CVE-2025-38287 IB/cm: Drop lockdep assert and WARN when freeing old msg

In the Linux kernel, the following vulnerability has been resolved: IB/cm: Drop lockdep assert and WARN when freeing old msg The send completion handler can run after cmid has advanced to another message. The cmid lock is not needed in this case, but a recent change re-used cmfreeprivmsg, which...

GNU Glibc Vulnerable to Memory Corruption via Heap Buffer Overflow during 'assert()' Failure (CVE-2025-0395)

GNU Glibc contains a memory corruption vulnerability that overflows the heap buffer by one or several bytes. The corruption occurs when the assert function fails under specific conditions. Heap buffer overflows are known to result in severe damage to the program's confidentiality, integrity, and...

The vulnerability of the `ovl_verify_area()` function in the `fs/overlayfs/copy_up.c` component of the Linux kernel allows a hacker to trigger a service failure.

The vulnerability of the ovlverifyarea function in the fs/overlayfs/copyup.c component of the Linux kernel is related to the insufficient use of the assert function. Exploiting this vulnerability could allow an attacker to cause a system failure...

The vulnerability of the hugetlb.c component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the hugetlb.c component in the Linux operating system’s kernel is related to the insufficient use of the assert function. Exploiting this vulnerability can allow an attacker to cause a service failure...

CVE-2022-50148

Consolidated details indicate CVE-2022-50148 is a Linux kernel issue affecting kernfs: __kernfs_remove may dereference NULL if lockdep is enabled, due to a dereference before checking kn (as noted in fs/kernfs/dir.c:1353). The vulnerability is mitigated by upstream fixes in kernel commits (e.g., ...

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: OPP: Added an index check to ensure no buffer overflow occurs in readfreq. The freq index is passed to the assert function to ensure that we do not read values from the opp-rates table when called from the indexed variants:...

Astra Linux – Vulnerability in glibc

When the assert function in the GNU C Library versions 2.13 to 2.40 fails, it does not allocate enough space for the assertion failure message string and size information. This may lead to a buffer overflow if the size of the message string matches the page size...

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: OPP: Fix for devpmoppfindbw when the bandwidth table is not initialized. If a driver calls devpmoppfindbwceil/floor to retrieve the bandwidth from the OPP table, but the bandwidth table was not created because the interconnect...

Malicious code in boost-static-assert (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e5ea6d07c816f16b0ce7ce7e7b952fa013034be54604e072cd3c500d9cc75e48 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

MAL-2025-4817 Malicious code in boost-static-assert (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e5ea6d07c816f16b0ce7ce7e7b952fa013034be54604e072cd3c500d9cc75e48 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

The vulnerability of the netfilter component in the Linux operating system’s kernel allows a hacker to induce a service failure.

The vulnerability of the netfilter component in the Linux operating system’s kernel is related to the insufficient use of the assert function. Exploiting this vulnerability can allow an attacker to cause a service failure...

CVE-2024-6352

A malformed packet can cause a buffer overflow in the APS layer of the Ember ZNet stack and lead to an assert...

CVE-2025-37897

In the Linux kernel, the following vulnerability has been resolved: wifi: plfxlc: Remove erroneous assert in plfxlcmacrelease plfxlcmacrelease asserts that mac-lock is held. This assertion is incorrect, because even if it was possible, it would not be the valid behaviour. The function is used whe...

CVE-2025-37897 wifi: plfxlc: Remove erroneous assert in plfxlc_mac_release

In the Linux kernel, the following vulnerability has been resolved: wifi: plfxlc: Remove erroneous assert in plfxlcmacrelease plfxlcmacrelease asserts that mac-lock is held. This assertion is incorrect, because even if it was possible, it would not be the valid behaviour. The function is used whe...

EulerOS 2.0 SP12 : glibc (EulerOS-SA-2025-1417)

According to the versions of the glibc packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : When the assert function in the GNU C Library versions 2.13 to 2.40 fails, it does not allocate enough space for the assertion failure message stri...

The vulnerability of the Bluetooth driver’s firmware microprogramming software of MediaTek’s chips, which allows a hacker to cause a service failure.

The vulnerability of the Bluetooth driver’s firmware microprogramming software from MediaTek is related to the lack of use of the assert function. Exploiting this vulnerability can allow attackers to cause system failures...

glibc: buffer overflow in the GNU C Library's assert()

A flaw was found in the GNU C Library glibc. A buffer overflow condition via the assert function may be triggered due to glibc not allocating enough space for the assertion failure message string and size information. In certain conditions, a local attacker can exploit this, potentially leading t...

glibc: buffer overflow in the GNU C Library's assert()

A flaw was found in the GNU C Library glibc. A buffer overflow condition via the assert function may be triggered due to glibc not allocating enough space for the assertion failure message string and size information. In certain conditions, a local attacker can exploit this, potentially leading t...

glibc: buffer overflow in the GNU C Library's assert()

A flaw was found in the GNU C Library glibc. A buffer overflow condition via the assert function may be triggered due to glibc not allocating enough space for the assertion failure message string and size information. In certain conditions, a local attacker can exploit this, potentially leading t...

glibc: buffer overflow in the GNU C Library's assert()

A flaw was found in the GNU C Library glibc. A buffer overflow condition via the assert function may be triggered due to glibc not allocating enough space for the assertion failure message string and size information. In certain conditions, a local attacker can exploit this, potentially leading t...