Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerabilities have been resolved: exfat: Added a check for the cluster chain loop in dir functions. An infinite loop may occur if the following conditions occur due to file system corruption: 1 Condition for exfatcountdirEntries to loop infinitely: - The clust...

SUSE SLED15: ImageMagick / ImageMagick-config-7-SUSE / etc (SUSE-SU-2025:3867-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:3867-1 advisory. - CVE-2025-62171: Fixed incomplete fix for integer overflow in BMP Decoder bsc1252282. Tenable has extracted the...

SUSE-SU-2025:3867-1 Security update for ImageMagick

This update for ImageMagick fixes the following issues: - CVE-2025-62171: Fixed incomplete fix for integer overflow in BMP Decoder bsc1252282...

CVE-2025-10925

A stack-based buffer overflow vulnerability exists in the ILBM file parsing functionality of GIMP. When processing a specially crafted ILBM image file, improper validation of user-supplied data length before copying to a stack buffer can lead to memory corruption. Successful exploitation allows a...

SUSE CVE-2025-40067

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: reject index allocation if $BITMAP is empty but blocks exist Index allocation requires at least one bit in the $BITMAP attribute to track usage of index entries. If the bitmap is empty while index blocks are already...

CVE-2025-10923

GIMP WBMP File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a...

CVE-2025-10923

CVE-2025-10923 : GIMP WBMP File Parsing Integer Overflow Remote Code Execution vulnerability. The flaw arises from insufficient validation during WBMP parsing, causing an overflow when allocating a buffer and enabling code execution in the current process. Exploitation requires the target to visi...

Siemens SIMATIC Devices Improper Locking (CVE-2024-38598)

In the Linux kernel, the following vulnerability has been resolved: md: fix resync softlockup when bitmap size is less than array size. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...

EUVD-2025-36439

In the Linux kernel, the following vulnerability has been resolved: binder: fix double-free in dbitmap A process might fail to allocate a new bitmap when trying to expand its proc-dmap. In that case, dbitmapgrow fails and frees the old bitmap via dbitmapfree. However, the driver calls dbitmapfree...

CVE-2025-40067

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: reject index allocation if $BITMAP is empty but blocks exist Index allocation requires at least one bit in the $BITMAP attribute to track usage of index entries. If the bitmap is empty while index blocks are already...

UBUNTU-CVE-2025-40067

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: reject index allocation if $BITMAP is empty but blocks exist Index allocation requires at least one bit in the $BITMAP attribute to track usage of index entries. If the bitmap is empty while index blocks are already...

EUVD-2025-36461

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: reject index allocation if $BITMAP is empty but blocks exist Index allocation requires at least one bit in the $BITMAP attribute to track usage of index entries. If the bitmap is empty while index blocks are already...

CVE-2025-40067 fs/ntfs3: reject index allocation if $BITMAP is empty but blocks exist

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: reject index allocation if $BITMAP is empty but blocks exist Index allocation requires at least one bit in the $BITMAP attribute to track usage of index entries. If the bitmap is empty while index blocks are already...

CVE-2025-40067

CVE-2025-40067 affects the Linux kernel’s ntfs3 filesystem. It describes a condition where index allocations can occur with an empty $BITMAP bitmap while index blocks exist, causing on-disk corruption. Triggered by a malformed NTFS image during a long filename rename, where the empty bitmap allow...

CVE-2025-40067 fs/ntfs3: reject index allocation if $BITMAP is empty but blocks exist

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: reject index allocation if $BITMAP is empty but blocks exist Index allocation requires at least one bit in the $BITMAP attribute to track usage of index entries. If the bitmap is empty while index blocks are already...

CVE-2025-40067

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: reject index allocation if $BITMAP is empty but blocks exist Index allocation requires at least one bit in the $BITMAP attribute to track usage of index entries. If the bitmap is empty while index blocks are already...

Linux Distros Unpatched Vulnerability : CVE-2025-40067

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fs/ntfs3: reject index allocation if $BITMAP is empty but blocks exist Index allocation requires at least one bit in the $BITMAP attribute to track usage of ind...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from not verifying that the $BITMAP attribute is null, which could lead to improper index allocation...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from old bitmap releases not being handled correctly when dbitmapgrow fails, which could lead to a double release...

Security update for ImageMagick

This update for ImageMagick fixes the following issues: CVE-2025-62171: Fixed incomplete fix for integer overflow in BMP Decoder bsc1252282. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you ca...