out-of-bound pointer arithmetic in inftrees.c

A vulnerability was discovered in the inftrees.c file of zlib. Pointer arithmetic operations violate the C standard by subtracting an offset from an array pointer before its allocated memory, leading to undefined behavior...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a failure to check if the receive length exceeds the allocated size potentially resulting in an out-of-bound...

Astra Linux - уязвимость в linux-6.12

In the Linux kernel, the following vulnerability has been resolved: can: rockchip: rkcanfdhandlerxfifooverflowint: bail out if skb cannot be allocated Fix NULL pointer check in rkcanfdhandlerxfifooverflowint to bail out if skb cannot be allocated...

kernel: mm/damon/core: initialize damo_filter->list from damos_new_filter()

In the Linux kernel, the following vulnerability has been resolved: mm/damon/core: initialize damofilter-list from damosnewfilter damosnewfilter is not initializing the list field of newly allocated filter object. However, DAMON sysfs interface and DAMONRECLAIM are not initializing it after calli...

AZL-60306 CVE-2022-49742 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: f2fs: initialize locks earlier in f2fsfillsuper syzbot is reporting lockdep warning at f2fshandleerror 1, for spinlock&sbi-errorlock is called before spinlockinit is called. For safe locking in error handling, move initialization...

UBUNTU-CVE-2024-57992

In the Linux kernel, the following vulnerability has been resolved: wifi: wilc1000: unregister wiphy only if it has been registered There is a specific error path in probe functions in wilc drivers both sdio and spi which can lead to kernel panic, as this one for example when using SPI: Unable to...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates from not properly allocating the connector for dppanel in msm/dp, resulting in a null pointer dereference...

firefox: thunderbird: Use-after-free when breaking lines in text

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Assuming a controlled failed memory allocation, an attacker could have caused a use-after-free, leading to a potentially exploitable crash...

AZL-56250 CVE-2024-56544 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: udmabuf: change folios array from kmalloc to kvmalloc When PAGESIZE 4096, MAXPAGEORDER 10, 64bit machine, pagealloc only support 4MB. If above this, trigger this warn and return NULL. udmabuf can change size limit, if change it t...

CVE-2024-53133 drm/amd/display: Handle dml allocation failure to avoid crash

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Handle dml allocation failure to avoid crash Why In the case where a dml allocation fails for any reason, the current state's dml contexts would no longer be valid. Then subsequent calls dcstatecopyinternal would...

CVE-2024-33056

Memory corruption when allocating and accessing an entry in an SMEM partition continuously...

CVE-2024-33056

CVE-2024-33056 describes a memory corruption issue in Qualcomm components involving sequential allocation/access of an entry in the SMEM partition. Affected are Qualcomm closed‑source components and related security processor context; root cause is memory corruption from continuous SMEM entry han...