29 matches found
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013729)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013729 advisory. In the Linux kernel, the following vulnerability has been resolved: mtd: Fix device name leak when register device failed in addmtddevice There is a kmemleak when...
Unity Linux 20.1050e Security Update: kernel (UTSA-2026-004851)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004851 advisory. In the Linux kernel, the following vulnerability has been resolved: rapidio: fix possible name leaks when rioadddevice fails Patch series rapidio: fix three possible...
DEBIAN-CVE-2022-50624
In the Linux kernel, the following vulnerability has been resolved: net: netsec: fix error handling in netsecregistermdio If phydeviceregister fails, phydevicefree need be called to put refcount, so memory of phy device and device name can be freed in callback function. If getphydevice fails,...
UBUNTU-CVE-2022-50624
In the Linux kernel, the following vulnerability has been resolved: net: netsec: fix error handling in netsecregistermdio If phydeviceregister fails, phydevicefree need be called to put refcount, so memory of phy device and device name can be freed in callback function. If getphydevice fails,...
EUVD-2025-37348
The equipment grants a JWT token for each connection in the timeline, but during an active valid session, a hijacking of the token can be done. This will allow an attacker with the token modify parameters of security, access or even steal the session without the legitimate and active session...
EUVD-2025-1986
Malicious code in bioql PyPI...
EUVD-2023-32036
Malicious code in bioql PyPI...
CVE-2023-53508 ublk: fail to start device if queue setup is interrupted
In the Linux kernel, the following vulnerability has been resolved: ublk: fail to start device if queue setup is interrupted In ublkctrlstartdev, if waitforcompletioninterruptible is interrupted by signal, queues aren't setup successfully yet, so we have to fail UBLKCMDSTARTDEV, otherwise kernel...
CVE-2023-53508
Technical details for CVE-2023-53508 are not provided in the supplied documents. Monitor for official updates from vendors/advisories; current sources only reiterate a kernel fix without specifics.
PT-2025-38012
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a flaw within the rapidio subsystem where a name leak can occur when the rio add device function fails. Specifically, if rio add device returns an error, the...
CVE-2025-38066
In the Linux kernel, the following vulnerability has been resolved: dm cache: prevent BUGON by blocking retries on failed device resumes A cache device failing to resume due to mapping errors should not be retried, as the failure leaves a partially initialized policy object. Repeating the resume...
CVE-2025-38066 dm cache: prevent BUG_ON by blocking retries on failed device resumes
In the Linux kernel, the following vulnerability has been resolved: dm cache: prevent BUGON by blocking retries on failed device resumes A cache device failing to resume due to mapping errors should not be retried, as the failure leaves a partially initialized policy object. Repeating the resume...
CVE-2023-53037 scsi: mpi3mr: Bad drive in topology results kernel crash
In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Bad drive in topology results kernel crash When the SAS Transport Layer support is enabled and a device exposed to the OS by the driver fails INQUIRY commands, the driver frees up the memory allocated for an interna...
DEBIAN-CVE-2022-49874
In the Linux kernel, the following vulnerability has been resolved: HID: hyperv: fix possible memory leak in mousevscprobe If hidadddevice returns error, it should call hiddestroydevice to free hiddev which is allocated in hidallocatedevice...
Linux Distros Unpatched Vulnerability : CVE-2023-52784
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bonding: stop the device in bondsetupbyslave Commit 9eed321cde22 net: lapbether: only support ethernet devices has been able to keep syzbot away from net/lapb,...
Schneider Electric ASCO 5310和ASCO 5350 代码问题漏洞
The Schneider Electric ASCO 5310 and Schneider Electric ASCO 5350 are both single-channel remote alarms from Schneider Electric France. A code issue vulnerability exists in the Schneider Electric ASCO 5310 and ASCO 5350 that stems from the inclusion of a dangerous type of file unrestricted upload...
TOTOLINK A3600R OS Command Injection Vulnerability
TOTOLINK A3600R is a 6-antenna 1200M wireless router manufactured by China's Gion Electronics TOTOLINK. The TOTOLINK A3600R suffers from an OS command injection vulnerability. The vulnerability originates in the /cgi-bin/cstecgi.cgi file stemming from improper handling of the ipDomain parameter. ...
kernel: RDMA/efa: Fix wrong resources deallocation order
In the Linux kernel, the following vulnerability has been resolved: RDMA/efa: Fix wrong resources deallocation order When trying to destroy QP or CQ, we first decrease the refcount and potentially free memory regions allocated for the object and then request the device to destroy the object. If t...
PT-2025-54030
Name of the Vulnerable Software and Affected Versions linux affected versions not specified Description A flaw exists in the Linux kernel related to RDMA/efa resource deallocation. Specifically, the order of resource deallocation was incorrect, potentially leading to a refcount underflow when...
SOFTCREATE L2Blocker authentication error vulnerability
SOFTCREATE L2Blocker is a device type security system from SOFTCREATE Japan. It detects and blocks unauthorized connections from network devices to the internal network to prevent information leakage.An authentication error vulnerability exists in SOFTCREATE L2Blockeron-premise version 4.8.5 and...