kernel: netfilter: ctnetlink: ensure safe access to master conntrack

A flaw was found in the netfilter: ctnetlink component of the Linux kernel. This vulnerability occurs due to insufficient locking when accessing the master conntrack object, allowing it to become invalid while still being referenced. A local attacker could potentially exploit this race condition,...

ROS-20260403-73-0008

A vulnerability in the fs/hfsplus/extents.c component of the Linux operating system kernel is related to insufficient locking. Exploitation of the vulnerability allows an attacker to cause a denial of service...

ROS-20260119-7350

A vulnerability in the rosebind function of the net/rose/afrose.c component of the Linux operating system kernel is related to insufficient locking. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

ROS-20260119-7381

A vulnerability in the drivers/tty/serial/xilinxuartps.c component of the Linux operating system kernel is related to insufficient locking. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

ROS-20260119-7302

A vulnerability in the memcg component of the Linux operating system kernel is related to insufficient locking. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

CVE-2025-68185

The CVE-2025-68185 entry concerns the Linux kernel vulnerability nfs4_setup_readdir() with insufficient locking when dereferencing ->d_parent->d_inode. The issue is described as a theoretically oopsable race that is unlikely to be exploitable on real hardware, though may be possible under K...

Linux Distros Unpatched Vulnerability : CVE-2025-68185

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - nfs4setupreaddir: insufficient locking for -dparent-dinode dereferencing Theoretically it's an oopsable race, but I don't believe one can manage to hit it on re...

EUVD-2017-4790

Malware in sbrugna...

The vulnerability of the ext4_ind_migrate() function in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the ext4indmigrate function in the Linux operating system is related to insufficient locking mechanisms. Exploiting this vulnerability could allow an attacker to trigger a service failure...

Vulnerability of the is_an_alpha2() function (net/wireless/reg.c) in the Linux operating system’s kernel, allowing a hacker to cause a service failure

The vulnerability of the isanalpha2 function net/wireless/reg.c in the Linux operating system is related to insufficient locking mechanisms. Exploiting this vulnerability could allow an attacker to cause a service failure...

Vulnerabilities of functions gpio_rcar_configInterruptInputMode(), gpio_rcar_configGeneralInputOutputMode(), gpio_rcar_get_multiple(), gpio_rcar_set(), gpio_rcar_set_multiple(), and gpio_rcar_probe() in the Linux kernel’s drivers/gpio/gpio_rcar.c file, which allow a attacker to cause a service failure

The vulnerabilities of the functions gpiorcarconfigInterruptInputMode, gpiorcarconfigGeneralInputOutputMode, gpiorcargetmultiple, gpiorcarset, gpiorcarsetmultiple, and gpiorcarprobe drivers/gpio/gpiorcar.c in the Linux kernel are related to insufficient locking. Exploitation of these...

Vulnerabilities of the functions pvr_queue_fence_get_driver_name() and pvr_queue_fence_init() (drivers/gpu/drm/imagination/pvr_queue.c) in the Linux kernel, allowing a hacker to cause a service failure

The vulnerabilities of the functions pvrqueuefencegetdrivername and pvrqueuefenceinit drivers/gpu/drm/imagination/pvrqueue.c in the Linux kernel are related to insufficient locking. Exploiting these vulnerabilities could allow an attacker to trigger a service failure...

The vulnerability of the in_atomic() function in the net/core/sock.c module of the Linux kernel allows a hacker to trigger a service failure.

The vulnerability of the inatomic function in the net/core/sock.c module of the Linux kernel is related to insufficient locking of resources. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the pinctrl_register_one_pin() function in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the pinctrlregisteronepin function in the Linux operating system is related to insufficient locking of resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

Vulnerability of the mptcp_nlremove_subflow_and_signal_addr() function (net/mptcp/pm_netlink.c) in the Linux kernel, allowing a hacker to cause a service failure

The vulnerability of the mptcpnlremovesubflowandsignaladdr function net/mptcp/pmnetlink.c in the Linux kernel is related to insufficient locking mechanisms. Exploiting this vulnerability could allow an attacker to cause a service failure...

Vulnerability of the npcm_i2c_probe_bus() function (driver/i2c/buses/i2c-npcm7xx.c) in the Linux kernel, allowing a hacker to cause a service failure

The vulnerability of the npcmi2cprobebus function from the drivers/i2c/busses/i2c-npcm7xx.c file in the Linux kernel is related to insufficient locking mechanisms. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerabilities of the functions mcp_pinconf_get() and mcp_pinconf_set() in the Linux kernel driver (drivers/pinctrl/pinctrl-mcp23s08.c), which allow a hacker to cause service failures.

The vulnerability of the mcppinconfget and mcppinconfset functions in the Linux kernel driver drivers/pinctrl/pinctrl-mcp23s08.c is related to insufficient resource locking. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the check_unmap() function in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the checkunmap function in the Linux operating system’s kernel is related to insufficient locking of resources. Exploiting this vulnerability could allow an attacker to trigger a service failure...

The vulnerability of the preempt_fence_work_func() function in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the preemptfenceworkfunc function in the Linux operating system’s kernel is related to insufficient resource locking. Exploiting this vulnerability can allow an attacker to trigger a service failure...

The vulnerability of the geminterrupt() function in the drivers/net/ethernet/sun/sungem.c module of the Linux kernel allows a hacker to cause a service failure.

The vulnerability of the geminterrupt function in the drivers/net/ethernet/sun/sungem.c module of the Linux kernel is related to insufficient locking of resources. Exploiting this vulnerability could allow an attacker to cause a service failure...