Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: drm: bridge: adv7511: Unregistering the i2c device after unregistering the CEC adapter. The cecunregisteradapter function assumes that the underlying CEC adapter is callable. For example, if the CEC adapter currently has a valid...

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: media: s5pcec: limit msglen to CECMAXMSGSIZE I expect that the hardware will have limited this value to 16, but just in case it isn’t the case, check for this corner case...

Ubuntu 20.04 LTS : Linux kernel (AWS FIPS) vulnerabilities (USN-7392-4)

"The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7392-4 advisory. Chenyuan Yang discovered that the CEC driver driver in the Linux kernel contained a use-after-free vulnerability. A local attacker could use this to cau...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013748)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013748 advisory. In the Linux kernel, the following vulnerability has been resolved: media: s5pcec: limit msg.len to CECMAXMSGSIZE I expect that the hardware will have limited this t...

Unity Linux 20.1050a Security Update: kernel (UTSA-2026-007040)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007040 advisory. In the Linux kernel, the following vulnerability has been resolved: media: rainshadow-cec: fix TOCTOU race condition in raininterrupt In the interrupt handler...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007280)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007280 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/bridge: adv7511: fix crash on irq during probe Moved IRQ registration down to end of...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005696)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005696 advisory. In the Linux kernel, the following vulnerability has been resolved: drm: bridge: adv7511: unregister cec i2c device after cec adapter cecunregisteradapter assumes th...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-005476)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005476 advisory. In the Linux kernel, the following vulnerability has been resolved: drm: bridge: adv7511: unregister cec i2c device after cec adapter cecunregisteradapter assumes th...

USN-8034-2: Linux kernel (NVIDIA Tegra IGX) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Nios II architecture; - Sun Sparc architecture; - User-Mode Linux UML; - x86 architecture; - Block layer subsystem;...

EUVD-2020-24207

Malware in sbrugna...

EUVD-2017-18650

Malware in sbrugna...

EUVD-2017-18620

Malware in sbrugna...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-986356)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986356 advisory. In the Linux kernel, the following vulnerability has been resolved: media: s5pcec: limit msg.len to CECMAXMSGSIZE I expect that the hardware will have limited this t...

CISA Releases Ten Industrial Control Systems Advisories

CISA released ten Industrial Control Systems ICS advisories on September 30, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-273-01 MegaSys Enterprises Telenium Online Web Application ICSA-25-273-02 Festo...

CVE-2022-50412 drm: bridge: adv7511: unregister cec i2c device after cec adapter

In the Linux kernel, the following vulnerability has been resolved: drm: bridge: adv7511: unregister cec i2c device after cec adapter cecunregisteradapter assumes that the underlying adapter ops are callable. For example, if the CEC adapter currently has a valid physical address, then the...

CVE-2022-50412

CVE-2022-50412 affects the Linux kernel code paths for drm: bridge: adv7511 and CEC i2c device unregistration. The issue arises when cec_unregister_adapter() calls adapter ops that may become invalid during unregistration, which can invalidate the CEC address and trigger a kernel oops (example tr...

CVE-2022-50412

In the Linux kernel, the following vulnerability has been resolved: drm: bridge: adv7511: unregister cec i2c device after cec adapter cecunregisteradapter assumes that the underlying adapter ops are callable. For example, if the CEC adapter currently has a valid physical address, then the...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from not properly dereferencing a CEC I2C device, which could result in a null pointer dereference...

Linux Distros Unpatched Vulnerability : CVE-2025-39713

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - media: rainshadow-cec: fix TOCTOU race condition in raininterrupt In the interrupt handler raininterrupt, the buffer full check on rain-buflen is performed befo...

SUSE CVE-2025-39713

In the Linux kernel, the following vulnerability has been resolved: media: rainshadow-cec: fix TOCTOU race condition in raininterrupt In the interrupt handler raininterrupt, the buffer full check on rain-buflen is performed before acquiring rain-buflock. This creates a Time-of-Check to Time-of-Us...