CVE-2025-40038 KVM: SVM: Skip fastpath emulation on VM-Exit if next RIP isn't valid

In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Skip fastpath emulation on VM-Exit if next RIP isn't valid Skip the WRMSR and HLT fastpaths in SVM's VM-Exit handler if the next RIP isn't valid, e.g. because KVM is running with nrips=false. SVM must decode and emulate...

EUVD-2025-36490

In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Skip fastpath emulation on VM-Exit if next RIP isn't valid Skip the WRMSR and HLT fastpaths in SVM's VM-Exit handler if the next RIP isn't valid, e.g. because KVM is running with nrips=false. SVM must decode and emulate...

Linux Distros Unpatched Vulnerability : CVE-2025-40038

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - KVM: SVM: Skip fastpath emulation on VM-Exit if next RIP isn't valid Skip the WRMSR and HLT fastpaths in SVM's VM-Exit handler if the next RIP isn't valid, e.g...

Siemens SIMATIC Devices Loop with Unreachable Exit Condition (CVE-2024-35982)

batman-adv: Avoid infinite loop trying to resize local TT This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503691; scriptversion"1.2";...

Siemens SIMATIC Devices Improper Locking (CVE-2024-35805)

In the Linux kernel, the following vulnerability has been resolved: dm snapshot: fix lockup in dmexceptiontableexit There was reported lockup when we exit a snapshot with many exceptions. Fix this by adding condresched to the loop that frees the exceptions. This plugin only works with Tenable.ot...

Linux Distros Unpatched Vulnerability : CVE-2025-39976

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: futex: Use correct exit on failure from futexhashallocatedefault copyprocess uses the wrong...

SUSE CVE-2025-40024

In the Linux kernel, the following vulnerability has been resolved: vhost: Take a reference on the task in struct vhosttask. vhosttaskcreate creates a task and keeps a reference to its taskstruct. That task may exit early via a signal and its taskstruct will be released. A pending vhosttaskwake...

UBUNTU-CVE-2025-40024

In the Linux kernel, the following vulnerability has been resolved: vhost: Take a reference on the task in struct vhosttask. vhosttaskcreate creates a task and keeps a reference to its taskstruct. That task may exit early via a signal and its taskstruct will be released. A pending vhosttaskwake...

EUVD-2025-35835

In the Linux kernel, the following vulnerability has been resolved: vhost: Take a reference on the task in struct vhosttask. vhosttaskcreate creates a task and keeps a reference to its taskstruct. That task may exit early via a signal and its taskstruct will be released. A pending vhosttaskwake...

CVE-2025-40018 ipvs: Defer ip_vs_ftp unregister during netns cleanup

In the Linux kernel, the following vulnerability has been resolved: ipvs: Defer ipvsftp unregister during netns cleanup On the netns cleanup path, ipvsftpexit may unregister ipvsftp before connections with valid cp-app pointers are flushed, leading to a use-after-free. Fix this by introducing a...

CVE-2025-40018

The CVE-2025-40018 issue in the Linux kernel’s ipvs code (ip_vs_ftp) arose from unregistering ip_vs_ftp during netns cleanup before flushing connections, which could lead to use-after-free. The fix introduces a global exiting_module flag: ip_vs_ftp_exit() sets it true before unregistering the per...

PT-2025-43620

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue where a race condition can occur within the vhost subsystem. Specifically, vhost task create creates a task and maintains a reference to its task struc...

PT-2025-43486

Name of the Vulnerable Software and Affected Versions KeyguardViewMediator affected versions not specified Description A logic error exists in the exitKeyguardAndFinishSurfaceBehindRemoteAnimation function within KeyguardViewMediator.java. This could allow a lockscreen bypass, potentially leading...

DEBIAN-CVE-2022-50582

In the Linux kernel, the following vulnerability has been resolved: regulator: core: Prevent integer underflow By using a ratio of delay to pollenabledtime that is not integer timeremaining underflows and does not exit the loop as expected. As delay could be derived from DT and pollenabledtime is...

UBUNTU-CVE-2022-50582

In the Linux kernel, the following vulnerability has been resolved: regulator: core: Prevent integer underflow By using a ratio of delay to pollenabledtime that is not integer timeremaining underflows and does not exit the loop as expected. As delay could be derived from DT and pollenabledtime is...

CVE-2022-50582

The CVE refers to the Linux kernel regulator core vulnerability (CVE-2022-50582) where a non-integer ratio of delay to poll_enabled_time can cause time_remaining to underflow and the loop not exit. The documented fix is to use a signed iterator so the loop exits when remaining time becomes negati...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987609)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987609 advisory. In the Linux kernel, the following vulnerability has been resolved: userfaultfd: fix a race between writeprotect and exitmmap A race is possible when a process exits...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987648)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987648 advisory. In the Linux kernel, the following vulnerability has been resolved: jffs2: fix memory leak in jffs2domountfs If jffs2buildfilesystem in jffs2domountfs returns an...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987620)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987620 advisory. In the Linux kernel, the following vulnerability has been resolved: virtioconsole: eliminate anonymous moduleinit & moduleexit Eliminate anonymous moduleinit and...

drm/amdkfd: svm range restore work deadlock when process exit

...