CVE-2025-38651 landlock: Fix warning from KUnit tests

In the Linux kernel, the following vulnerability has been resolved: landlock: Fix warning from KUnit tests getidrange expects a positive value as first argument but getrandomu8 can return 0. Fix this by clamping it. Validated by running the test in a for loop for 1000 times. Note that MAX is wron...

PT-2025-34412 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel versions 6.16.0-rc1-dev-00001-g314a2f98b65f and earlier Description: A flaw was identified in the Linux kernel related to landlock functionality. Specifically, the get id range function was susceptible to receiving a zero value a...

MAL-2025-34841 Malicious code in test-mlw2-adunc-clamp (npm)

The package test-mlw2-adunc-clamp was found to contain malicious code...

Malicious code in @malware-test-noisy-peags-clamp-linin/test-mlw3-noisy-peags-clamp-linin (npm)

The package @malware-test-noisy-peags-clamp-linin/test-mlw3-noisy-peags-clamp-linin was found to contain malicious code...

Malicious code in test-mlw2-adunc-clamp (npm)

The package test-mlw2-adunc-clamp was found to contain malicious code...

MAL-2025-8814 Malicious code in @malware-test-noisy-peags-clamp-linin/test-mlw3-noisy-peags-clamp-linin (npm)

The package @malware-test-noisy-peags-clamp-linin/test-mlw3-noisy-peags-clamp-linin was found to contain malicious code...

Linux Distros Unpatched Vulnerability : CVE-2025-40014

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - objtool, spi: amd: Fix out-of-bounds stack access in amdsetspifreq If speedhz AMDSPIMINHZ, amdsetspifreq iterates over the entire amdspifreq array without...

CVE-2025-38201

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftsetpipapo: clamp maximum map bucket size to INTMAX Otherwise, it is possible to hit WARNONONCE in kvmallocnodenoprof when resizing hashtable because GFPNOWARN is unset. Similar to: b541ba7d1f5a "netfilter: conntrack...

Astra Linux - уязвимость в linux-6.12

In the Linux kernel, the following vulnerability has been resolved: spi: cadence: Fix out-of-bounds array access in cdnsmrvlxspisetupclock If requestedclk 128, cdnsmrvlxspisetupclock iterates over the entire cdnsmrvlxspiclkdivlist array without breaking out early, causing 'i' to go beyond the arr...

SUSE CVE-2025-40014

In the Linux kernel, the following vulnerability has been resolved: objtool, spi: amd: Fix out-of-bounds stack access in amdsetspifreq If speedhz AMDSPIMINHZ, amdsetspifreq iterates over the entire amdspifreq array without breaking out early, causing 'i' to go beyond the array bounds. Fix that by...

UBUNTU-CVE-2025-40014

In the Linux kernel, the following vulnerability has been resolved: objtool, spi: amd: Fix out-of-bounds stack access in amdsetspifreq If speedhz AMDSPIMINHZ, amdsetspifreq iterates over the entire amdspifreq array without breaking out early, causing 'i' to go beyond the array bounds. Fix that by...

CVE-2025-40014 objtool, spi: amd: Fix out-of-bounds stack access in amd_set_spi_freq()

In the Linux kernel, the following vulnerability has been resolved: objtool, spi: amd: Fix out-of-bounds stack access in amdsetspifreq If speedhz AMDSPIMINHZ, amdsetspifreq iterates over the entire amdspifreq array without breaking out early, causing 'i' to go beyond the array bounds. Fix that by...

UBUNTU-CVE-2025-22067

In the Linux kernel, the following vulnerability has been resolved: spi: cadence: Fix out-of-bounds array access in cdnsmrvlxspisetupclock If requestedclk 128, cdnsmrvlxspisetupclock iterates over the entire cdnsmrvlxspiclkdivlist array without breaking out early, causing 'i' to go beyond the arr...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: hwmon: adc128d818 Underflow issues were fixed when writing limit attributes. The DIVROUNDCLOSEST function, after kstrtol, may cause an underflow if a large negative number, such as -9223372036854775808, is provided by the user...

CVE-2024-53159

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

CLSA-2024-1732555093 Fix CVE(s): CVE-2020-27767

SECURITY UPDATE: Undefined behavior due to values outside range in quantum.h - debian/patches/CVE-2020-27767.patch: Fix quantum.h to include float.h to handle min and max values for Quantum type - debian/patches/CVE-2020-27767-1.patch: Fix ClampToQuantum function to handle negative values correct...

kernel: hwmon: (lm90) Prevent integer overflow/underflow in hysteresis calculations

In the Linux kernel, the following vulnerability has been resolved: hwmon: lm90 Prevent integer overflow/underflow in hysteresis calculations Commit b50aa49638c7 "hwmon: lm90 Prevent integer underflows of temperature calculations" addressed a number of underflow situations when writing temperatur...

kernel: ALSA: scarlett2: Add clamp() in scarlett2_mixer_ctl_put()

In the Linux kernel, the following vulnerability has been resolved: ALSA: scarlett2: Add clamp in scarlett2mixerctlput The Linux kernel CVE team has assigned CVE-2023-52674 to this issue. Upstream advisory: https://lore.kernel.org/linux-cve-announce/2024051747-CVE-2023-52674-2aec@gregkh/T...

AZL-49572 CVE-2024-46759 affecting package kernel for versions less than 5.15.167.1-1

In the Linux kernel, the following vulnerability has been resolved: hwmon: adc128d818 Fix underflows seen when writing limit attributes DIVROUNDCLOSEST after kstrtol results in an underflow if a large negative number such as -9223372036854775808 is provided by the user. Fix it by reordering...

DEBIAN-CVE-2024-46759

In the Linux kernel, the following vulnerability has been resolved: hwmon: adc128d818 Fix underflows seen when writing limit attributes DIVROUNDCLOSEST after kstrtol results in an underflow if a large negative number such as -9223372036854775808 is provided by the user. Fix it by reordering...