110 matches found
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an unchecked kcalloc return value that could lead to a null pointer dereference...
CVE-2025-40144 nvdimm: ndtest: Return -ENOMEM if devm_kcalloc() fails in ndtest_probe()
In the Linux kernel, the following vulnerability has been resolved: nvdimm: ndtest: Return -ENOMEM if devmkcalloc fails in ndtestprobe devmkcalloc may fail. ndtestprobe allocates three DMA address arrays dcrdma, labeldma, dimmdma and later unconditionally uses them in ndtestnvdimminit, which can...
CVE-2025-40144
CVE-2025-40144 relates to the Linux kernel nvdimm subsystem: ndtest may NULL-dereference under low memory if devm_kcalloc() allocations fail. The fix adds checks for three DMA address arrays (dcr_dma, label_dma, dimm_dma) and returns -ENOMEM on allocation failure, routing to a common error path. ...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989953)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989953 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: scsidebug: Don't call kcalloc if size arg is zero If the size arg to kcalloc is zero, it...
CVE-2025-40057
In the Linux kernel, the following vulnerability has been resolved: ptp: Add a upper bound on maxvclocks syzbot reported WARNING in maxvclocksstore. This occurs when the argument max is too large for kcalloc to handle. Extend the guard to guard against values that are too large for kcalloc...
AZL-68930 CVE-2025-40057 affecting package kernel 6.6.126.1-1
In the Linux kernel, the following vulnerability has been resolved: ptp: Add a upper bound on maxvclocks syzbot reported WARNING in maxvclocksstore. This occurs when the argument max is too large for kcalloc to handle. Extend the guard to guard against values that are too large for kcalloc...
DEBIAN-CVE-2025-40057
In the Linux kernel, the following vulnerability has been resolved: ptp: Add a upper bound on maxvclocks syzbot reported WARNING in maxvclocksstore. This occurs when the argument max is too large for kcalloc to handle. Extend the guard to guard against values that are too large for kcalloc...
UBUNTU-CVE-2025-40057
In the Linux kernel, the following vulnerability has been resolved: ptp: Add a upper bound on maxvclocks syzbot reported WARNING in maxvclocksstore. This occurs when the argument max is too large for kcalloc to handle. Extend the guard to guard against values that are too large for kcalloc...
CVE-2025-40057 ptp: Add a upper bound on max_vclocks
In the Linux kernel, the following vulnerability has been resolved: ptp: Add a upper bound on maxvclocks syzbot reported WARNING in maxvclocksstore. This occurs when the argument max is too large for kcalloc to handle. Extend the guard to guard against values that are too large for kcalloc...
CVE-2025-40057 ptp: Add a upper bound on max_vclocks
In the Linux kernel, the following vulnerability has been resolved: ptp: Add a upper bound on maxvclocks syzbot reported WARNING in maxvclocksstore. This occurs when the argument max is too large for kcalloc to handle. Extend the guard to guard against values that are too large for kcalloc...
CVE-2025-40057
CVE-2025-40057 concerns the Linux kernel. The issue, tracked as ptp: Add a upper bound on max_vclocks, arises when the max_vclocks_store argument becomes too large for kcalloc, potentially triggering allocation failures. The vulnerability is resolved by extending guards to prevent oversized value...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an overly large max parameter in the maxvclocksstore function causing kcalloc to be unable to handle it,...
Linux Distros Unpatched Vulnerability : CVE-2025-40057
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ptp: Add a upper bound on maxvclocks syzbot reported WARNING in maxvclocksstore. This occurs when the argument max is too large for kcalloc to handle. Extend th...
CVE-2022-50575 xen/privcmd: Fix a possible warning in privcmd_ioctl_mmap_resource()
In the Linux kernel, the following vulnerability has been resolved: xen/privcmd: Fix a possible warning in privcmdioctlmmapresource As 'kdata.num' is user-controlled data, if user tries to allocate memory larger than= MAXORDER, then kcalloc will fail, it creates a stack trace and messes up dmesg...
EUVD-2025-31860
An insecure implementation of the proprietary protocol DNET in Product CGM MEDICO allows attackers within the intranet to eavesdrop and manipulate data on the protocol because encryption is optional for this connection...
Linux Distros Unpatched Vulnerability : CVE-2023-53534
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: mtkdrmcrtc: Add checks for devmkcalloc As the devmkcalloc may return NULL, the...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987073)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987073 advisory. In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v3: Fix error handling in gicpopulateppipartitions ofgetchildbyname returns a node...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986783)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986783 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: scsidebug: Don't call kcalloc if size arg is zero If the size arg to kcalloc is zero, it...
CVE-2023-53534
In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: mtkdrmcrtc: Add checks for devmkcalloc As the devmkcalloc may return NULL, the return value needs to be checked to avoid NULL poineter dereference...
EUVD-2022-42541
Malicious code in bioql PyPI...