7640 matches found
DEBIAN-CVE-2025-21735
In the Linux kernel, the following vulnerability has been resolved: NFC: nci: Add bounds checking in ncihcicreatepipe The "pipe" variable is a u8 which comes from the network. If it's more than 127, then it results in memory corruption in the caller, ncihciconnectgate...
UBUNTU-CVE-2025-21735
In the Linux kernel, the following vulnerability has been resolved: NFC: nci: Add bounds checking in ncihcicreatepipe The "pipe" variable is a u8 which comes from the network. If it's more than 127, then it results in memory corruption in the caller, ncihciconnectgate...
CVE-2025-21708
In the Linux kernel, the following vulnerability has been resolved: net: usb: rtl8150: enable basic endpoint checking Syzkaller reports 1 encountering a common issue of utilizing a wrong usb endpoint type during URB submitting stage. This, in turn, triggers a warning shown below. For now, enable...
CVE-2025-21711
In the Linux kernel, the following vulnerability has been resolved: net/rose: prevent integer overflows in rosesetsockopt In case of possible unpredictably large arguments passed to rosesetsockopt and multiplied by extra values on top of that, integer overflows may occur. Do the safest minimum an...
DEBIAN-CVE-2025-21708
In the Linux kernel, the following vulnerability has been resolved: net: usb: rtl8150: enable basic endpoint checking Syzkaller reports 1 encountering a common issue of utilizing a wrong usb endpoint type during URB submitting stage. This, in turn, triggers a warning shown below. For now, enable...
UBUNTU-CVE-2025-21708
In the Linux kernel, the following vulnerability has been resolved: net: usb: rtl8150: enable basic endpoint checking Syzkaller reports 1 encountering a common issue of utilizing a wrong usb endpoint type during URB submitting stage. This, in turn, triggers a warning shown below. For now, enable...
CVE-2025-21748
CVE-2025-21748 affects the Linux kernel’s ksmbd component on 32‑bit systems, where integer additions in ipc_msg_alloc() could overflow and cause memory corruption. The fix adds bounds checking via KSMBD_IPC_MAX_PAYLOAD to prevent the overflow. Connected documents confirm this exact description an...
CVE-2025-21748 ksmbd: fix integer overflows on 32 bit systems
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix integer overflows on 32 bit systems On 32bit systems the addition operations in ipcmsgalloc can potentially overflow leading to memory corruption. Add bounds checking using KSMBDIPCMAXPAYLOAD to avoid overflow...
CVE-2025-21748
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix integer overflows on 32 bit systems On 32bit systems the addition operations in ipcmsgalloc can potentially overflow leading to memory corruption. Add bounds checking using KSMBDIPCMAXPAYLOAD to avoid overflow...
CVE-2025-21748 ksmbd: fix integer overflows on 32 bit systems
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix integer overflows on 32 bit systems On 32bit systems the addition operations in ipcmsgalloc can potentially overflow leading to memory corruption. Add bounds checking using KSMBDIPCMAXPAYLOAD to avoid overflow...
CVE-2025-21735 NFC: nci: Add bounds checking in nci_hci_create_pipe()
In the Linux kernel, the following vulnerability has been resolved: NFC: nci: Add bounds checking in ncihcicreatepipe The "pipe" variable is a u8 which comes from the network. If it's more than 127, then it results in memory corruption in the caller, ncihciconnectgate...
CVE-2025-21735 NFC: nci: Add bounds checking in nci_hci_create_pipe()
In the Linux kernel, the following vulnerability has been resolved: NFC: nci: Add bounds checking in ncihcicreatepipe The "pipe" variable is a u8 which comes from the network. If it's more than 127, then it results in memory corruption in the caller, ncihciconnectgate...
CVE-2025-21711
CVE-2025-21711 affects the Linux kernel in the Rose network stack (net/rose) via rose_setsockopt(). The vulnerability arises when handling large arguments for sockopt, where an integer overflow can occur if the input is unexpectedly large. The fix adds bounds checks on the contents of 'opt', retu...
CVE-2025-21711 net/rose: prevent integer overflows in rose_setsockopt()
In the Linux kernel, the following vulnerability has been resolved: net/rose: prevent integer overflows in rosesetsockopt In case of possible unpredictably large arguments passed to rosesetsockopt and multiplied by extra values on top of that, integer overflows may occur. Do the safest minimum an...
CVE-2025-21708
In the Linux kernel, the following vulnerability has been resolved: net: usb: rtl8150: enable basic endpoint checking Syzkaller reports 1 encountering a common issue of utilizing a wrong usb endpoint type during URB submitting stage. This, in turn, triggers a warning shown below. For now, enable...
CVE-2025-21708 net: usb: rtl8150: enable basic endpoint checking
In the Linux kernel, the following vulnerability has been resolved: net: usb: rtl8150: enable basic endpoint checking Syzkaller reports 1 encountering a common issue of utilizing a wrong usb endpoint type during URB submitting stage. This, in turn, triggers a warning shown below. For now, enable...
CVE-2025-21708
The CVE-2025-21708 issue affects the Linux kernel rtl8150 USB driver. It stems from wrong USB endpoint handling during URB submission. Mitigation in the current patch is to enable basic endpoint checking (bulk/interrupt endpoints) to reduce the risk, with cosmetic changes planned later. Exploit d...
CVE-2025-21708 net: usb: rtl8150: enable basic endpoint checking
In the Linux kernel, the following vulnerability has been resolved: net: usb: rtl8150: enable basic endpoint checking Syzkaller reports 1 encountering a common issue of utilizing a wrong usb endpoint type during URB submitting stage. This, in turn, triggers a warning shown below. For now, enable...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an error checking the devmioremap return value in th1520...
PT-2025-8860 · Linux +4 · Linux Kernel +4
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to integer overflows in the ksmbd component of the Linux kernel on 32-bit systems. Specifically, the addition operations in the ipc msg alloc function can...