10 matches found
CVE-2025-38320 arm64/ptrace: Fix stack-out-of-bounds read in regs_get_kernel_stack_nth()
In the Linux kernel, the following vulnerability has been resolved: arm64/ptrace: Fix stack-out-of-bounds read in regsgetkernelstacknth KASAN reports a stack-out-of-bounds read in regsgetkernelstacknth. Call Trace: 97.283505 BUG: KASAN: stack-out-of-bounds in regsgetkernelstacknth+0xa8/0xc8...
CVE-2025-38141
In the Linux kernel, the following vulnerability has been resolved: dm: fix dmblkreportzones If dmgetlivetable returned NULL, dmputlivetable was never called. Also, it is possible that md-zonerevalidatemap will change while calling this function. Only read it once, so that we are always using the...
CVE-2022-50136
The CVE-2022-50136 issue affects the Linux kernel RDMA/siw path, where siw_recv_mpa_rr returning -EAGAIN could cause IW_CM_EVENT_CONNECT_REPLY to be reported incorrectly, triggering a kernel call trace (iw_cm) and a BUG at iwcm.c:894. A patch/fix has been applied in kernel code (e.g., commits lin...
poppler security update
An update is available for poppler. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Poppler is a Portable Document Format PDF rendering library, used by...
CVE-2022-49905 net/smc: Fix possible leaked pernet namespace in smc_init()
In the Linux kernel, the following vulnerability has been resolved: net/smc: Fix possible leaked pernet namespace in smcinit In smcinit, registerpernetsubsys&smcnetstatops is called without any error handling. If it fails, registering of &smcnetops won't be reverted. And if smcnlinit fails,...
CVE-2022-49792 iio: adc: mp2629: fix potential array out of bound access
In the Linux kernel, the following vulnerability has been resolved: iio: adc: mp2629: fix potential array out of bound access Add sentinel at end of maps to avoid potential array out of bound access in iio core...
CVE-2025-22040 ksmbd: fix session use-after-free in multichannel connection
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix session use-after-free in multichannel connection There is a race condition between session setup and ksmbdsessionsderegister. The session can be freed before the connection is added to channel list of session. This...
CVE-2024-56747
CVE-2024-56747 concerns the Linux kernel scsi/qedi memory leak. The vulnerable path occurs when the sb (shared memory) for qedi_sb_init is allocated but not freed if sb_init fails, leading to a memory leak. The fix adds dma_free_coherent() to release sb_virt, aligning with the handling in qedr_al...
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-1887)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2022:1911-1 Security update for hdf5, suse-hpc
This update for hdf5, suse-hpc fixes the following issues: Security issues fixed: - CVE-2020-10811: Fixed heap-based buffer over-read in the function H5Olayoutdecode located in H5Olayout.c bsc1167405. - CVE-2020-10810: Fixed NULL pointer dereference in the function H5ACunpinentry located in H5AC....