Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-41034)

nilfs2: kernel bug on rename operation of broken directory. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504476; scriptversion"1.2";...

Linux Distros Unpatched Vulnerability : CVE-2025-40128

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - btrfs: fix symbolic link reading when bs ps BUG DURING BS PS TEST When running the following script on a btrfs whose block size is larger than page size, e.g. 8...

Siemens SIMATIC S7-1500 Use After Free (CVE-2023-40283)

An issue was discovered in l2capsockrelease in net/bluetooth/l2capsock.c in the Linux kernel before 6.4.10. There is a use-after-free because the children of an sk are mishandled. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information...

EUVD-2025-124916

In the Linux kernel, the following vulnerability has been resolved: ext4: detect invalid INLINEDATA + EXTENTS flag combination syzbot reported a BUGON in ext4escacheextent when opening a verity file on a corrupted ext4 filesystem mounted without a journal. The issue is that the filesystem has an...

EUVD-2025-124955

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix symbolic link reading when bs ps BUG DURING BS PS TEST When running the following script on a btrfs whose block size is larger than page size, e.g. 8K block size and 4K page size, it will trigger a kernel BUG: mkfs.btr...

CVE-2025-40128

...

CVE-2025-40128

CVE-2025-40128 entry is rejected/withdrawn and does not represent an active vulnerability.

CVE-2025-40128 btrfs: fix symbolic link reading when bs > ps

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix symbolic link reading when bs ps BUG DURING BS PS TEST When running the following script on a btrfs whose block size is larger than page size, e.g. 8K block size and 4K page size, it will trigger a kernel BUG: mkfs.btr...

CVE-2025-40118

In the Linux kernel, the following vulnerability has been resolved: scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod Since commit f7b705c238d1 "scsi: pm80xx: Set phyattached to zero when device is gone" UBSAN reports: UBSAN: array-index-out-of-bounds in drivers/scsi/pm8001/pm8001sas.c:786:...

kernel: wifi: brcmfmac: fix use-after-free bug in brcmf_netdev_start_xmit()

A use after free exists in the wifi module of the linux kernel in the function brcmfnetdevstartxmit,thereby leading to damage to system availability and integrity...

PT-2025-46603

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.17.0-rc4-custom+ 283 Description The Linux kernel contains a flaw related to handling symbolic links when the block size is larger than the page size bs ps within the Btrfs filesystem. Specifically, the issue...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from uninitialized variable reads and could lead to a kernel bug...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990738)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990738 advisory. In the Linux kernel, the following vulnerability has been resolved: speakup: Fix sizeof vs ARRAYSIZE bug The buf pointer is an array of u16 values. This code should ...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990743)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990743 advisory. In the Linux kernel, the following vulnerability has been resolved: ext4: fix another off-by-one fsmap error on 1k block filesystems Apparently syzbot figured out...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990819)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990819 advisory. In the Linux kernel, the following vulnerability has been resolved: blkiocost: fix more out of bound shifts Recently running UBSAN caught few out of bound shifts in...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990863)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990863 advisory. In the Linux kernel, the following vulnerability has been resolved: btrfs: clean up our handling of refs == 0 in snapshot delete In reada we BUGONrefs == 0, which...

kernel: sch_hfsc: Fix qlen accounting bug when using peek in hfsc_enqueue()

A flaw was found in the HFSC queueing discipline implementation in the Linux kernel. When a packet is enqueued and the child qdisc's peek function is called before properly updating the HFSC queue's length and backlog counters, a race condition can occur. In some cases, the peek operation may...

kernel: blk-cgroup: Fix UAF in blkcg_unpin_online()

In the Linux kernel, the following vulnerability has been resolved: blk-cgroup: Fix UAF in blkcgunpinonline blkcgunpinonline walks up the blkcg hierarchy putting the online pin. To walk up, it uses blkcgparentblkcg but it was calling that after blkcgdestroyblkgsblkcg which could free the blkcg,...

kernel: Bluetooth: btrtl: check for NULL in btrtl_setup_realtek()

A NULL pointer access may result in compromised availability...

RHEL 10 : kernel (RHSA-2025:19962)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:19962 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: microcodectl: From CVEorg collector...