UBUNTU-CVE-2025-21940

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix NULL Pointer Dereference in KFD queue Through KFD IOCTL Fuzzing we encountered a NULL pointer derefrence when calling kfdqueueacquirebuffers. cherry picked from commit 049e5bf3c8406f87c3d8e1958e0a16804fa1d530...

CVE-2025-21940

Technical details about CVE-2025-21940 are not publicly provided in the supplied documents. No affected products, versions, or fixes are explicitly described here. Monitor for vendor advisories and patch releases.

CVE-2025-21940 drm/amdkfd: Fix NULL Pointer Dereference in KFD queue

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix NULL Pointer Dereference in KFD queue Through KFD IOCTL Fuzzing we encountered a NULL pointer derefrence when calling kfdqueueacquirebuffers. cherry picked from commit 049e5bf3c8406f87c3d8e1958e0a16804fa1d530...

CVE-2025-21940 drm/amdkfd: Fix NULL Pointer Dereference in KFD queue

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix NULL Pointer Dereference in KFD queue Through KFD IOCTL Fuzzing we encountered a NULL pointer derefrence when calling kfdqueueacquirebuffers. cherry picked from commit 049e5bf3c8406f87c3d8e1958e0a16804fa1d530...

CVE-2023-52989 firewire: fix memory leak for payload of request subaction to IEC 61883-1 FCP region

In the Linux kernel, the following vulnerability has been resolved: firewire: fix memory leak for payload of request subaction to IEC 61883-1 FCP region This patch is fix for Linux kernel v2.6.33 or later. For request subaction to IEC 61883-1 FCP region, Linux FireWire subsystem have had an issue...

OESA-2025-1317 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: ubi: Fix race condition between ctrlcdevioctl and ubicdevioctl Hulk Robot reported a KASAN report about use-after-free:...

CVE-2025-26125

An exposed ioctl in the IMFForceDelete driver of IObit Malware Fighter v12.1.0 allows attackers to arbitrarily delete files and escalate privileges...

CVE-2025-26125

An exposed ioctl in the IMFForceDelete driver of IObit Malware Fighter v12.1.0 allows attackers to arbitrarily delete files and escalate privileges...

CVE-2025-26125

CVE-2025-26125 affects IObit Malware Fighter (v12.1.0) via an exposed ioctl in the IMFForceDelete driver. The root cause is the IMFForceDelete driver exposing an I/O control that enables arbitrary file deletion and privilege escalation. Impact per sources: local attacker could delete files and el...

PT-2025-11525

Name of the Vulnerable Software and Affected Versions IObit Malware Fighter version 12.1.0 Description An exposed ioctl in the IMFForceDelete driver of IObit Malware Fighter allows attackers to arbitrarily delete files and escalate privileges. Recommendations As a temporary workaround, consider...

CVE-2025-21843 drm/panthor: avoid garbage value in panthor_ioctl_dev_query()

In the Linux kernel, the following vulnerability has been resolved: drm/panthor: avoid garbage value in panthorioctldevquery 'prioritiesinfo' is uninitialized, and the uninitialized value is copied to user object when calling PANTHORUOBJSET. Using memset to initialize 'prioritiesinfo' to avoid th...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an uninitialized prioritiesinfo variable in the panthorioctldevquery function that could lead to a garbage...

CVE-2024-43059

Memory corruption while invoking IOCTL calls from the use-space for HGSL memory node...

CVE-2024-43055

Memory corruption while processing camera use case IOCTL call...

CVE-2024-45580

Memory corruption while handling multuple IOCTL calls from userspace for remote invocation...

Linux Distros Unpatched Vulnerability : CVE-2016-2549

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - sound/core/hrtimer.c in the Linux kernel before 4.4.1 does not prevent recursive callback access, which allows local users to cause a denial of service deadlock...

Linux Distros Unpatched Vulnerability : CVE-2014-1737

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The rawcmdcopyin function in drivers/block/floppy.c in the Linux kernel through 3.14.3 does not properly handle error conditions during processing of an FDRAWCM...

Linux Distros Unpatched Vulnerability : CVE-2016-4482

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The procconnectinfo function in drivers/usb/core/devio.c in the Linux kernel through 4.6 does not initialize a certain data structure, which allows local users ...

Linux Distros Unpatched Vulnerability : CVE-2014-1738

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The rawcmdcopyout function in drivers/block/floppy.c in the Linux kernel through 3.14.3 does not properly restrict access to certain pointers during processing ...

CVE-2024-45580

Memory corruption while handling multuple IOCTL calls from userspace for remote invocation...