Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990632)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990632 advisory. In the Linux kernel, the following vulnerability has been resolved: net: ethernet: mtkethsoc: out of bounds read in mtkhwlrogetfdirentry The fsp-location variable...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989495)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989495 advisory. In the Linux kernel, the following vulnerability has been resolved: net: ethernet: mtkethsoc: out of bounds read in mtkhwlrogetfdirentry The fsp-location variable...

EUVD-2010-2486

Malware in sbrugna...

EUVD-2022-54861

Malicious code in bioql PyPI...

CVE-2022-49368

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: mtkethsoc: out of bounds read in mtkhwlrogetfdirentry The "fsp-location" variable comes from user via ethtoolgetrxnfc. Check that it is valid to prevent an out of bounds read...

CVE-2022-49368 net: ethernet: mtk_eth_soc: out of bounds read in mtk_hwlro_get_fdir_entry()

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: mtkethsoc: out of bounds read in mtkhwlrogetfdirentry The "fsp-location" variable comes from user via ethtoolgetrxnfc. Check that it is valid to prevent an out of bounds read...

CVE-2022-49368

CVE-2022-49368 relates to a Linux kernel out-of-bounds read in net: ethernet: mtk_eth_soc, triggered by an invalid fsp->location that comes from user via ethtool_get_rxnfc(). The vulnerability is fixed by validating the location parameter to prevent the read, with upstream kernel patches refer...

openSUSE Security Update : kernel (openSUSE-SU-2011:0004-1)

The openSUSE 11.3 kernel was updated to fix various bugs and security issues. Following security issues have been fixed: CVE-2010-4347: A local user could inject ACPI code into the kernel via the world-writable 'customdebug' file, allowing local privilege escalation. CVE-2010-4258: A local attack...

CVE-2010-3861

The ethtoolgetrxnfc function in net/core/ethtool.c in the Linux kernel before 2.6.36 does not initialize a certain block of heap memory, which allows local users to obtain potentially sensitive information via an ETHTOOLGRXCLSRLALL ethtool command with a large info.rulecnt value, a different...

Design/Logic Flaw

The ethtoolgetrxnfc function in net/core/ethtool.c in the Linux kernel before 2.6.36 does not initialize a certain block of heap memory, which allows local users to obtain potentially sensitive information via an ETHTOOLGRXCLSRLALL ethtool command with a large info.rulecnt value, a different...

CVE-2010-3861

CVE-2010-3861 affects the Linux kernel up to version 2.6.36. The vulnerability arises in the ethtool_get_rxnfc function in net/core/ethtool.c, which fails to initialize a certain block of heap memory. This can allow a local user to obtain potentially sensitive information via an ETHTOOL_GRXCLSRLA...

CVE-2010-3861

The ethtoolgetrxnfc function in net/core/ethtool.c in the Linux kernel before 2.6.36 does not initialize a certain block of heap memory, which allows local users to obtain potentially sensitive information via an ETHTOOLGRXCLSRLALL ethtool command with a large info.rulecnt value, a different...

CVE-2010-2478

Integer overflow in the ethtoolgetrxnfc function in net/core/ethtool.c in the Linux kernel before 2.6.33.7 on 32-bit platforms allows local users to cause a denial of service or possibly have unspecified other impact via an ETHTOOLGRXCLSRLALL ethtool command with a large info.rulecnt value that...

Integer overflow

Integer overflow in the ethtoolgetrxnfc function in net/core/ethtool.c in the Linux kernel before 2.6.33.7 on 32-bit platforms allows local users to cause a denial of service or possibly have unspecified other impact via an ETHTOOLGRXCLSRLALL ethtool command with a large info.rulecnt value that...

CVE-2010-2478

CVE-2010-2478: The Linux kernel before 2.6.33.7 on 32-bit platforms has an integer overflow in ethtool_get_rxnfc(), triggered by a large info.rule_cnt via ETHTOOL_GRXCLSRLALL. Local users can cause a denial of service or potentially other impact (as described in the connected Mirage/Linux advisor...

CVE-2010-2478

Integer overflow in the ethtoolgetrxnfc function in net/core/ethtool.c in the Linux kernel before 2.6.33.7 on 32-bit platforms allows local users to cause a denial of service or possibly have unspecified other impact via an ETHTOOLGRXCLSRLALL ethtool command with a large info.rulecnt value that...