Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: Squashfs: fixed an uninitialized value in squashfsgetparent. Syzkaller reported a bug titled “KMSAN: uninitialized value in squashfsgetparent”. This issue arises when openbyhandleat is called with a file handle containing an...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006831)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006831 advisory. In the Linux kernel, the following vulnerability has been resolved: ACPI: video: check for error while searching for backlight device parent If acpigetparent called ...

CVE-2025-14992

A security vulnerability has been detected in Tenda AC18 15.03.05.05. The impacted element is the function strcpy of the file /goform/GetParentControlInfo of the component HTTP Request Handler. The manipulation of the argument mac leads to stack-based buffer overflow. Remote exploitation of the...

Tenda AC18 安全漏洞

Tenda AC18 is a router from Tenda China. A security vulnerability exists in Tenda AC18 version 15.03.05.05, which originates from an improper handling of the parameter mac in the strcpy function of the file /goform/GetParentControlInfo in the component HTTP Request Handler, which may result in a...

Squashfs: fix uninit-value in squashfs_get_parent

...

CVE-2025-40049

In the Linux kernel, the following vulnerability has been resolved: Squashfs: fix uninit-value in squashfsgetparent Syzkaller reports a "KMSAN: uninit-value in squashfsgetparent" bug. This is caused by openbyhandleat being called with a file handle containing an invalid parent inode number. In...

UBUNTU-CVE-2025-40049

In the Linux kernel, the following vulnerability has been resolved: Squashfs: fix uninit-value in squashfsgetparent Syzkaller reports a "KMSAN: uninit-value in squashfsgetparent" bug. This is caused by openbyhandleat being called with a file handle containing an invalid parent inode number. In...

CVE-2025-40049 Squashfs: fix uninit-value in squashfs_get_parent

In the Linux kernel, the following vulnerability has been resolved: Squashfs: fix uninit-value in squashfsgetparent Syzkaller reports a "KMSAN: uninit-value in squashfsgetparent" bug. This is caused by openbyhandleat being called with a file handle containing an invalid parent inode number. In...

CVE-2025-40049

In the Linux kernel, the following vulnerability has been resolved: Squashfs: fix uninit-value in squashfsgetparent Syzkaller reports a "KMSAN: uninit-value in squashfsgetparent" bug. This is caused by openbyhandleat being called with a file handle containing an invalid parent inode number. In...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates from uninitialized access to the parent field in the squashfsgetparent function, which could lead to invalid...

EUVD-2023-49774

Malicious code in bioql PyPI...

EUVD-2025-26203

Malicious code in bioql PyPI...

PT-2025-44117

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the Squashfs file system related to uninitialized values in the squashfs get parent function. This issue arises when open by handle at is invoked...

CVE-2025-9605

A security vulnerability has been detected in Tenda AC21 and AC23 16.03.08.16. Affected is the function GetParentControlInfo of the file /goform/GetParentControlInfo. Such manipulation of the argument mac leads to stack-based buffer overflow. The attack can be launched remotely. The exploit has...

Tenda AC8V4 Buffer Overflow Vulnerability (CNVD-2025-17342)

The Tenda AC8V4 is a wireless router from Tenda China. The Tenda AC8V4 suffers from a buffer overflow vulnerability that originates from a heap buffer overflow in the mac parameter in /goform/GetParentControlInfo, which can be exploited by an attacker to crash the system by corrupting the memory...

CVE-2025-29101

Tenda AC8V4.0 V16.03.34.06 was discovered to contain a stack overflow via the deviceid parameter in the getparentControllistInfo function...

Tenda AC8 get_parentControl_list_Info function buffer overflow vulnerability

Tenda AC8 is a wireless router from Tenda, a Chinese company. The Tenda AC8 suffers from a buffer overflow vulnerability that originates from a boundary error in the getparentControllistInfo function when handling untrusted input. No detailed vulnerability details are provided at this time...

Tenda FH1203 GetParentControlInfo Method Stack Buffer Overflow Vulnerability

Tenda FH1203 is a dual-band wireless router from China's Tenda, mainly used for home network coverage and enhancement. The Tenda FH1203 suffers from a stack buffer overflow vulnerability that originates from the mac parameter of the GetParentControlInfo method of the /goform/GetParentControlInfo...

Tenda FH1205 安全漏洞

The Tenda FH1205 is a wireless router from Tenda China. A security vulnerability exists in the Tenda FH1205 version 2.0.0.7775, which is caused by a stack-based buffer overflow in the mac parameter of the GetParentControlInfo method of the /goform/GetParentControlInfo file...

Tenda FH1202 安全漏洞

The Tenda FH1202 is a wireless router from Tenda China. A buffer overflow vulnerability exists in the Tenda FH1202 version 1.2.0.14408, which is caused by the mac parameter of the GetParentControlInfo method in the /goform/GetParentControlInfo file failing to correctly validate the length of the...