Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: gve: Prevent ethtool operations after shutdown A crash can occur if an ethtool operation is invoked after the shutdown function is called. shutdown is invoked during system shutdown to stop DMA operations without performing...

Astra Linux - уязвимость в linux-5.10, linux, linux-5.15

A flaw related to the use of “free” in the Linux kernel’s integrated infrared receiver/transceiver driver was discovered in the way local users detach RC devices. This flaw could be exploited by local users to crash the system or potentially escalate their privileges on the system...

SUSE CVE-2026-23304

In the Linux kernel, the following vulnerability has been resolved: ipv6: fix NULL pointer deref in ip6rtgetdevrcu l3mdevmasterdevrcu can return NULL when the slave device is being un-slaved from a VRF. All other callers deal with this, but we lost the fallback to loopback in ip6rtpcpualloc -...

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerabilities have been resolved: net/mlx5: Fixed IPsec cleanup over MPV devices When we call mlx5edetachnetdev, we ultimately disable the blocking event notifier. Among these events are IPsec MPV events from the IB to the core. Therefore, before disabling tho...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992984)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992984 advisory. In the Linux kernel, the following vulnerability has been resolved: nfc: nci: add flushworkqueue to prevent uaf Our detector found a concurrent use-after-free bug wh...

CVE-2025-68335

In the Linux kernel, the following vulnerability has been resolved: comedi: pcl818: fix null-ptr-deref in pcl818aicancel Syzbot identified an issue 1 in pcl818aicancel, which stems from the fact that in case of early device detach via pcl818detach, subdevice dev-readsubdev may not have initialize...

EUVD-2022-55665

In the Linux kernel, the following vulnerability has been resolved: dm thin: Fix UAF in runtimersoftirq When dmresume and dmdestroy are concurrent, it will lead to UAF, as follows: BUG: KASAN: use-after-free in runtimers+0x173/0x710 Write of size 8 at addr ffff88816d9490f0 by task swapper/0/0 Cal...

CVE-2023-53674

In the Linux kernel, the following vulnerability has been resolved: clk: Fix memory leak in devmclknotifierregister devmclknotifierregister allocates a devres resource for clk notifier but didn't register that to the device, so the notifier didn't get unregistered on device detach and the allocat...

SUSE CVE-2022-50489

In the Linux kernel, the following vulnerability has been resolved: drm/mipi-dsi: Detach devices when removing the host Whenever the MIPI-DSI host is unregistered, the code of mipidsihostunregister loops over every device currently found on that bus and will unregister it. However, it doesn't...

EUVD-2013-6265

Malware in sbrugna...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987069)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987069 advisory. In the Linux kernel, the following vulnerability has been resolved: nfc: nci: add flushworkqueue to prevent uaf Our detector found a concurrent use-after-free bug wh...

UBUNTU-CVE-2022-50489

In the Linux kernel, the following vulnerability has been resolved: drm/mipi-dsi: Detach devices when removing the host Whenever the MIPI-DSI host is unregistered, the code of mipidsihostunregister loops over every device currently found on that bus and will unregister it. However, it doesn't...

CVE-2022-50489

CVE-2022-50489 : In the Linux kernel, the drm/mipi-dsi subsystem detaches devices when removing the host. The mitigation: the vulnerability is resolved by fixes in the kernel’s host unregister path (mipi_dsi_host_unregister), which previously could unregister devices without detaching them from t...

PT-2025-40723

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's MIPI-DSI host unregistration process. Specifically, when the MIPI-DSI host is unregistered, the mipi dsi host unregister function iterates through...

EUVD-2025-26782

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2025-38735

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - gve: prevent ethtool ops after shutdown A crash can occur if an ethtool operation is invoked after shutdown is called. shutdown is invoked during system shutdow...

DEBIAN-CVE-2025-38735

In the Linux kernel, the following vulnerability has been resolved: gve: prevent ethtool ops after shutdown A crash can occur if an ethtool operation is invoked after shutdown is called. shutdown is invoked during system shutdown to stop DMA operations without performing expensive deallocations. ...

UBUNTU-CVE-2025-38735

In the Linux kernel, the following vulnerability has been resolved: gve: prevent ethtool ops after shutdown A crash can occur if an ethtool operation is invoked after shutdown is called. shutdown is invoked during system shutdown to stop DMA operations without performing expensive deallocations. ...

CVE-2025-38735 gve: prevent ethtool ops after shutdown

In the Linux kernel, the following vulnerability has been resolved: gve: prevent ethtool ops after shutdown A crash can occur if an ethtool operation is invoked after shutdown is called. shutdown is invoked during system shutdown to stop DMA operations without performing expensive deallocations. ...

CVE-2025-38735

The CVE-2025-38735 entry concerns the Linux kernel gve driver. A crash could occur if an ethtool operation is issued after shutdown() has begun, because shutdown() tears down internal data structures and ethtool IOCTLs could dereference freed/NULL pointers, triggering a kernel panic. The document...