md/md-bitmap: Synchronize bitmap_get_stats() with bitmap lifetime

...

EUVD-2022-54525

In the Linux kernel, the following vulnerability has been resolved: dm mirror log: round up region bitmap size to BITSPERLONG The code in dm-log rounds up bitsetsize to 32 bits. It then uses findnextzerobitle on the allocated region. findnextzerobitle accesses the bitmap using unsigned long...

OESA-2025-2499 ImageMagick security update

Use ImageMagick to create, edit, compose, or convert bitmap images. It can read and write images in a variety of formats over 200 including PNG, JPEG, GIF, HEIC, TIFF, DPX, EXR, WebP, Postscript, PDF, and SVG. Use ImageMagick to resize, flip, mirror, rotate, distort, shear and transform images,...

OESA-2025-2498 ImageMagick security update

Use ImageMagick to create, edit, compose, or convert bitmap images. It can read and write images in a variety of formats over 200 including PNG, JPEG, GIF, HEIC, TIFF, DPX, EXR, WebP, Postscript, PDF, and SVG. Use ImageMagick to resize, flip, mirror, rotate, distort, shear and transform images,...

OESA-2025-2497 ImageMagick security update

Use ImageMagick to create, edit, compose, or convert bitmap images. It can read and write images in a variety of formats over 200 including PNG, JPEG, GIF, HEIC, TIFF, DPX, EXR, WebP, Postscript, PDF, and SVG. Use ImageMagick to resize, flip, mirror, rotate, distort, shear and transform images,...

CLSA-2025-1761261363 poppler: Fix of CVE-2025-32365

CVE-2025-32365: prevent out-of-bounds reads in JBIG2Bitmap::combine function in JBIG2Stream.cc...

EUVD-2022-54726

In the Linux kernel, the following vulnerability has been resolved: ath9khtc: fix potential out of bounds access with invalid rxstatus-rskeyix The "rxstatus-rskeyix" eventually gets passed to testbit so we need to ensure that it is within the bitmap. drivers/net/wireless/ath/ath9k/common.c:46...

EUVD-2022-54704

In the Linux kernel, the following vulnerability has been resolved: md/bitmap: don't set sb values if can't pass sanity check If bitmap area contains invalid data, kernel will crash then mdadm triggers "Segmentation fault". This is cluster-md speical bug. In non-clustered env, mdadm will handle...

CVE-2025-62171 ImageMagick vulnerable to denial of service via integer overflow in BMP decoder on 32-bit systems

ImageMagick is an open source software suite for displaying, converting, and editing raster image files. In ImageMagick versions prior to 7.1.2-7 and 6.9.13-32, an integer overflow vulnerability exists in the BMP decoder on 32-bit systems. The vulnerability occurs in coders/bmp.c when calculating...

CVE-2025-62171 ImageMagick vulnerable to denial of service via integer overflow in BMP decoder on 32-bit systems

ImageMagick is an open source software suite for displaying, converting, and editing raster image files. In ImageMagick versions prior to 7.1.2-7 and 6.9.13-32, an integer overflow vulnerability exists in the BMP decoder on 32-bit systems. The vulnerability occurs in coders/bmp.c when calculating...

Integer Overflow or Wraparound

Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound via the ReadBMPImage function in the coders/bmp.c file. An attacker can cause the application to crash or become unresponsive by submitting specially crafted BMP files. Remediation A fix was pushed into th...

CVE-2025-62171

ImageMagick exposes an integer overflow in the BMP ReadBMP path on 32-bit builds (size_t = 4) when processing BMPs with carefully chosen dimensions. The root cause is an overflow in extent = image->columns * bmp_info.bits_per_pixel, with the overflow check BMPOverflowCheck() being applied afte...

CVE-2025-39974

CVE-2025-39974 concerns a slab-out-of-bounds bug in the Linux kernel’s tracing/osnoise subsystem. The vulnerability arises when configuring cpus via write() to /sys/kernel/debug/tracing/osnoise/cpus, triggering a KASAN fault in _parse_integer_limit due to missing terminator in the input parsed by...

Kernel OVA security updates in ASCG 3.3.0a

CVE-2025-21756 vsock: Keep the binding until socket destruction CVE-2022-49011 hwmon: coretemp fix pci device refcount leak in nv1aramnew CVE-2024-53141 netfilter: ipset: add missing range check in bitmapipuadt CVE-2025-32462 Sudo before 1.9.17p1, when used with a sudoers file that specifies a ho...

EUVD-2004-0111

Malware in sbrugna...

EUVD-2020-3881

Malware in sbrugna...

EUVD-2014-9476

Malware in sbrugna...

EUVD-2015-5644

Malware in sbrugna...

EUVD-2017-16294

Malware in sbrugna...

EUVD-2013-0868

Malware in sbrugna...