596 matches found
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-42148)
bnx2x: multiple UBSAN array-index-out-of-bounds. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504470; scriptversion"1.2";...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-56596)
jfs: array-index-out-of-bounds in jfsreaddir. The stbl might contain some invalid values. Added a check to return error code in that case. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...
SUSE CVE-2025-40180
In the Linux kernel, the following vulnerability has been resolved: mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop The cleanup loop was starting at the wrong array index, causing out-of-bounds access. Start the loop at the correct index for zero-indexed arrays to prevent...
CVE-2025-40118
In the Linux kernel, the following vulnerability has been resolved: scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod Since commit f7b705c238d1 "scsi: pm80xx: Set phyattached to zero when device is gone" UBSAN reports: UBSAN: array-index-out-of-bounds in drivers/scsi/pm8001/pm8001sas.c:786:...
CVE-2025-40118
In the Linux kernel, the following vulnerability has been resolved: scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod Since commit f7b705c238d1 "scsi: pm80xx: Set phyattached to zero when device is gone" UBSAN reports: UBSAN: array-index-out-of-bounds in drivers/scsi/pm8001/pm8001sas.c:786:...
UBUNTU-CVE-2025-40118
In the Linux kernel, the following vulnerability has been resolved: scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod Since commit f7b705c238d1 "scsi: pm80xx: Set phyattached to zero when device is gone" UBSAN reports: UBSAN: array-index-out-of-bounds in drivers/scsi/pm8001/pm8001sas.c:786:...
CVE-2025-40118 scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod
In the Linux kernel, the following vulnerability has been resolved: scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod Since commit f7b705c238d1 "scsi: pm80xx: Set phyattached to zero when device is gone" UBSAN reports: UBSAN: array-index-out-of-bounds in drivers/scsi/pm8001/pm8001sas.c:786:...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990820)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990820 advisory. In the Linux kernel, the following vulnerability has been resolved: parport: Proper fix for array out-of-bounds access The recent fix for array out-of-bounds accesse...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990846)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990846 advisory. In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix array out-of-bound access in SoC stats Currently, the...
kernel: wifi: mac80211: Set n_channels after allocating struct cfg80211_scan_request
In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: Set nchannels after allocating struct cfg80211scanrequest Make sure that nchannels is set after allocating the struct cfg80211registereddevice::intscanreq member. Seen with syzkaller: UBSAN:...
kernel: wifi: ath12k: Fix for out-of bound access error
In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Fix for out-of bound access error Selfgen stats are placed in a buffer using printarraytobufindex function. Array length parameter passed to the function is too big, resulting in possible out-of bound memory error...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990602)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990602 advisory. In the Linux kernel, the following vulnerability has been resolved: jfs: fix array-index-out-of-bounds in dbFindLeaf Currently while searching for dmtreet for...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990396)
"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990396 advisory. In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries: Enforce hcall result buffer validity and size plparhcall, plparhcall9, and...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990613)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990613 advisory. In the Linux kernel, the following vulnerability has been resolved: fs/jfs: Add validity check for dbmaxag and dbagpref Both dbmaxag and dbagpref are used as the ind...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990470)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990470 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/amd: Fix UBSAN array-index-out-of-bounds for Polaris and Tonga For pptable structs that use...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989669)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989669 advisory. In the Linux kernel, the following vulnerability has been resolved: fs/jfs: Add validity check for dbmaxag and dbagpref Both dbmaxag and dbagpref are used as the ind...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989666)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989666 advisory. In the Linux kernel, the following vulnerability has been resolved: jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree When the value of lp is 0 at t...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989213)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989213 advisory. In the Linux kernel, the following vulnerability has been resolved: jfs: fix array-index-out-of-bounds in diAlloc Currently there is not check against the agno of th...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989664)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989664 advisory. In the Linux kernel, the following vulnerability has been resolved: media: pvrusb2: fix array-index-out-of-bounds in pvr2i2ccoreinit Syzbot reported that -1 is used ...
Unity Linux 20.1050e Security Update: kernel (UTSA-2025-990134)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990134 advisory. In the Linux kernel, the following vulnerability has been resolved: fs/jfs: Add validity check for dbmaxag and dbagpref Both dbmaxag and dbagpref are used as the ind...