PT-2025-18623 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A memory leak issue has been identified in the Linux kernel, specifically in the ibmvnic module. The problem arises from the logic introduced in a particular commit, which causes a...

PT-2025-18529 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A memory leak issue has been resolved in the Linux kernel. The problem occurs when the VLAN protocol of a bridge changes, and the bridge driver attempts to delete a VLAN via the 8021q...

PT-2025-18549 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A null pointer dereferencing issue has been resolved in the Linux kernel, specifically in the pinctrl dt to map function. The issue occurred when kasprintf returned a NULL pointer due ...

PT-2025-18487 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A issue in the Linux kernel has been resolved, specifically in the ceph component, where decoding snaps fails and potentially causes "first realm" and realm to point to the same...

PT-2025-18912 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue concerns an uninitialized memory access in the Linux kernel. However, Red Hat Product Security has concluded that this CVE is not needed, indicating a rejection of the vulnerabilit...

CVE-2025-22086 RDMA/mlx5: Fix mlx5_poll_one() cur_qp update flow

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix mlx5pollone curqp update flow When curqp isn't NULL, in order to avoid fetching the QP from the radix tree again we check if the next cqe QP is identical to the one we already have. The bug however is that we are...

CVE-2025-22050 usbnet:fix NPE during rx_complete

In the Linux kernel, the following vulnerability has been resolved: usbnet:fix NPE during rxcomplete Missing usbnetgoingaway Check in Critical Path. The usbsubmiturb function lacks a usbnetgoingaway validation, whereas usbnetqueueskb includes this check. This inconsistency creates a race conditio...

CVE-2025-22026 nfsd: don't ignore the return code of svc_proc_register()

In the Linux kernel, the following vulnerability has been resolved: nfsd: don't ignore the return code of svcprocregister Currently, nfsdprocstatinit ignores the return value of svcprocregister. If the procfile creation fails, then the kernel will WARN when it tries to remove the entry later. Fix...

PT-2025-14595 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to the version with the applied patch Description: The issue arises when the invalidate cache method is called on filesystems that do not implement it, such as NFS and Ceph. If writing to the cache NETFS WRITE TO...

PT-2025-14310

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free issue can occur in the hid ishtp cl remove function during the rmmod operation for the intel ishtp hid driver. This issue arises because the hid ishtp cl deinit function...

CVE-2023-53032

CVE-2023-53032 concerns the Linux kernel netfilter/ipset bitmap_ip_create() overflow handling. When first_ip = 0, last_ip = 0xFFFFFFFF, and netmask = 31, the expression 2 <

CVE-2023-52977

In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: fix flow memory leak in ovsflowcmdnew Syzkaller reports a memory leak of newflow in ovsflowcmdnew as it is not freed when an allocation of a key fails. BUG: memory leak unreferenced object 0xffff888116668000 siz...

PT-2025-20499

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue concerns a problem in the Linux kernel where runtime resume/suspend operations could occur while MS IOCTLs are in progress, leading to potential deadlocks. This happens because...

Siemens SIMATIC S7-1500 TM MFP Buffer Access with Incorrect Length Value (CVE-2024-42154)

In the Linux kernel, the following vulnerability has been resolved: tcpmetrics: validate source addr length I don't see anything checking that TCPMETRICSATTRSADDRIPV4 is at least 4 bytes long, and the policy doesn't have an entry for this attribute at all neither does it for IPv6 but v6 is manual...

CVE-2025-21590 Junos OS: An local attacker with shell access can execute arbitrary code

An Improper Isolation or Compartmentalization vulnerability in the kernel of Juniper Networks Junos OS allows a local attacker with high privileges to compromise the integrity of the device. A local attacker with access to the shell is able to inject arbitrary code which can compromise an affecte...

CVE-2025-21590 Junos OS: An local attacker with shell access can execute arbitrary code

An Improper Isolation or Compartmentalization vulnerability in the kernel of Juniper Networks Junos OS allows a local attacker with high privileges to compromise the integrity of the device. A local attacker with access to the shell is able to inject arbitrary code which can compromise an affecte...

Microsoft Windows Kernel 代码问题漏洞

Microsoft Windows Kernel is the kernel of the Windows operating system from Microsoft Corporation USA. A code issue vulnerability exists in Microsoft Windows Kernel. An attacker could exploit this vulnerability to cause a denial of service on the system. The following products and versions are...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-57900)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-57900 advisory. - In the Linux kernel, the following vulnerability has been resolved: ila: serialize calls to nfregisternethoo...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-53215)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-53215 advisory. - In the Linux kernel, the following vulnerability has been resolved: svcrdma: fix miss destroy percpucounter ...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-56601)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-56601 advisory. - In the Linux kernel, the following vulnerability has been resolved: net: inet: do not leave a dangling sk...