Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a lack of array bounds checking, which could lead to out-of-bounds reads...

WebAssembly Micro Runtime frame_offset_bottom array bounds overflow in fast Interpreter mode when handling GET_GLOBAL(I32) followed by if opcode

...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-42148)

bnx2x: multiple UBSAN array-index-out-of-bounds. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504470; scriptversion"1.2";...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-56598)

jfs: array-index-out-of-bounds fix in dtReadFirst. The value of stbl can be sometimes out of bounds due to a bad filesystem. Added a check with appopriate return of error code in that case. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-56595)

jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree. When the value of lp is 0 at the beginning of the for loop, it will become negative in the next assignment and we should bail out. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot f...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-56596)

jfs: array-index-out-of-bounds in jfsreaddir. The stbl might contain some invalid values. Added a check to return error code in that case. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...

SUSE CVE-2025-40180

In the Linux kernel, the following vulnerability has been resolved: mailbox: zynqmp-ipi: Fix out-of-bounds access in mailbox cleanup loop The cleanup loop was starting at the wrong array index, causing out-of-bounds access. Start the loop at the correct index for zero-indexed arrays to prevent...

CVE-2025-40118

In the Linux kernel, the following vulnerability has been resolved: scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod Since commit f7b705c238d1 "scsi: pm80xx: Set phyattached to zero when device is gone" UBSAN reports: UBSAN: array-index-out-of-bounds in drivers/scsi/pm8001/pm8001sas.c:786:...

CVE-2025-40118

In the Linux kernel, the following vulnerability has been resolved: scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod Since commit f7b705c238d1 "scsi: pm80xx: Set phyattached to zero when device is gone" UBSAN reports: UBSAN: array-index-out-of-bounds in drivers/scsi/pm8001/pm8001sas.c:786:...

UBUNTU-CVE-2025-40118

In the Linux kernel, the following vulnerability has been resolved: scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod Since commit f7b705c238d1 "scsi: pm80xx: Set phyattached to zero when device is gone" UBSAN reports: UBSAN: array-index-out-of-bounds in drivers/scsi/pm8001/pm8001sas.c:786:...

CVE-2025-40118 scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod

In the Linux kernel, the following vulnerability has been resolved: scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod Since commit f7b705c238d1 "scsi: pm80xx: Set phyattached to zero when device is gone" UBSAN reports: UBSAN: array-index-out-of-bounds in drivers/scsi/pm8001/pm8001sas.c:786:...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990846)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990846 advisory. In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix array out-of-bound access in SoC stats Currently, the...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990820)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990820 advisory. In the Linux kernel, the following vulnerability has been resolved: parport: Proper fix for array out-of-bounds access The recent fix for array out-of-bounds accesse...

kernel: wifi: mac80211: Set n_channels after allocating struct cfg80211_scan_request

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: Set nchannels after allocating struct cfg80211scanrequest Make sure that nchannels is set after allocating the struct cfg80211registereddevice::intscanreq member. Seen with syzkaller: UBSAN:...

kernel: wifi: ath12k: Fix for out-of bound access error

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Fix for out-of bound access error Selfgen stats are placed in a buffer using printarraytobufindex function. Array length parameter passed to the function is too big, resulting in possible out-of bound memory error...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990470)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990470 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/amd: Fix UBSAN array-index-out-of-bounds for Polaris and Tonga For pptable structs that use...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990613)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990613 advisory. In the Linux kernel, the following vulnerability has been resolved: fs/jfs: Add validity check for dbmaxag and dbagpref Both dbmaxag and dbagpref are used as the ind...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990396)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990396 advisory. In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries: Enforce hcall result buffer validity and size plparhcall, plparhcall9, and...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990602)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990602 advisory. In the Linux kernel, the following vulnerability has been resolved: jfs: fix array-index-out-of-bounds in dbFindLeaf Currently while searching for dmtreet for...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990257)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990257 advisory. In the Linux kernel, the following vulnerability has been resolved: jfs: fix array-index-out-of-bounds in jfsreaddir The stbl might contain some invalid values. Adde...