48 matches found
CVE-2026-31569
In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Handle the case that EIOINTC's coremap is empty EIOINTC's coremap in eiointcupdateswcoremap can be empty, currently we get a cpuid with -1 in this case, but we actually need 0 because it's similar as the case that...
CVE-2026-31569 LoongArch: KVM: Handle the case that EIOINTC's coremap is empty
In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Handle the case that EIOINTC's coremap is empty EIOINTC's coremap in eiointcupdateswcoremap can be empty, currently we get a cpuid with -1 in this case, but we actually need 0 because it's similar as the case that...
PT-2026-34910
In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Make kvm get vcpu by cpuid more robust kvm get vcpu by cpuid takes a cpuid parameter whose type is int, so cpuid can be negative. Let kvm get vcpu by cpuid return NULL for this case so as to make it more robust...
UBUNTU-CVE-2026-22987
In the Linux kernel, the following vulnerability has been resolved: net/sched: actapi: avoid dereferencing ERRPTR in tcfidrinfodestroy syzbot reported a crash in tcactinhw during netns teardown where tcfidrinfodestroy passed an ERRPTR-EBUSY value as a tcaction pointer, leading to an invalid...
CVE-2023-54222 hte: tegra-194: Fix off by one in tegra_hte_map_to_line_id()
In the Linux kernel, the following vulnerability has been resolved: hte: tegra-194: Fix off by one in tegrahtemaptolineid The "mapsz" is the number of elements in the "m" array so the comparison needs to be changed to = to prevent an out of bounds read...
UBUNTU-CVE-2025-68212
In the Linux kernel, the following vulnerability has been resolved: fs: Fix uninitialized 'offp' in statmountstring In statmountstring, most flags assign an output offset pointer offp which is later updated with the string offset. However, the STATMOUNTMNTUIDMAP and STATMOUNTMNTGIDMAP cases...
CVE-2025-68212
The CVE-2025-68212 entry concerns a Linux kernel fix for an uninitialized offp in statmount_string(), where UIDMAP/GIDMAP handling originally assigned fields directly instead of using offp. The patch now assigns offp for UIDMAP and GIDMAP to prevent potential dereferences when *offp is updated, a...
CVE-2025-68212 fs: Fix uninitialized 'offp' in statmount_string()
In the Linux kernel, the following vulnerability has been resolved: fs: Fix uninitialized 'offp' in statmountstring In statmountstring, most flags assign an output offset pointer offp which is later updated with the string offset. However, the STATMOUNTMNTUIDMAP and STATMOUNTMNTGIDMAP cases...
PT-2025-51625
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's handling of mount string statistics within the statmount string function. Specifically, the offp variable, intended to track the output offset, remain...
EUVD-2021-1639
Malware in sbrugna...
EUVD-2021-1891
Malware in sbrugna...
EUVD-2021-1865
Malware in sbrugna...
EUVD-2025-29508
Malicious code in bioql PyPI...
EUVD-2022-55488
Malicious code in bioql PyPI...
EUVD-2025-20814
Malicious code in bioql PyPI...
IdMap::from_iter may lead to uninitialized memory being freed on drop
Due to a flaw in the constructor idmap::IdMap::fromiter, ill-formed objects may be created in which the amount of actually initialized memory is less than what is expected by the fields of IdMap. Specifically, the field ids is initialized based on the capacity of the vector values, which is...
PT-2025-34572 · Crates.Io · Id-Map
Due to a flaw in the constructor id map::IdMap::from iter, ill-formed objects may be created in which the amount of actually initialized memory is less than what is expected by the fields of IdMap. Specifically, the field ids is initialized based on the capacity of the vector values, which is...
CVE-2025-38247
CVE-2025-38247 concerns the Linux kernel: a leak of user namespaces and possibly mnt_idmap in open_tree_attr(2) due to not releasing ->mnt_userns after a positive result from want_mount_setattr(). The root cause is that finish_mount_kattr() must release the namespace, and if do_mount_setattr()...
CVE-2025-38247 userns and mnt_idmap leak in open_tree_attr(2)
In the Linux kernel, the following vulnerability has been resolved: userns and mntidmap leak in opentreeattr2 Once wantmountsetattr has returned a positive, it does require finishmountkattr to release -mntuserns. Failing domountsetattr does not change that. As the result, we can end up leaking...
CVE-2021-30455
An issue was discovered in the id-map crate through 2021-02-26 for Rust. A double free can occur in IdMap::clonefrom upon a .clone panic...