Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the fact that the SPI/RSPI controller releases underlying resources such as DMA without properly...

CVE-2026-31489

In the Linux kernel, the following vulnerability has been resolved: spi: meson-spicc: Fix double-put in remove path mesonspiccprobe registers the controller with devmspiregistercontroller, so teardown already drops the controller reference via devm cleanup. Calling spicontrollerput again in...

Efacec QC 安全漏洞

Efacec QC is a series of electric vehicle chargers from Efacec Portugal. A security vulnerability exists in the Efacec QC 60/90/120 that stems from a large number of ICMP requests sent that could result in a denial of service to the charger board controlling the EV interface...

PT-2025-25952 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue concerns a problem in the Linux kernel related to the validation of NIC queues, specifically with queue offset calculation. This calculation must be performed only for NIC...

CVE-2020-5939

In versions 16.0.0-16.0.0.1, 15.1.0-15.1.0.3, 15.0.0-15.0.1.3, 14.1.0-14.1.2.6, and 13.1.0-13.1.3.4, BIG-IP Virtual Edition VE systems on VMware, with an Intel-based 85299 Network Interface Controller NIC card and Single Root I/O Virtualization SR-IOV enabled on vSphere, may fail and leave the...

DEBIAN-CVE-2025-37875

In the Linux kernel, the following vulnerability has been resolved: igc: fix PTM cycle trigger logic Writing to clear the PTM status 'valid' bit while the PTM cycle is triggered results in unreliable PTM operation. To fix this, clear the PTM 'trigger' and status after each PTM transaction. The...

AZL-62495 CVE-2025-37842 affecting package kernel for versions less than 6.6.112.1-2

In the Linux kernel, the following vulnerability has been resolved: spi: fsl-qspi: use devm function instead of driver remove Driver use devm APIs to manage clk/irq/resources and register the spi controller, but the legacy remove function will be called first during device detach and trigger kern...

The vulnerability of the Dynamic Access Policies function in microprogramming-based network interface controllers of Cisco Adaptive Security Appliances (ASA) and Cisco Firepower Threat Defense (FTD) allows attackers to induce service failures.

The vulnerability of the Dynamic Access Policies function in microprogramming-based network interface controllers of Cisco Adaptive Security Appliances ASA and Cisco Firepower Threat Defense FTD is related to improper validation of the specified type of input data. Exploiting this vulnerability c...

The vulnerability of the $pconfig variable in the interfaces_groups_edit.php file of the software network interface controller based on the FreeBSD Netgate pfSense operating system allows a hacker to execute arbitrary code.

The vulnerability of the $pconfig variable in the interfacesgroups Edit.php file of the software network interface layer based on the FreeBSD Netgate pfSense operating system is related to the lack of security measures for the website structure. Exploiting this vulnerability allows a remote...

UBUNTU-CVE-2021-47315

In the Linux kernel, the following vulnerability has been resolved: memory: fslifc: fix leak of IO mapping on probe failure On probe error the driver should unmap the IO memory. Smatch reports: drivers/memory/fslifc.c:298 fslifcctrlprobe warn: 'fslifcctrldev-gregs' not released on lines: 298...

UBUNTU-CVE-2021-47314

In the Linux kernel, the following vulnerability has been resolved: memory: fslifc: fix leak of private memory on probe failure On probe error the driver should free the memory allocated for private structure. Fix this by using resource-managed allocation...

The vulnerability of the FortiOS network interface controller software in FortiGate, related to access control deficiencies, allows attackers to disclose sensitive information.

The vulnerability of the FortiOS network interface controller software in FortiGate systems is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to disclose protected information...

The vulnerability of RSA key-generation functions in microprogramming-based network interface controllers of Cisco Adaptive Security Appliances (ASA) and Cisco Firepower Threat Defense (FTD) allows attackers to calculate secret RSA keys.

The vulnerability of RSA key exchange functions in microprogramming-based network interface controllers of Cisco Adaptive Security Appliances ASA and Cisco Firepower Threat Defense FTD is related to the use of strictly encrypted credentials. Exploiting this vulnerability allows a malicious actor ...

The vulnerability of the implementation of the VPN Secure Sockets Layer (SSL) function in microprogramming-based network interface controllers of Cisco Adaptive Security Appliances (ASA) and Cisco Firepower Threat Defense (FTD) allows a attacker to cause service interruptions.

The vulnerability of the implementation of the VPN Secure Sockets Layer SSL function in microprogramming-based network interface controllers from Cisco Adaptive Security Appliances ASA and Cisco Firepower Threat Defense FTD is related to resource management errors. Exploiting this vulnerability c...

Realtek rtl8723de code issue vulnerability

Realtek rtl8723de is an interface controller from Realtek China. It is 802.11bgn 2.4G monolithic, integrated wireless LAN and network PCIe interface controller with integrated Bluetooth 5.0 USB interface controller. rtl8723de BLE Stack version 4.1 and prior versions have a code issue vulnerabilit...

The vulnerability of Cisco Adaptive Security Appliance and Cisco Firepower 2100 microprogramming-based network interface controllers lies in the improper processing of IPsec sessions by the software cryptographic module. This allows attackers to cause service interruptions.

The vulnerability of Cisco Adaptive Security Appliance and Cisco Firepower 2100 network interface controllers lies in the improper handling of IPsec sessions by the software cryptographic module. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

September 20, 2018—KB4457139 (Preview of Monthly Rollup)

September 20, 2018—KB4457139 Preview of Monthly Rollup Improvements and fixes This non-security update includes improvements and fixes that were a part of KB4457144 released September 11, 2018 and also includes these new quality improvements as a preview of the next Monthly Rollup update: Address...

January 8, 2019—KB4480970 (Monthly Rollup)

January 8, 2019—KB4480970 Monthly Rollup Improvements and fixes This security update addresses the following issues: Provides protections against an additional subclass of speculative execution side-channel vulnerability known as Speculative Store Bypass CVE-2018-3639 for AMD-based computers. The...

December 11, 2018—KB4471318 (Monthly Rollup)

December 11, 2018—KB4471318 Monthly Rollup Note: Because of minimal operations during the holidays and upcoming Western new year, there won’t be any preview releases for the month of December 2018. Monthly servicing will resume with the January 2019 security releases. Improvements and fixes This...

August 14, 2018—KB4343900 (Monthly Rollup)

August 14, 2018—KB4343900 Monthly Rollup Improvements and fixes This security update includes improvements and fixes that were a part of update KB4338821 released July 18, 2018 and addresses the following issues: Provides protections against a new speculative execution side-channel vulnerability...