kernel: ipv6: use RCU in ip6_output()

A use-after-free flaw was found in ip6finishoutput2 in net/ipv6/ip6output.c in ipv6 access. This flaw could allow an attacker to crash the system at device disconnect. This vulnerability could even lead to a kernel information leak problem...

UBUNTU-CVE-2026-45856

In the Linux kernel, the following vulnerability has been resolved: RDMA/uverbs: Validate wqesize before using it in ibuverbspostsend ibuverbspostsend uses cmd.wqesize from userspace without any validation before passing it to kmalloc and using the allocated buffer as struct ibuverbssendwr. If a...

Astra Linux - уязвимость в linux-5.10, linux, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: nilfs2: Fixed a kernel-infoleak issue in nilfsioctlwrapcopy. The ioctl helper function nilfsioctlwrapcopy exchanges a metadata array to/from user space. It may copy uninitialized buffer regions to user space memory for read-on...

Astra Linux - уязвимость в linux-5.10, linux-5.15, linux-6.1, linux

In the Linux kernel, the following vulnerabilities have been resolved: uprobes: Fixed a kernel information leak via “uprobes” vma. xoladdvma: Maps the uninitialized page allocated by createxolarea into user space. On some architectures x86, this memory is readable even without VMREAD or VMEXEC;...

Astra Linux - уязвимость в linux-5.10, linux-5.15, linux-6.1, linux

In the Linux kernel, the following vulnerability has been resolved: USB: usbtmc: prevented kernel-usb-infoleak. The syzbot reported a kernel-usb-infoleak in usbtmcwrite; we need to clear the structure before filling the fields...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006810)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006810 advisory. In the Linux kernel, the following vulnerability has been resolved: net/sched: actskbmod: prevent kernel-infoleak syzbot found that tcfskbmoddump was copying four...

CVE-2026-22978

In the Linux kernel, the following vulnerability has been resolved: wifi: avoid kernel-infoleak from struct iwpoint struct iwpoint has a 32bit hole on 64bit arches. struct iwpoint void user pointer; / Pointer to the data in user space / u16 length; / number of fields or size in bytes / u16 flags;...

CVE-2026-22978 wifi: avoid kernel-infoleak from struct iw_point

In the Linux kernel, the following vulnerability has been resolved: wifi: avoid kernel-infoleak from struct iwpoint struct iwpoint has a 32bit hole on 64bit arches. struct iwpoint void user pointer; / Pointer to the data in user space / u16 length; / number of fields or size in bytes / u16 flags;...

CVE-2026-22978

In the Linux kernel, the following vulnerability has been resolved: wifi: avoid kernel-infoleak from struct iwpoint struct iwpoint has a 32bit hole on 64bit arches. struct iwpoint void user pointer; / Pointer to the data in user space / u16 length; / number of fields or size in bytes / u16 flags;...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-004900)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004900 advisory. In the Linux kernel, the following vulnerability has been resolved: tty: vt: initialize unicode screen buffer syzbot reports kernel infoleak at vcsread 1, for buffe...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001954)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001954 advisory. The caifseqpktrecvmsg function in net/caif/caifsocket.c in the Linux kernel before 3.9-rc7 does not initialize a certain length variable, which allows local users to...

PT-2026-4478

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to the iw point structure within the Wi-Fi subsystem. The iw point structure contains a 32-bit hole on 64-bit architectures. This can lead to th...

UBUNTU-CVE-2025-40278

In the Linux kernel, the following vulnerability has been resolved: net: sched: actife: initialize struct tcife to fix KMSAN kernel-infoleak Fix a KMSAN kernel-infoleak detected by the syzbot . net? KMSAN: kernel-infoleak in skbdatagramiter In tcfifedump, the variable 'opt' was partially...

CVE-2025-40278

CVE-2025-40278 affects the Linux kernel net: sched: act_ife code path. The issue stems from a partially initialized tc_ife structure in tcf_ife_dump(), where a designated initializer left padding uninitialized and nla_put() copies the whole struct to userspace, exposing kernel memory. The advisor...

CVE-2025-40278

In the Linux kernel, the following vulnerability has been resolved: net: sched: actife: initialize struct tcife to fix KMSAN kernel-infoleak Fix a KMSAN kernel-infoleak detected by the syzbot . net? KMSAN: kernel-infoleak in skbdatagramiter In tcfifedump, the variable 'opt' was partially...

PT-2025-49379

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A kernel information leak issue was addressed in the Linux kernel related to the tc ife structure within the networking subsystem. The issue stemmed from partially initialized variables ...

Siemens SIMATIC S7-1500 Use After Free (CVE-2024-26805)

In the Linux kernel, the following vulnerability has been resolved: netlink: Fix kernel-infoleak-after-free in skbdatagramiter. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...

EUVD-2025-12903

Malicious code in bioql PyPI...

UBUNTU-CVE-2025-39686

In the Linux kernel, the following vulnerability has been resolved: comedi: Make insnrwemulatebits do insn-n samples The insnrwemulatebits function is used as a default handler for INSNREAD instructions for subdevices that have a handler for INSNBITS but not for INSNREAD. Similarly, it is used as...

Linux Distros Unpatched Vulnerability : CVE-2023-53035

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - nilfs2: fix kernel-infoleak in nilfsioctlwrapcopy The ioctl helper function nilfsioctlwrapcopy, which exchanges a metadata array to/from user space, may copy...