USN-8368-1 libeconf vulnerability

It was discovered that libeconf did not properly check the size of input when copying data to a buffer. An attacker could possibly use this issue to cause libeconf to crash, resulting in a denial of service...

ROS-20260527-73-0001

A vulnerability in the hi311x component of the Linux kernel is related to buffer copying without input validation. Exploitation of the vulnerability could allow a remote attacker to gain access to sensitive data, compromise its integrity, and cause a denial of service via a malicious package...

Important: kernel-livepatch-5.10.251-248.983

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: net: skbuff: propagate shared-frag marker through pskbcopy CVE-2026-46300 Affected Packages: kernel-livepatch-5.10.251-248.983 Issue Correction: Please ensure you have live patching enabled. Run yum update...

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: bna: Ensure that the copied buffer is terminated with NUL characters. Currently, we allocate a kernel buffer of size nbytes and copy nbytes from user space to that buffer. Later, we use sscanf on this buffer, but we do not ensure...

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 kernel was updated to fix various security issues The following security issues were fixed: CVE-2025-54518: x86/CPU/AMD: Prevent improper isolation of shared resources in Zen2's op cache bsc1264013. CVE-2026-46300: net: skbuff: propagate shared-frag marker through...

CLSA-2026-1778783464 Update of kernel

net: skbuff: propagate shared-frag marker through pskbcopy...

ROS-20260514-73-0002

A vulnerability in the phparraymergewrapper function of the PHP programming language involves buffer copying without input validation. Exploitation of the vulnerability could allow a remote attacker to compromise data integrity and cause a denial of service...

CVE-2025-47404 Buffer Copy Without Checking Size of Input in Automotive Audio

Memory corruption when dynamically changing the size of a previously allocated buffer while its contents are being modified...

CVE-2025-47404 Buffer Copy Without Checking Size of Input in Automotive Audio

Memory corruption when dynamically changing the size of a previously allocated buffer while its contents are being modified...

CVE-2025-47404

CVE-2025-47404 describes memory corruption that occurs when dynamically changing the size of a previously allocated buffer while its contents are being modified. The NVD entry lists a Local attack vector with Low exploit complexity and Low privileges, resulting in High impact to confidentiality, ...

ROS-20260408-73-0026

A vulnerability in the drivers/soc/qcom/mdtloader.c component of the Linux kernel is related to buffer copying without input data validation. Exploitation of the vulnerability allows an intruder to gain unauthorized access to protected information...

ROS-20260408-73-0018

A vulnerability in the usbparsessendpointcompanion function of the drivers/usb/core/config.c component of the Linux kernel is related to buffer copying without input data validation. Exploitation of the vulnerability allows an intruder to affect confidentiality and availability of protected...

ROS-20260408-73-0032

A vulnerability in the btrfscopyroot function of the btrfs component of the Linux kernel is related to buffer copying without input data validation. Exploitation of the vulnerability allows an attacker to cause a denial of service...

ROS-20260408-73-0030

A vulnerability in the blkstacklimits function of the block/blk-settings.c component of the Linux kernel is related to buffer copying without input data validation. Exploitation of the vulnerability allows an attacker to cause a denial of service...

CVE-2025-47389

Memory corruption when buffer copy operation fails due to integer overflow during attestation report generation...

ROS-20260407-73-0007

A vulnerability in the sizelimitmb function of the Linux kernel is related to buffer copying without input validation. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

ROS-20260407-73-0032

A vulnerability in the iio/light/as73211.c component of the Linux kernel is related to buffer copying without input data validation. Exploitation of the vulnerability allows an attacker to cause a denial of service...

EUVD-2025-209224

Memory corruption when buffer copy operation fails due to integer overflow during attestation report generation...

CVE-2026-21382

CVE-2026-21382 describes a memory corruption issue in a Power Management IC when handling power management requests due to improperly sized input/output buffers. CVSS 3.1 base score 7.8 (HIGH), with LOCAL attack vector, LOW attack complexity, LOW privileges required, and HIGH impact to confidenti...

CVE-2026-21382 Buffer Copy Without Checking Size of Input in Power Management IC

Memory Corruption when handling power management requests with improperly sized input/output buffers...