EUVD-2023-12870

Malicious code in bioql PyPI...

CVE-2025-38063 dm: fix unconditional IO throttle caused by REQ_PREFLUSH

In the Linux kernel, the following vulnerability has been resolved: dm: fix unconditional IO throttle caused by REQPREFLUSH When a bio with REQPREFLUSH is submitted to dm, sendemptyflush generates a flushbio with REQOPWRITE | REQPREFLUSH | REQSYNC, which causes the flushbio to be throttled by...

Advisory ROSA-SA-2025-2871

Software: tigervnc 1.8.0 OS: rosa-server79 packageevrstring: tigervnc-1.8.0.0-33.0.5.res7 CVE-ID: CVE-2024-9632 BDU-ID: 2024-09084 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the XkbSetCompatMap function of the X Window System X.Org Server implementation is related to a buffer overflow in...

CVE-2025-37942

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

CVE-2025-22095 PCI: brcmstb: Fix error path after a call to regulator_bulk_get()

In the Linux kernel, the following vulnerability has been resolved: PCI: brcmstb: Fix error path after a call to regulatorbulkget If the regulatorbulkget returns an error and no regulators are created, we need to set their number to zero. If we don't do this and the PCIe link up fails, a call to...

CVE-2025-22076

CVE-2025-22076 is a Linux kernel vulnerability in exfat handling. The root cause is missing shutdown checks in several I/O paths: read_iter, and later write_iter, splice_read, and mmap. This allowed a device deletion to leave dirty data readable, per the description. The fix adds shutdown checks ...

CVE-2025-21896 fuse: revert back to __readahead_folio() for readahead

In the Linux kernel, the following vulnerability has been resolved: fuse: revert back to readaheadfolio for readahead In commit 3eab9d7bc2f4 "fuse: convert readahead to use folios", the logic was converted to using the new folio readahead code, which drops the reference on the folio once it is...

CVE-2023-52932 mm/swapfile: add cond_resched() in get_swap_pages()

In the Linux kernel, the following vulnerability has been resolved: mm/swapfile: add condresched in getswappages The softlockup still occurs in getswappages under memory pressure. 64 CPU cores, 64GB memory, and 28 zram devices, the disksize of each zram device is 50MB with same priority as si. Us...

CVE-2025-21766 ipv4: use RCU protection in __ip_rt_update_pmtu()

In the Linux kernel, the following vulnerability has been resolved: ipv4: use RCU protection in iprtupdatepmtu iprtupdatepmtu must use RCU protection to make sure the net structure it reads does not disappear...

CVE-2025-21762 arp: use RCU protection in arp_xmit()

In the Linux kernel, the following vulnerability has been resolved: arp: use RCU protection in arpxmit arpxmit can be called without RTNL or RCU protection. Use RCU protection to avoid potential UAF...

CVE-2025-21721 nilfs2: handle errors that nilfs_prepare_chunk() may return

In the Linux kernel, the following vulnerability has been resolved: nilfs2: handle errors that nilfspreparechunk may return Patch series "nilfs2: fix issues with rename operations". This series fixes BUGON check failures reported by syzbot around rename operations, and a minor behavioral issue...

CVE-2022-49143

...

Advisory ROSA-SA-2025-2720

Software: vim 8.0.1763 OS: ROSA Virtualization 3.0 packageevrstring: vim-8.0.1763 CVE-ID: CVE-2019-12735 BDU-ID: 2019-03251 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the getchar.c library of the Vim text editor is related to the lack of filtering of the "!source" command, which allows arbitrar...

CVE-2024-57916

In the Linux kernel, the following vulnerability has been resolved: misc: microchip: pci1xxxx: Resolve kernel panic during GPIO IRQ handling Resolve kernel panic caused by improper handling of IRQs while accessing GPIO values. This is done by replacing generichandleirq with handlenestedirq...

CVE-2024-56723

In the Linux kernel, the following vulnerability has been resolved: mfd: intelsocpmicbxtwc: Use IRQ domain for PMIC devices While design wise the idea of converting the driver to use the hierarchy of the IRQ chips is correct, the implementation has inherited flaws. This was unveiled when...

conmon security update

conmon 2.1.3-8 - address CVE-2023-39326 2.1.3-7 - Resolve CVE-2023-39325 2.1.3-6 - Add ol8baseoslatest, and ol9baseoslatest, to Jenkinsfile 2.1.3-5 - Add systemd-devel as build requirement 2.1.3-4 - Add support ARM build 2.1.3.3 - Add OL9 support 2.1.3.2 - Update inline with Linux team building...

Fedora 13 : wireshark-1.2.14-1.fc13 (2011-0460)

Mon Jan 17 2011 Jan Safranek - 1.2.14-1 - upgrade to 1.2.14 - see http://www.wireshark.org/docs/relnotes/wireshark-1.2.1 4.html - Wed Jan 5 2011 Jan Safranek - 1.2.13-2 - fixed buffer overflow in ENTTEC dissector 666897 - Mon Nov 22 2010 Jan Safranek - 1.2.13-1 - upgrade to 1.2.13 - see...

Moderate: tomcat security update

5.5.23-0jpp.1.0.4.el5 - Remove erroneous rebuild-gcj-db for javadoc subpackage - Add fixes for CVE-2007-2449 and CVE-2007-2450 - resolves: bug 244846, bug 244816...