470 matches found
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a memory leak in the qcom cpufreq error path...
Linux Distros Unpatched Vulnerability : CVE-2022-50658
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - cpufreq: qcom: fix memory leak in error path If for some reason the speedbin length is incorrect, then there is a memory leak in the error path because we never...
EUVD-2023-60064
In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Handle lock during peerid find ath12kpeerfindbyid requires that the caller hold the ab-baselock. Currently the WBM error path does not hold the lock and calling that function, leads to the following lockdepassertin...
SUSE CVE-2025-40194
In the Linux kernel, the following vulnerability has been resolved: cpufreq: intelpstate: Fix object lifecycle issue in updateqosrequest The cpufreqcpuput call in updateqosrequest takes place too early because the latter subsequently calls freqqosupdaterequest that indirectly accesses the policy...
Linux Distros Unpatched Vulnerability : CVE-2025-40194
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - cpufreq: intelpstate: Fix object lifecycle issue in updateqosrequest The cpufreqcpuput call in updateqosrequest takes place too early because the latter...
CVE-2025-40194
In the Linux kernel, the following vulnerability has been resolved: cpufreq: intelpstate: Fix object lifecycle issue in updateqosrequest The cpufreqcpuput call in updateqosrequest takes place too early because the latter subsequently calls freqqosupdaterequest that indirectly accesses the policy...
CVE-2025-40194
CVE-2025-40194 affects the Linux kernel cpufreq Intel_pstate driver. The vulnerability arises from an object lifecycle issue in update_qos_request() where cpufreq_cpu_put() is invoked too early, while freq_qos_update_request() may indirectly access the same policy object. The advisory notes that ...
CVE-2025-40194
In the Linux kernel, the following vulnerability has been resolved: cpufreq: intelpstate: Fix object lifecycle issue in updateqosrequest The cpufreqcpuput call in updateqosrequest takes place too early because the latter subsequently calls freqqosupdaterequest that indirectly accesses the policy...
CVE-2025-40194 cpufreq: intel_pstate: Fix object lifecycle issue in update_qos_request()
In the Linux kernel, the following vulnerability has been resolved: cpufreq: intelpstate: Fix object lifecycle issue in updateqosrequest The cpufreqcpuput call in updateqosrequest takes place too early because the latter subsequently calls freqqosupdaterequest that indirectly accesses the policy...
Oracle Linux 10 / 9 : Unbreakable Enterprise kernel (ELSA-2025-25754)
The remote Oracle Linux 10 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-25754 advisory. 6.12.0-105.51.5 - RDMA/mlx5: Fix vport loopback forcing for MPV device Patrisious Haddad Orabug: 38226124 - arm64: Utilize foreachcpuwrap for...
Security update for the Linux Kernel
The SUSE Linux Enterprise Server 16.0 and SUSE Linux Micro 6.2 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-53164: net: sched: fix ordering of qlen adjustment bsc1234863. CVE-2024-57891: schedext: Fix invalid irq restore in scxopsbypass...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990607)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990607 advisory. In the Linux kernel, the following vulnerability has been resolved: cpufreq: schedutil: Use kobject release method to free sugovtunables The struct sugovtunables is...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990024)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990024 advisory. In the Linux kernel, the following vulnerability has been resolved: cpufreq: exit callback is optional The exit callback is optional and shouldn't be called without...
Unity Linux 20.1050e Security Update: kernel (UTSA-2025-989931)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989931 advisory. In the Linux kernel, the following vulnerability has been resolved: cpufreq: pmac32-cpufreq: Fix refcount leak bug In pmaccpufreqinitMacRISC3, we need to add...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990381)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990381 advisory. In the Linux kernel, the following vulnerability has been resolved: cpufreq: exit callback is optional The exit callback is optional and shouldn't be called without...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988654)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988654 advisory. In the Linux kernel, the following vulnerability has been resolved: cpufreq: schedutil: Use kobject release method to free sugovtunables The struct sugovtunables is...
Astra Linux – Vulnerability in Linux 6.12
In the Linux kernel, the following vulnerability has been resolved: cpufreq/amd-pstate: A missing NULL pointer check was added in amdpstateupdate. Check if the policy variable is NULL before dereferencing it in amdpstateupdate...
EUVD-2023-60045
Nagios XI versions prior to 5.11.3 are vulnerable to cross-site scripting XSS and cross-site request forgery CSRF via the Hypermap Replay component. An attacker can submit crafted input that is not properly validated or escaped, allowing injection of malicious script that executes in the context ...
EUVD-2022-54716
In the Linux kernel, the following vulnerability has been resolved: cpufreq: governor: Use kobject release method to free dbsdata The struct dbsdata embeds a struct govattrset and the struct govattrset embeds a kobject. Since every kobject must have a release method and we can't use kfree to free...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987573)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987573 advisory. In the Linux kernel, the following vulnerability has been resolved: cpufreq: schedutil: Use kobject release method to free sugovtunables The struct sugovtunables is...