22 matches found
EUVD-2026-12005
Missing Authorization vulnerability in ThemeFusion Avada Core fusion-core allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Avada Core: from n/a through 5.15.0...
CVE-2025-38251 affecting package kernel for versions less than 5.15.200.1-1
CVE-2025-38251 affecting package kernel for versions less than 5.15.200.1-1. An upgraded version of the package is available that resolves this issue...
CVE-2025-38708 affecting package kernel for versions less than 5.15.200.1-1
CVE-2025-38708 affecting package kernel for versions less than 5.15.200.1-1. An upgraded version of the package is available that resolves this issue...
CVE-2025-38680 affecting package kernel for versions less than 5.15.200.1-1
CVE-2025-38680 affecting package kernel for versions less than 5.15.200.1-1. An upgraded version of the package is available that resolves this issue...
CVE-2025-38249 affecting package kernel for versions less than 5.15.200.1-1
CVE-2025-38249 affecting package kernel for versions less than 5.15.200.1-1. An upgraded version of the package is available that resolves this issue...
CVE-2022-50070 affecting package kernel for versions less than 5.15.200.1-1
CVE-2022-50070 affecting package kernel for versions less than 5.15.200.1-1. An upgraded version of the package is available that resolves this issue...
AZL-60334 CVE-2025-21962 affecting package kernel for versions less than 5.15.180.1-1
In the Linux kernel, the following vulnerability has been resolved: cifs: Fix integer overflow while processing closetimeo mount option User-provided mount parameter closetimeo of type u32 is intended to have an upper limit, but before it is validated, the value is converted from seconds to jiffi...
AZL-59972 CVE-2025-21951 affecting package kernel for versions less than 5.15.180.1-1
In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: pcigeneric: Use pcitryresetfunction to avoid deadlock There are multiple places from where the recovery work gets scheduled asynchronously. Also, there are multiple places where the caller waits synchronously for...
AZL-58569 CVE-2025-21846 affecting package kernel for versions less than 5.15.179.1-1
In the Linux kernel, the following vulnerability has been resolved: acct: perform last write from workqueue In 1 it was reported that the acct2 system call can be used to trigger NULL deref in cases where it is set to write to a file that triggers an internal lookup. This can e.g., happen when...
AZL-55076 CVE-2024-56739 affecting package kernel for versions less than 5.15.176.3-1
In the Linux kernel, the following vulnerability has been resolved: rtc: check if rtcreadtime was successful in rtctimerdowork If the rtcreadtime call fails,, the struct rtctime tm; may contain uninitialized data, or an illegal date/time read from the RTC hardware. When calling rtctmtoktime later...
AZL-53799 CVE-2024-50179 affecting package kernel for versions less than 5.15.173.1-1
In the Linux kernel, the following vulnerability has been resolved: ceph: remove the incorrect Fw reference check when dirtying pages When doing the direct-io reads it will also try to mark pages dirty, but for the read path it won't hold the Fw caps and there is case will it get the Fw reference...
AZL-50582 CVE-2024-47674 affecting package kernel for versions less than 5.15.173.1-1
In the Linux kernel, the following vulnerability has been resolved: mm: avoid leaving partial pfn mappings around in error case As Jann points out, PFN mappings are special, because unlike normal memory mappings, there is no lifetime information associated with the mapping - it is just a raw...
AZL-49994 CVE-2024-46854 affecting package kernel for versions less than 5.15.176.3-1
In the Linux kernel, the following vulnerability has been resolved: net: dpaa: Pad packets to ETHZLEN When sending packets under 60 bytes, up to three bytes of the buffer following the data may be leaked. Avoid this by extending all packets to ETHZLEN, ensuring nothing is leaked in the padding...
AZL-49173 CVE-2024-46674 affecting package kernel for versions less than 5.15.167.1-1
In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: st: fix probed platform device ref count on probe error path The probe function never performs any paltform device allocation, thus error path "undoplatformdevalloc" is entirely bogus. It drops the reference count from...
AZL-47965 CVE-2024-42301 affecting package kernel for versions less than 5.15.167.1-1
In the Linux kernel, the following vulnerability has been resolved: dev/parport: fix the array out-of-bounds risk Fixed array out-of-bounds issues caused by sprintf by replacing it with snprintf for safer data copying, ensuring the destination buffer is not overflowed. Below is the stack trace I...
AZL-40425 CVE-2024-26984 affecting package hyperv-daemons for versions less than 5.15.158.1-1
In the Linux kernel, the following vulnerability has been resolved: nouveau: fix instmem race condition around ptr stores Running a lot of VK CTS in parallel against nouveau, once every few hours you might see something like this crash. BUG: kernel NULL pointer dereference, address:...
AZL-35811 CVE-2023-52435 affecting package kernel for versions less than 5.15.153.1-1
In the Linux kernel, the following vulnerability has been resolved: net: prevent mss overflow in skbsegment Once again syzbot is able to crash the kernel in skbsegment 1 GSOBYFRAGS is a forbidden value, but unfortunately the following computation in skbsegment can reach it quite easily : mss = ms...
AZL-33967 CVE-2023-51042 affecting package kernel for versions less than 5.15.148.1-1
In the Linux kernel before 6.4.12, amdgpucswaitallfences in drivers/gpu/drm/amd/amdgpu/amdgpucs.c has a fence use-after-free...
AZL-27638 CVE-2023-33952 affecting package hyperv-daemons for versions less than 5.15.158.1-1
A double-free vulnerability was found in handling vmwbufferobject objects in the vmwgfx driver in the Linux kernel. This issue occurs due to the lack of validating the existence of an object prior to performing further free operations on the object, which may allow a local privileged user to...
AZL-27352 CVE-2023-3357 affecting package kernel for versions less than 5.15.118.1-2
A NULL pointer dereference flaw was found in the Linux kernel AMD Sensor Fusion Hub driver. This flaw allows a local user to crash the system...