Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: x86/fpu: State corruption has been prevented in fpurestoresig. The non-compacted slowpath uses copyfromuser to copy the entire user buffer into the kernel buffer, verbatim. This means that the kernel buffer may now contain entire...

CVE-2026-43073

A flaw was found in the Linux kernel. The copyusernocache function had a misleading name, which led to its incorrect use by certain kernel components drivers. These drivers performed kernel memory copies without properly considering the function's exception handling mechanisms. This improper usag...

SUSE CVE-2026-43073

In the Linux kernel, the following vulnerability has been resolved: x86-64: rename misleadingly named 'copyusernocache' function This function was a masterclass in bad naming, for various historical reasons. It claimed to be a non-cached user copy. It is literally neither of those things. It's a...

CVE-2026-43073

In the Linux kernel, the following vulnerability has been resolved: x86-64: rename misleadingly named 'copyusernocache' function This function was a masterclass in bad naming, for various historical reasons. It claimed to be a non-cached user copy. It is literally neither of those things. It's a...

CVE-2026-43073

In the Linux kernel, the following vulnerability has been resolved: x86-64: rename misleadingly named 'copyusernocache' function This function was a masterclass in bad naming, for various historical reasons. It claimed to be a non-cached user copy. It is literally neither of those things. It's a...

CVE-2026-43073

CVE-2026-43073 stems from a misnamed x86-64 kernel routine __copy_user_nocache(), a non-temporal destination copy with exception handling that is not actually a pure user-kernel copy and has complex alignment behavior. The fix renames the function and normalizes the prototype so callers perform p...

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the misleading naming of the copyusernocache function in the x86-64 architecture. This function...

CLSA-2026-1770734656 expat: Fix of CVE-2026-24515

CVE-2026-24515: Fix a null pointer dereference in the XML parser caused by the failure to copy user data for unknown encoding handlers...

CLSA-2026-1770395482 Fix CVE(s): CVE-2026-24515

SECURITY UPDATE: XMLExternalEntityParserCreate does not copy unknown encoding handler user data - debian/patches/CVE-2026-24515.patch: Fix a null pointer dereference in the XML parser caused by the failure to copy user data for unknown encoding handlers - CVE-2026-24515...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986769)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986769 advisory. In the Linux kernel, the following vulnerability has been resolved: x86/fpu: Prevent state corruption in fpurestoresig The non-compacted slowpath uses copyfromuser a...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987233)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987233 advisory. In the Linux kernel, the following vulnerability has been resolved: ALSA: seq: Fix function prototype mismatch in sndseqexpandvarevent With clang's kernel control fl...

SUSE CVE-2024-51729

In the Linux kernel, the following vulnerability has been resolved: mm: use aligned address in copyusergiganticpage In current kernel, hugetlbwp calls copyuserlargefolio with the fault address. Where the fault address may be not aligned with the huge page size. Then, copyuserlargefolio may call...

CVE-2024-51729

In the Linux kernel, the following vulnerability has been resolved: mm: use aligned address in copyusergiganticpage In current kernel, hugetlbwp calls copyuserlargefolio with the fault address. Where the fault address may be not aligned with the huge page size. Then, copyuserlargefolio may call...

CVE-2024-51729

Technical details for CVE-2024-51729 are not provided in the connected documents. The supplied items reference a kernel fix at a high level but do not enumerate affected products/versions beyond generic kernel context; monitor for updates.

UBUNTU-CVE-2022-48994

In the Linux kernel, the following vulnerability has been resolved: ALSA: seq: Fix function prototype mismatch in sndseqexpandvarevent With clang's kernel control flow integrity kCFI, CONFIGCFICLANG, indirect call targets are validated against the expected function pointer prototype to make sure...

kernel: RDS sockets local privilege escalation

The rdspagecopyuser function in net/rds/page.c in the Reliable Datagram Sockets RDS protocol implementation in the Linux kernel before 2.6.36 does not properly validate addresses obtained from user space, which allows local users to gain privileges via crafted use of the sendmsg and recvmsg syste...

Cacti 0.8.6i (copy_cacti_user.php) SQL Injection Create Admin Exploit

No description provided by source. ?php printr' --------------------------------------------------------------------------- Cacti 0.8.6i "copycactiuser.php" sql injection create new admin exploit by rgod dork: intitle:"login to cacti" mail: retrog at alice dot it site:...