Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: x86/mm: Ensure that the input to pfntokaddr is treated as a 64-bit type. On 64-bit platforms, the pfntokaddr macro requires that the input value be 64 bits. This is to prevent valid address bits from being lost when shifting the...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007585)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007585 advisory. In the Linux kernel, the following vulnerability has been resolved: net/sched: schqfq: Fix null-deref in aggdequeue To prevent a potential crash in aggdequeue...

AZL-69027 CVE-2025-40083 affecting package kernel for versions less than 6.6.117.1-1

In the Linux kernel, the following vulnerability has been resolved: net/sched: schqfq: Fix null-deref in aggdequeue To prevent a potential crash in aggdequeue net/sched/schqfq.c when cl-qdisc-ops-peekcl-qdisc returns NULL, we check the return value before using it, similar to the existing approac...

EUVD-2018-19217

Malware in sbrugna...

SUSE CVE-2023-52659

In the Linux kernel, the following vulnerability has been resolved: x86/mm: Ensure input to pfntokaddr is treated as a 64-bit type On 64-bit platforms, the pfntokaddr macro requires that the input value is 64 bits in order to ensure that valid address bits don't get lost when shifting that input ...

CVE-2023-52659

A vulnerability in the Linux kernel affected the x86/mm code, specifically in the pfntokaddr macro. The issue arises when the macro does not correctly handle input as a 64-bit type, causing crashes on 64-bit platforms, especially for SEV-SNP guests, when processing addresses above the 1TB range...

DEBIAN-CVE-2023-52659

In the Linux kernel, the following vulnerability has been resolved: x86/mm: Ensure input to pfntokaddr is treated as a 64-bit type On 64-bit platforms, the pfntokaddr macro requires that the input value is 64 bits in order to ensure that valid address bits don't get lost when shifting that input ...

CVE-2023-52659

In the Linux kernel, the following vulnerability has been resolved: x86/mm: Ensure input to pfntokaddr is treated as a 64-bit type On 64-bit platforms, the pfntokaddr macro requires that the input value is 64 bits in order to ensure that valid address bits don't get lost when shifting that input ...

UBUNTU-CVE-2023-52659

In the Linux kernel, the following vulnerability has been resolved: x86/mm: Ensure input to pfntokaddr is treated as a 64-bit type On 64-bit platforms, the pfntokaddr macro requires that the input value is 64 bits in order to ensure that valid address bits don't get lost when shifting that input ...

CVE-2023-52659

In the Linux kernel, the following vulnerability has been resolved: x86/mm: Ensure input to pfntokaddr is treated as a 64-bit type On 64-bit platforms, the pfntokaddr macro requires that the input value is 64 bits in order to ensure that valid address bits don't get lost when shifting that input ...

CVE-2023-52659 x86/mm: Ensure input to pfn_to_kaddr() is treated as a 64-bit type

In the Linux kernel, the following vulnerability has been resolved: x86/mm: Ensure input to pfntokaddr is treated as a 64-bit type On 64-bit platforms, the pfntokaddr macro requires that the input value is 64 bits in order to ensure that valid address bits don't get lost when shifting that input ...

CVE-2023-52659 x86/mm: Ensure input to pfn_to_kaddr() is treated as a 64-bit type

In the Linux kernel, the following vulnerability has been resolved: x86/mm: Ensure input to pfntokaddr is treated as a 64-bit type On 64-bit platforms, the pfntokaddr macro requires that the input value is 64 bits in order to ensure that valid address bits don't get lost when shifting that input ...

SUSE-SU-2023:2127-1 Security update for go1.19

This update for go1.19 fixes the following issues: Update to 1.19.9 bnc1200441: - CVE-2023-24539: fixed an improper sanitization of CSS values bnc1211029. - CVE-2023-24540: fixed an improper handling of JavaScript whitespace bnc1211030. - CVE-2023-29400: fixed an improper handling of empty HTML...

PT-2023-12221 · Openeuler · Byacc

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: When a file is processed, an infinite loop occurs in the next inline function of the more curly function. Recommendations: At the moment, there is no...

CVE-2021-20579

IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server 9.7, 10.1, 10.5, 11.1, and 11.5 could allow a user who can create a view or inline SQL function to obtain sensitive information when AUTOREVAL is set to DEFFEREDFORCE. IBM X-Force ID: 199283...

openSUSE Security Update : gcc7 (openSUSE-2020-2301)

This update for gcc7 fixes the following issues : - CVE-2020-13844: Added mitigation for aarch64 Straight Line Speculation issue bsc1172798 - Enable fortran for the nvptx offload compiler. - Update README.First-for.SuSE.packagers - avoid assembler errors with AVX512 gather and scatter instruction...

Design/Logic Flaw

Blue River Mura CMS before v7.0.7029 supports inline function calls with an m tag and /m end tag, without proper restrictions on file types or pathnames, which allows remote attackers to execute arbitrary code via an m$.dspinclude"../pathname/executable.jpeg"/m approach, where executable.jpeg...

CVE-2018-7486

Blue River Mura CMS before v7.0.7029 supports inline function calls with an m tag and /m end tag, without proper restrictions on file types or pathnames, which allows remote attackers to execute arbitrary code via an m$.dspinclude"../pathname/executable.jpeg"/m approach, where executable.jpeg...

CVE-2018-7486

Blue River Mura CMS before v7.0.7029 is affected by an arbitrary code execution vulnerability. The issue arises from supporting inline function calls using [m]...[/m] tags without proper restrictions on file types or pathnames, enabling a remote attacker to trigger code execution via an [m]$.dspi...

Linux Kernel 2.4.x-2.6.x Assembler Inline Function Local DoS Exploit

No description provided by source. / ----------------------------------------------------------------------------- frstor Local Kernel exploit Crashes any kernel from 2.4.18 to 2.6.7 because frstor in assembler inline offsets in memory by 4. Original proof of concept code by [email protected]. Added...