134 matches found
UBUNTU-CVE-2025-40118
In the Linux kernel, the following vulnerability has been resolved: scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod Since commit f7b705c238d1 "scsi: pm80xx: Set phyattached to zero when device is gone" UBSAN reports: UBSAN: array-index-out-of-bounds in drivers/scsi/pm8001/pm8001sas.c:786:...
CVE-2025-40118 scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod
In the Linux kernel, the following vulnerability has been resolved: scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod Since commit f7b705c238d1 "scsi: pm80xx: Set phyattached to zero when device is gone" UBSAN reports: UBSAN: array-index-out-of-bounds in drivers/scsi/pm8001/pm8001sas.c:786:...
CVE-2025-40118
CVE-2025-40118 is a Linux kernel vulnerability in the SCSI subsystem (pm80xx/pm8001) where rmmod could trigger an UBSAN array-index-out-of-bounds. The issue occurs when a device behind an expander has an attached_phy value that can exceed the local pm8001 PHY count, causing code to index pm8001_h...
CVE-2025-40118 scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod
In the Linux kernel, the following vulnerability has been resolved: scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod Since commit f7b705c238d1 "scsi: pm80xx: Set phyattached to zero when device is gone" UBSAN reports: UBSAN: array-index-out-of-bounds in drivers/scsi/pm8001/pm8001sas.c:786:...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990237)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990237 advisory. In the Linux kernel, the following vulnerability has been resolved: pinctrl: mcp23s08: Fix sleeping in atomic context due to regmap locking If a device uses MCP23xxx...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Fix corrupt config pages PHY state is switched in sysfs The driver, through the SAS transport, exposes a sysfs interface to enable/disable PHYs in a controller/expander setup. When multiple PHYs are disabled and...
OESA-2025-2409 kernel security update
The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: pinctrl: mcp23s08: Fix sleeping in atomic context due to regmap locking If a device uses MCP23xxx IO expander to receive IRQs, the following bug can happen: BUG:...
EUVD-2021-1872
Malware in sbrugna...
EUVD-2018-13376
Malware in sbrugna...
EUVD-2019-6726
Malware in sbrugna...
EUVD-2025-31986
Malicious code in bioql PyPI...
EUVD-2025-17302
Malicious code in bioql PyPI...
EUVD-2022-55122
Malicious code in bioql PyPI...
EUVD-2025-17142
Malicious code in bioql PyPI...
EUVD-2025-13140
Malicious code in bioql PyPI...
EUVD-2025-24890
Malicious code in bioql PyPI...
CVE-2022-50453
In the Linux kernel, the following vulnerability has been resolved: gpiolib: cdev: fix NULL-pointer dereferences There are several places where we can crash the kernel by requesting lines, unbinding the GPIO device, then calling any of the system calls relevant to the GPIO character device's...
CVE-2025-52771
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bcupham Video Expander video-expander allows Stored XSS.This issue affects Video Expander: from n/a through = 1.0...
CVE-2025-52771
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bcupham Video Expander video-expander allows Stored XSS.This issue affects Video Expander: from n/a through = 1.0...
CVE-2025-52771 WordPress Video Expander Plugin <= 1.0 - Cross Site Scripting (XSS) Vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in bcupham Video Expander video-expander allows Stored XSS.This issue affects Video Expander: from n/a through = 1.0...