CVE-2025-22060 net: mvpp2: Prevent parser TCAM memory corruption

In the Linux kernel, the following vulnerability has been resolved: net: mvpp2: Prevent parser TCAM memory corruption Protect the parser TCAM/SRAM memory, and the cached shadow SRAM information, from concurrent modifications. Both the TCAM and SRAM tables are indirectly accessed by configuring an...

CVE-2025-22060 net: mvpp2: Prevent parser TCAM memory corruption

In the Linux kernel, the following vulnerability has been resolved: net: mvpp2: Prevent parser TCAM memory corruption Protect the parser TCAM/SRAM memory, and the cached shadow SRAM information, from concurrent modifications. Both the TCAM and SRAM tables are indirectly accessed by configuring an...

CVE-2024-58095 jfs: add check read-only before txBeginAnon() call

In the Linux kernel, the following vulnerability has been resolved: jfs: add check read-only before txBeginAnon call Added a read-only check before calling txBeginAnon in extAlloc and extRecord. This prevents modification attempts on a read-only mounted filesystem, avoiding potential errors or...

CVE-2024-58093 PCI/ASPM: Fix link state exit during switch upstream function removal

In the Linux kernel, the following vulnerability has been resolved: PCI/ASPM: Fix link state exit during switch upstream function removal Before 456d8aa37d0f "PCI/ASPM: Disable ASPM on MFD function removal to avoid use-after-free", we would free the ASPM link only after the last function on the b...

CVE-2025-22022

In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Apply the link chain quirk on NEC isoc endpoints Two clearly different specimens of NEC uPD720200 one with start/stop bug, one without were seen to cause IOMMU faults after some Missed Service Errors. Faulting address ...

CVE-2025-22022 usb: xhci: Apply the link chain quirk on NEC isoc endpoints

In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Apply the link chain quirk on NEC isoc endpoints Two clearly different specimens of NEC uPD720200 one with start/stop bug, one without were seen to cause IOMMU faults after some Missed Service Errors. Faulting address ...

CVE-2025-22022

CVE-2025-22022 concerns the Linux kernel USB xHCI driver, where NEC isochronous endpoints with NEC uPD720200 controllers could trigger IOMMU faults due to mis-handling of missed service errors. The description notes a faulty behavior involving transfer descriptors around isochronous rings and a c...

CVE-2025-22022 usb: xhci: Apply the link chain quirk on NEC isoc endpoints

In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Apply the link chain quirk on NEC isoc endpoints Two clearly different specimens of NEC uPD720200 one with start/stop bug, one without were seen to cause IOMMU faults after some Missed Service Errors. Faulting address ...

The vulnerability of the E-Staff automated recruitment process system, related to data filtering errors, allows a perpetrator to compromise the integrity and accessibility of the protected information.

The vulnerability of the E-Staff recruitment automation system is related to errors in data filtering. Exploiting this vulnerability can allow a malicious actor, operating remotely, to compromise the integrity and accessibility of the protected information...

The vulnerability of the E-Staff automation system for recruitment processes is related to errors in data filtering when obtaining information about the target. This allows a violator to gain unauthorized access to protected information.

The vulnerability of the E-Staff recruitment process automation system is related to errors in data filtering when obtaining information about the target. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the ipc_msg_send_request() function in the fs/smb/server/transport_ipc.c module of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the ipcmsgsendrequest function in the fs/smb/server/transportipc.c module of the Linux operating system is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the E-Staff automation system for recruitment processes lies in errors during data filtering when fields of objects are modified. This allows a malicious individual to gain unauthorized access to protected information and execute arbitrary codes.

The vulnerability of the E-Staff recruitment process automation system is related to errors in data filtering when fields of objects are modified. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information and execute arbitrary...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a lack of shutdown checks in exfat, which could result in an error not being returned when reading dirty dat...

The vulnerability of the E-Staff automated recruitment process system, related to data filtering errors, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the E-Staff recruitment process automation system is related to data filtering errors. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information...

The vulnerability of the E-Staff automated recruitment process system, related to errors in data filtering during object updates, allows a perpetrator to execute arbitrary JavaScript code.

The vulnerability of the E-Staff recruitment process automation system is related to errors in data filtering during object updates. Exploiting this vulnerability could allow a malicious actor to execute arbitrary JavaScript code remotely...

Vulnerability of the dev_pm_skip_resume() function in the drivers/base/power/main.c module – a driver for kernel-based PCI devices in the Linux operating system, which allows a hacker to trigger a service failure.

Vulnerability of the devpmskipresume function in the drivers/base/power/main.c module – The Linux kernel’s bus device support driver is vulnerable to synchronization errors when using shared resources. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the WPE WebKit and WebKitGTK page rendering modules, related to resource release errors, allows attackers to trigger a service failure.

The vulnerability of the WPE WebKit and WebKitGTK page rendering modules is related to errors during resource release. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

The vulnerability of the Linux operating system’s kernel’s media component, which allows a hacker to cause a service failure

The vulnerability of the Linux operating system’s kernel media component is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

Vulnerability of the aoeblk_gdalloc() function in the drivers/block/aoe/aoeblk.c module – This driver provides support for block devices in the Linux kernel, which can be exploited by attackers to cause service failures.

Vulnerability of the aoeblkgdalloc function in the drivers/block/aoe/aoeblk.c module – The Linux kernel’s block device support driver is vulnerable to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to cause service failures...

The vulnerability of the gifinto library utility for working with GIF files, GIFLIB, allows a hacker to execute arbitrary code.

The vulnerability of the gifinto library, which is used for working with GIF files, relates to errors in processing the relative path to the directory. Exploiting this vulnerability allows an attacker to execute arbitrary code by writing a specially crafted GIF file to any directory...