2180 matches found
Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP7 kernel was updated to fix various security issues The following security issues were fixed: CVE-2022-50253: bpf: make sure skb-len != 0 when redirecting to a tunneling device bsc1249912. CVE-2023-53676: scsi: target: iscsi: Fix buffer overflow in...
CVE-2025-40265
No description is available for this CVE...
Unity Linux 20.1050e Security Update: kernel (UTSA-2025-991164)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991164 advisory. In the Linux kernel, the following vulnerability has been resolved: arm64: fix oops in concurrently setting insnemulation sysctls emulationprochandler changes...
Trend Vision One™ Stacks Up Against Scattered Spider and Mustang Panda in 2025 MITRE ATT&CK® Evaluations
Enterprise 2025 introduces the first full cloud adversary emulation and expanded multi-platform testing, focusing on two advanced threat areas: Scattered Spider’s cloud-centric attacks and Mustang Panda’s long-term espionage operations...
UBUNTU-CVE-2025-40295
In the Linux kernel, the following vulnerability has been resolved: fscrypt: fix left shift underflow when inode-iblkbits PAGESHIFT When simulating an nvme device on qemu with both logicalblocksize and physicalblocksize set to 8 KiB, an error trace appears during partition table reading at boot...
SUSE CVE-2025-40265
In the Linux kernel, the following vulnerability has been resolved: vfat: fix missing sbminblocksize return value checks When emulating an nvme device on qemu with both logicalblocksize and physicalblocksize set to 8 KiB, but without format, a kernel panic was triggered during the early boot stag...
CVE-2025-40265
In the Linux kernel, the following vulnerability has been resolved: vfat: fix missing sbminblocksize return value checks When emulating an nvme device on qemu with both logicalblocksize and physicalblocksize set to 8 KiB, but without format, a kernel panic was triggered during the early boot stag...
UBUNTU-CVE-2025-40265
In the Linux kernel, the following vulnerability has been resolved: vfat: fix missing sbminblocksize return value checks When emulating an nvme device on qemu with both logicalblocksize and physicalblocksize set to 8 KiB, but without format, a kernel panic was triggered during the early boot stag...
CVE-2025-40265 vfat: fix missing sb_min_blocksize() return value checks
In the Linux kernel, the following vulnerability has been resolved: vfat: fix missing sbminblocksize return value checks When emulating an nvme device on qemu with both logicalblocksize and physicalblocksize set to 8 KiB, but without format, a kernel panic was triggered during the early boot stag...
EUVD-2025-201192
In the Linux kernel, the following vulnerability has been resolved: vfat: fix missing sbminblocksize return value checks When emulating an nvme device on qemu with both logicalblocksize and physicalblocksize set to 8 KiB, but without format, a kernel panic was triggered during the early boot stag...
CVE-2025-40265
CVE-2025-40265 affects the Linux kernel vfat filesystem code. A missing return-value check of sb_min_blocksize() could trigger a kernel panic during NVMe/qemu emulation when mounting a vfat filesystem with 8 KiB logical/physical block sizes and no format. The vulnerability is addressed by the ref...
CVE-2025-40265 vfat: fix missing sb_min_blocksize() return value checks
In the Linux kernel, the following vulnerability has been resolved: vfat: fix missing sbminblocksize return value checks When emulating an nvme device on qemu with both logicalblocksize and physicalblocksize set to 8 KiB, but without format, a kernel panic was triggered during the early boot stag...
kernel: net_sched: hfsc: Fix a UAF vulnerability in class handling
In the Linux kernel, the following vulnerability has been resolved: netsched: hfsc: Fix a UAF vulnerability in class handling This patch fixes a Use-After-Free vulnerability in the HFSC qdisc class handling. The issue occurs due to a time-of-check/time-of-use condition in hfscchangeclass when...
Linux Distros Unpatched Vulnerability : CVE-2025-40265
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - vfat: fix missing sbminblocksize return value checks When emulating an nvme device on qemu with both logicalblocksize and physicalblocksize set to 8 KiB, but...
TencentOS Server 3: virt and virt-devel (TSSA-2023:0118)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2023:0118 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...
MAL-2025-191926 Malicious code in wayspiritmcp-tpa (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 523cbbda7a0fda2addfcd432b1bfcc1df072ee67a593ffce535b7da7005caae8 Package seems to provide an MCP server, but in fact contains attempts to make an LLM agent break safeguards. As the request is about leaves just a flag, it see...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988895)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988895 advisory. In the Linux kernel, the following vulnerability has been resolved: HID: bigbenff: prevent null pointer dereference When emulating the device through uhid, there is ...
Unity Linux 20.1050e Security Update: kernel (UTSA-2025-990169)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990169 advisory. In the Linux kernel, the following vulnerability has been resolved: nbd: fix io hung while disconnecting device In our tests, qemu-nbd triggers a io hung: INFO: task...
Researchers Uncover BankBot-YNRK and DeliveryRAT Android Trojans Stealing Financial Data
Cybersecurity researchers have shed light on two different Android trojans calledBankBot-YNRK and DeliveryRAT that are capable of harvesting sensitive data from compromised devices. According to CYFIRMA, which analyzed three different samples of BankBot-YNRK, the malware incorporates features to...
Astra Linux – Vulnerability in Linux 6.12
In the Linux kernel, the following vulnerabilities have been resolved: KVM: x86/xen – Fixed the cleanup logic in the emulation of Xen schedop poll hypercalls. In kvmxenschedoppoll, the kmallocarray function is called when a VM polls the host for more than one event channel nrports 1. After the...