12 matches found
Azure Linux 3.0 Security Update: kernel (CVE-2025-37738)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-37738 advisory. - In the Linux kernel, the following vulnerability has been resolved: ext4: ignore xattrs past end Once inside...
CLSA-2025-1763989962 Fix of 8 CVEs
CVE-url: https://ubuntu.com/security/CVE-2025-38352 - posix-cpu-timers: fix race between handleposixcputimers and posixcputimerdel CVE-url: https://ubuntu.com/security/CVE-2022-25265 - x86/elf: Add table to document READIMPLIESEXEC - x86/elf: Split READIMPLIESEXEC from executable PTGNUSTACK -...
SUSE-SU-2025:03615-1 Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP5 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2022-49138: Bluetooth: hcievent: Fix checking conn for leconncompleteevt bsc1238160. - CVE-2022-50233: Bluetooth: eir: Fix using strlen with hdev-devname,shortna...
RockyLinux 9 : kernel (RLSA-2025:9302)
The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:9302 advisory. kernel: ice: Fix deinitializing VF in error path CVE-2025-21883 kernel: sched/fair: Fix potential memory corruption in childcfsrqonlist CVE-2025-21919...
RLSA-2025:9348 Moderate: kernel security update
The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: proc: fix UAF in procgetinode CVE-2025-21999 kernel: ext4: fix off-by-one error in dosplit CVE-2025-23150 kernel: ext4: ignore xattrs past end CVE-2025-37738 For more details about the...
CLSA-2025-1753298962 kernel: Fix of 13 CVEs
udf: Fix a slab-out-of-bounds write bug in udffindentry CVE-2022-49846 - net: atm: fix use after free in lecsend CVE-2025-22004 - ovl: fix UAF in ovldentryupdatereval by moving dput in ovllinkup CVE-2025-21887 - rcutorture: Fix ksoftirqd boosting timing and iteration CVE-2022-50177 - tty: ngsm:...
Amazon Linux 2 : kernel (ALASKERNEL-5.15-2025-079)
The version of kernel installed on the remote host is prior to 5.15.182-123.190. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.15-2025-079 advisory. In the Linux kernel, the following vulnerability has been resolved: media: streamzap: fix race between...
Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12
In the Linux kernel, the following vulnerability has been resolved: ext4: ignore xattrs entries past the “end” entry. Once inside ‘ext4xattrinodedecrefall’, we should ignore xattrs entries that are located after the “end” entry. This fixes the following KASAN reported issue: BUG: KASAN:...
SUSE CVE-2025-37738
In the Linux kernel, the following vulnerability has been resolved: ext4: ignore xattrs past end Once inside 'ext4xattrinodedecrefall' we should ignore xattrs entries past the 'end' entry. This fixes the following KASAN reported issue:...
UBUNTU-CVE-2025-37738
In the Linux kernel, the following vulnerability has been resolved: ext4: ignore xattrs past end Once inside 'ext4xattrinodedecrefall' we should ignore xattrs entries past the 'end' entry. This fixes the following KASAN reported issue:...
CLSA-2022-1651146021 Fix of CVE: CVE-2022-0617, CVE-2021-40490, CVE-2021-29154, CVE-2022-0435, CVE-2021-4154, CVE-2021-3753, CVE-2021-38160, CVE-2021-45485, CVE-2021-3752, CVE-2021-41864, CVE-2021-4083, CVE-2021-26930
udf: Restore ilenAlloc when inode expansion fails Jan Kara CVE-2022-0617 - udf: Fix NULL ptr deref when converting from inline format Jan Kara CVE-2022-0617 - Bluetooth: fix use-after-free error in locksocknested Wang ShaoBo CVE-2021-3752 - vtkdsetmode: extend console locking Linus Torvalds...
USN-5113-1 linux, linux-aws, linux-aws-5.11, linux-azure, linux-azure-5.11, linux-gcp, linux-gcp-5.11, linux-hwe-5.11, linux-kvm, linux-oracle, linux-oracle-5.11, linux-raspi vulnerabilities
It was discovered that a race condition existed in the Atheros Ath9k WiFi driver in the Linux kernel. An attacker could possibly use this to expose sensitive information WiFi network traffic. CVE-2020-3702 Alois Wohlschlager discovered that the overlay file system in the Linux kernel did not...