CVE-2025-39828 atm: atmtcp: Prevent arbitrary write in atmtcp_recv_control().

In the Linux kernel, the following vulnerability has been resolved: atm: atmtcp: Prevent arbitrary write in atmtcprecvcontrol. syzbot reported the splat below. 0 When atmtcpvopen or atmtcpvclose is called via connect or close, atmtcpsendcontrol is called to send an in-kernel special message. The...

SUSE CVE-2022-50309

In the Linux kernel, the following vulnerability has been resolved: media: xilinx: vipp: Fix refcount leak in xvipgraphdmainit ofgetchildbyname returns a node pointer with refcount incremented, we should use ofnodeput on it when not need anymore. Add missing ofnodeput to avoid refcount leak...

CVE-2023-53148

In CVE-2023-53148, the Linux kernel igb driver had a task-hang vulnerability when a Thunderbolt hub is unplugged. The igb_down path could be invoked twice (via igb_io_error_detected and igb_remove), causing a hang at napi_synchronize and breaking Ethernet. The patch prevents the non-fatal PCIe er...

Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Microsoft

This is a proof-of-concept PoC exploit for CVE-2020-0796, also known as SMBGhost, a pre-authentication remote code execution vulnerability in the SMBv3 server of Windows operating systems. The exploit is written in Python and uses the SMB protocol to exploit the vulnerability. The exploit targets...

CVE-2025-39772 drm/hisilicon/hibmc: fix the hibmc loaded failed bug

In the Linux kernel, the following vulnerability has been resolved: drm/hisilicon/hibmc: fix the hibmc loaded failed bug When hibmc loaded failed, the driver use hibmcunload to free the resource, but the mutexes in mode.config are not init, which will access an NULL pointer. Just change goto...

kernel: drm/vkms: Fix use after free and double free on init error

In the Linux kernel, the following vulnerability has been resolved: drm/vkms: Fix use after free and double free on init error If the driver initialization fails, the vkmsexit function might access an uninitialized or freed defaultconfig pointer and it might double free it. Fix both possible erro...

Microsoft Graphics Kernel Code Execution Vulnerability

Microsoft Graphics Kernel is a kernel-mode graphics driver subsystem from Microsoft. A code execution vulnerability exists in Microsoft Graphics Kernel, which can be exploited by an attacker to execute arbitrary code on a system...

Linux Distros Unpatched Vulnerability : CVE-2017-0518

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An elevation of privilege vulnerability in the Qualcomm fingerprint sensor driver could enable a local malicious application to execute arbitrary code within th...

Linux Distros Unpatched Vulnerability : CVE-2022-28187

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer nvlddmkm.sys, where the memory management software does not release a...

Windows Kernel-Mode Driver Information Disclosure Vulnerability

Exposure of sensitive information to an unauthorized actor in Windows Kernel allows an authorized attacker to disclose information locally...

PT-2025-36465

Name of the Vulnerable Software and Affected Versions: Arm Ltd Bifrost GPU Kernel Driver versions r41p0 through r49p4, and r50p0 through r51p0 Arm Ltd Valhall GPU Kernel Driver versions r41p0 through r49p4, and r50p0 through r54p0 Arm Ltd Arm 5th Gen GPU Architecture Kernel Driver versions r41p0...

CVE-2025-39726 s390/ism: fix concurrency management in ism_cmd()

In the Linux kernel, the following vulnerability has been resolved: s390/ism: fix concurrency management in ismcmd The s390x ISM device data sheet clearly states that only one request-response sequence is allowable per ISM function at any point in time. Unfortunately as of today the s390/ism driv...

CVE-2025-39680 i2c: rtl9300: Fix out-of-bounds bug in rtl9300_i2c_smbus_xfer

In the Linux kernel, the following vulnerability has been resolved: i2c: rtl9300: Fix out-of-bounds bug in rtl9300i2csmbusxfer The data-block0 variable comes from user. Without proper check, the variable may be very large to cause an out-of-bounds bug. Fix this bug by checking the value of...

spi: fsl-qspi: use devm function instead of driver remove

...

fbdev: imxfb: Check fb_add_videomode to prevent null-ptr-deref

...

clk: mediatek: Fix memory leaks on probe

...

PT-2025-35819

Name of the Vulnerable Software and Affected Versions: K7RKScan.sys version 23.0.0.10 Description: K7RKScan.sys, part of the K7 Security Anti-Malware suite, allows an administrator-privileged user to send crafted IOCTL requests to terminate processes protected by a third-party implementation. Thi...

Linux Distros Unpatched Vulnerability : CVE-2025-38513

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wifi: zd1211rw: Fix potential NULL pointer dereference in zdmactxtodev There is a potential NULL pointer dereference in zdmactxtodev. For example, the followin...

kernel: tee: amdtee: fix race condition in amdtee_open_session

A use-after-free vulnerability was found in the AMD TEE driver in the Linux kernel. The flaw occurs from a race condition in the amdteeopensession function, where the session is marked as active in sess-sessmask before the corresponding sess structure is fully initialized. If a parallel thread...

Linux Distros Unpatched Vulnerability : CVE-2025-32776

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenRazer is an open source driver and user-space daemon to control Razer device lighting and other features on GNU/Linux. By writing specially crafted data to...