CVE-2022-29968

An issue was discovered in the Linux kernel through 5.17.5. iorwinitfile in fs/iouring.c lacks initialization of kiocb-private...

PT-2025-8005 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A resolved issue in the Linux kernel involves the mremap syscall. When this syscall is called with old size=0 and ends up in move page tables, it unnecessarily calls invalidate range...

PT-2025-8096

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A issue in the Linux kernel has been identified, specifically in the btrfs component. The problem arises when the submit helper fails to submit a bio, leading to potential use-after-free...

PT-2025-8118 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A issue in the Linux kernel has been resolved, related to the allocation and deallocation of resources during boot. Specifically, the problem occurs when kfree is used directly to...

olcne security update

olcne 1.2.4-5 - Updated registry-image-helper.sh to work with olcne-utils 1.2.4-4 - Fix istio template for 1.9.6 for k8s update failure 1.2.4-3 - Fixed yaml file to stop olcne-nginx and keepalived services at uninstall Orabug: 32296282 1.2.4-2 - Fix iptables issue when running on OL7 host using O...

olcne security update

olcne 1.3.1-5 - Updated registry-image-helper.sh to work with olcne-utils 1.3.1-4 - Fix istio template for 1.9.6 and 1.10.2 for k8s update failure 1.3.1-3 - Added ENDVERSIONBLOCK for OLM image 1.3.1-2 - Fix iptables issue when running on OL7 host using OL8 image for 1.19.8 - Fix iptables issue wh...

CVE-2020-26147

An issue was discovered in the Linux kernel 5.8.9. The WEP, WPA, WPA2, and WPA3 implementations reassemble fragments even though some of them were sent in plaintext. This vulnerability can be abused to inject packets and/or exfiltrate selected fragments when another device sends fragmented frames...

CVE-2021-32020

The kernel in Amazon Web Services FreeRTOS before 10.4.3 has insufficient bounds checking during management of heap memory...

CVE-2020-36313

An issue was discovered in the Linux kernel before 5.7. The KVM subsystem allows out-of-range access to memslots after a deletion, aka CID-0774a964ef56. This affects arch/s390/kvm/kvm-s390.c, include/linux/kvmhost.h, and virt/kvm/kvmmain.c...

CVE-2020-36312

CVE-2020-36312 affects the Linux kernel up to version 5.8.9, where in virt/kvm/kvm_main.c a kmalloc failure can trigger a memory leak in kvm_io_bus_unregister_dev. The connected Nessus advisories confirm the issue as a kernel-level leak and reference the fixed patch in 5.8.10 (ChangeLog-5.8.10; c...

CVE-2021-29646

An issue was discovered in the Linux kernel before 5.11.11. tipcnlretrievekey in net/tipc/node.c does not properly validate certain data sizes, aka CID-0217ed2848e8...

OESA-2021-1087 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In drivers/target/targetcorexcopy.c in the Linux kernel before 5.10.7, insufficient identifier checking in the LIO SCSI target code can be used by remote attackers to read or write files via directory traversal in an XCOPY reques...

CVE-2021-28039

An issue was discovered in the Linux kernel 5.9.x through 5.11.3, as used with Xen. In some less-common configurations, an x86 PV guest OS user can crash a Dom0 or driver domain via a large amount of I/O activity. The issue relates to misuse of guest physical addresses when a configuration has...

Design/Logic Flaw

An issue was discovered in the Linux kernel 3.2 through 5.10.16, as used by Xen. Grant mapping operations often occur in batch hypercalls, where a number of operations are done in a single hypercall, the success or failure of each one is reported to the backend driver, and the backend driver then...

CVE-2021-26930

An issue was discovered in the Linux kernel 3.11 through 5.10.16, as used by Xen. To service requests to the PV backend, the driver maps grant references provided by the frontend. In this process, errors may be encountered. In one case, an error encountered earlier might be discarded by later...

CVE-2021-26931

An issue was discovered in the Linux kernel 2.6.39 through 5.10.16, as used in Xen. Block, net, and SCSI backends consider certain errors a plain bug, deliberately causing a kernel crash. For errors potentially being at least under the influence of guests such as out of memory conditions, it isn'...

(RHSA-2020:5607) Important: fapolicyd bug fix update

The fapolicyd software framework introduces a form of file access control based on a user-defined policy. The application file access control feature provides one of the most efficient ways to prevent running untrusted and possibly malicious applications on the system. Bug Fixes: When an update...

CVE-2020-29369

An issue was discovered in mm/mmap.c in the Linux kernel before 5.7.11. There is a race condition between certain expand functions expanddownwards and expandupwards and page-table free operations from an munmap call, aka CID-246c320a8cfe...

CVE-2020-12769

An issue was discovered in the Linux kernel before 5.4.17. drivers/spi/spi-dw.c allows attackers to cause a panic via concurrent calls to dwspiirq and dwspitransferone, aka CID-19b61392c5a8...

CVE-2019-20794

An issue was discovered in the Linux kernel 4.18 through 5.6.11 when unprivileged user namespaces are allowed. A user can create their own PID namespace, and mount a FUSE filesystem. Upon interaction with this FUSE filesystem, if the userspace component is terminated via a kill of the PID...