MiracleLinux 9 : kernel-5.14.0-570.39.1.el9_6 (AXSA:2025-10838:66)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10838:66 advisory. kernel: netsched: hfsc: Fix a potential UAF in hfscdequeue too CVE-2025-37823 kernel: i40e: fix MMIO write access to an invalid page in i40eclearhw...

RHEL 9 : kernel (RHSA-2025:21469)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:21469 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: KVM: x86/hyper-v: Skip...

Siemens SIMATIC Devices Race Condition (CVE-2024-36020)

In the Linux kernel, the following vulnerability has been resolved: i40e: fix vf may be used uninitialized in this function warning To fix the regression introduced by commit 52424f974bc5, which causes servers hang in very hard to reproduce conditions with resets races. Using two sources for the...

CVE-2025-39971

The CVE-2025-39971 entry describes a Linux kernel issue in i40e: idx validation in config_queues_msg() where vf->ch[idx] could be out of range. The connected advisories confirm this CVE is addressed by a kernel fix (idx range validation and related bounds checks) and are associated with variou...

RHEL 8 : kernel (RHSA-2025:17570)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:17570 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: netsched: ets: Fix double lis...

CVE-2025-39853 i40e: Fix potential invalid access when MAC list is empty

In the Linux kernel, the following vulnerability has been resolved: i40e: Fix potential invalid access when MAC list is empty listfirstentry never returns NULL - if the list is empty, it still returns a pointer to an invalid object, leading to potential invalid memory access when dereferenced. Fi...

AlmaLinux 8 : kernel (ALSA-2025:14438)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:14438 advisory. kernel: udp: Fix memory accounting leak. CVE-2025-22058 kernel: i40e: fix MMIO write access to an invalid page in i40eclearhw CVE-2025-38200 Tenable has...

RHEL 10 : kernel (RHSA-2025:14510)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:14510 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: netsched: ets: Fix double li...

CVE-2025-38200 i40e: fix MMIO write access to an invalid page in i40e_clear_hw

In the Linux kernel, the following vulnerability has been resolved: i40e: fix MMIO write access to an invalid page in i40eclearhw When the device sends a specific input, an integer underflow can occur, leading to MMIO write access to an invalid page. Prevent the integer underflow by changing the...

PT-2024-41391 · Suse +7 · Kernel-Azure +12

The SUSE Linux Enterprise 12 SP5 Azure kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2024-39494: ima: Fix use-after-free on a dentry's dname.name bsc1227716. - CVE-2024-42096: x86: stop playing stack games in profile pc bsc1228633. -...

kernel security and bug fix update

4.18.0-425.13.17.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...

kernel security and bug fix update

4.18.0-425.10.1.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...

Medium: kernel

Issue Overview: A vulnerability was found in Linux kernel, where a use-after-frees in nouveau's postclose handler could happen if removing device that is not common to remove video card physically without power-off, but same happens if unbind the driver. CVE-2020-27820 A flaw use-after-free in...

kernel security and bug fix update

3.10.0-1160.45.1.OL7 - Update Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and shim-x64 = 15-2.0.9 - Update oraclekernel-sig-key...