Astra Linux - уязвимость в linux-5.10, linux-5.15, linux-6.1

A null pointer dereference flaw was discovered in the Linux kernel API for the cryptographic algorithm scatterwalk functionality. This issue occurs when a user constructs a malicious packet with specific socket configurations, which could allow a local user to crash the system or escalate their...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001699)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001699 advisory. A NULL pointer dereference flaw was found in the Linux kernels Amateur Radio AX.25 protocol functionality in the way a user connects with the protocol. This flaw...

CVE-2025-44013

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the following...

Astra Linux – Vulnerability in gnutls28

A NULL pointer dereference flaw was discovered in the GnuTLS software in the gnutlsfigurecommonciphersuite function...

gnutls: NULL pointer dereference in _gnutls_figure_common_ciphersuite()

A NULL pointer dereference flaw was found in the GnuTLS software in gnutlsfigurecommonciphersuite...

OESA-2025-2264 wireshark security update

Security Fixes: A vulnerability classified as problematic CWE-476 has been found in Wireshark versions 4.4.0 to 4.4.8. The application dereferences a pointer that it expects to be valid but is NULL, typically causing a crash or exit, impacting availability. Upgrading to version 4.4.9 eliminates...

CVE-2025-6395

A NULL pointer dereference flaw was found in the GnuTLS software in gnutlsfigurecommonciphersuite...

Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2024-2586)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

kernel: cppc_cpufreq: Fix possible null pointer dereference

A NULL pointer dereference flaw was found in cppccpufreqgetrate in the Linux kernel. This issue may result in a crash...

OESA-2024-2025 unbound security update

Unbound is a validating, recursive, caching DNS resolver. It is designed to be fast and lean and incorporates modern features based on open standards. To help increase online privacy, Unbound supports DNS-over-TLS which allows clients to encrypt their communication. Unbound is available for most...

kernel: hugetlbfs: Null pointer dereference in hugetlbfs_fill_super function

A null pointer dereference flaw was found in the hugetlbfsfillsuper function in the Linux kernel hugetlbfs HugeTLB pages functionality. This issue may allow a local user to crash the system or potentially escalate their privileges on the system...

kernel: NULL pointer dereference in rawv6_push_pending_frames

A NULL pointer dereference flaw was found in rawv6pushpendingframes in net/ipv6/raw.c in the network subcomponent in the Linux kernel. This flaw causes the system to crash...

Linux kernel 代码问题漏洞

Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux. A security vulnerability exists in the Linux kernel that originates from a null pointer dereference flaw in diFree in fs/jfs/inode.c of the Journaled File System JFS. An attacker could exploit this...

AZL-35153 CVE-2021-4158 affecting package qemu for versions less than 6.2.0-18

A NULL pointer dereference issue was found in the ACPI code of QEMU. A malicious, privileged user within the guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition...

CVE-2022-1671

A NULL pointer dereference flaw was found in rxrpcpreparses in net/rxrpc/serverkey.c in the Linux kernel. This flaw allows a local attacker to crash the system or leak internal kernel information...

CVE-2020-35505

Summary: CVE-2020-35505 affects the QEMU am53c974 SCSI host bus adapter emulation, prior to version 6.0.0. Root cause: a NULL pointer dereference while processing the Information Transfer command. Impact: a privileged guest can crash the host QEMU process, causing a denial of service and primaril...

openssl: EDIPARTYNAME NULL pointer de-reference

A null pointer dereference flaw was found in openssl. A remote attacker, able to control the arguments of the GENERALNAMEcmp function, could cause the application, compiled with openssl to crash resulting in a denial of service. The highest threat from this vulnerability is to system availability...

curl: LDAP NULL pointer dereference

A NULL pointer dereference flaw was found in the way libcurl checks values returned by the openldap ldapgetattributeber function. A malicious LDAP server could use this flaw to crash a libcurl client application via a specially crafted LDAP reply...

EulerOS Virtualization 2.5.3 : libvirt (EulerOS-SA-2019-1367)

According to the version of the libvirt packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability : - A NULL pointer dereference flaw was discovered in libvirt in the way it gets interface information through the QEMU agent. An...

kernel: net: rds: dereference of a NULL device in rds_ib_laddr_check()

A NULL pointer dereference flaw was found in the rdsibladdrcheck function in the Linux kernel's implementation of Reliable Datagram Sockets RDS. A local, unprivileged user could use this flaw to crash the system...