6574 matches found
CVE-2026-0849
Malformed ATAES132A responses with an oversized length field overflow a 52-byte stack buffer in the Zephyr crypto driver, allowing a compromised device or bus attacker to corrupt kernel memory and potentially hijack execution...
CVE-2026-0849 crypto: ATAES132A response length allows stack buffer overflow
Malformed ATAES132A responses with an oversized length field overflow a 52-byte stack buffer in the Zephyr crypto driver, allowing a compromised device or bus attacker to corrupt kernel memory and potentially hijack execution...
SUSE-SU-2026:20720-1 Security update for the Linux Kernel
The SUSE Linux Enterprise Micro 6.0 and Micro 6.1 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2023-53817: crypto: lib/mpi - avoid null pointer deref in mpicmpui bsc1254992. - CVE-2025-37861: scsi: mpi3mr: Synchronous access b/w reset and tm...
CVE-2024-14027
In the Linux kernel, the following vulnerability has been resolved: fs/xattr: missing fdput in fremovexattr error path In the Linux kernel, the fremovexattr syscall calls fdget to acquire a file reference but returns early without calling fdput when strncpyfromuser fails on the name argument. In...
kernel: Linux kernel: Information disclosure in efivarfs via incorrect error propagation
A flaw was found in the efivarfs component of the Linux kernel. This vulnerability, an information disclosure issue, arises from incorrect error handling in the efivarentryget function. An unprivileged local attacker can exploit this by reading from efivarfs, potentially causing uninitialized...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: platform/x86/amd: Fix memory leak in wbrfrecord The tmp buffer is allocated using kcalloc but is not freed if acpievaluatedsm fails. This causes a memory leak in the error path. Fix this by explicitly freeing the tmp buffer in th...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: mm/slub: reset KASAN tag in deferfree before accessing freed memory When CONFIGSLUBTINY is enabled, kfreenolock calls kasanslabfree before deferfree. On ARM64 with MTE Memory Tagging Extension, kasanslabfree poisons the memory an...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005631)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005631 advisory. In the Linux kernel, the following vulnerability has been resolved: fs/binfmtelf: Fix memory leak in loadelfbinary There is a memory leak reported by kmemleak:...
SUSE CVE-2026-23236
In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: properly copy ioctl memory to kernelspace The UFXIOCTLREPORTDAMAGE ioctl does not properly copy data from userspace to kernelspace, and instead directly references the memory, which can cause problems if invalid...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005639)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005639 advisory. In the Linux kernel, the following vulnerability has been resolved: s390/dasd: Fix potential memleak in dasdeckdinit dasdreservereq is allocated before dasdvolinfore...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005732)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005732 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/radeon: free iio for atombios when driver shutdown Fix below kmemleak when unload radeon...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005729)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005729 advisory. In the Linux kernel, the following vulnerability has been resolved: cassini: Fix a memory leak in the error handling path of casinitone cassaturnfirmwareinit allocat...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005779)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005779 advisory. In the Linux kernel, the following vulnerability has been resolved: macintosh: fix possible memory leak in macioaddonedevice Afer commit 1fa5ae857bb1 driver core: ge...
UBUNTU-CVE-2026-23236
In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: properly copy ioctl memory to kernelspace The UFXIOCTLREPORTDAMAGE ioctl does not properly copy data from userspace to kernelspace, and instead directly references the memory, which can cause problems if invalid...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005627)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005627 advisory. In the Linux kernel, the following vulnerability has been resolved: tcp/udp: Fix memleaks of sk and zerocopy skbs with TX timestamp. syzkaller reported 0 memory leak...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-005437)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005437 advisory. In the Linux kernel, the following vulnerability has been resolved: clk: samsung: Fix memory leak in samsungclkregisterpll If clkregister fails, @pll-ratetable may...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005721)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005721 advisory. In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: fw: fix memory leak in debugfs Fix a memory leak that occurs when reading the fwin...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-005450)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005450 advisory. In the Linux kernel, the following vulnerability has been resolved: bpf: cpumap: Fix memory leak in cpumapupdateelem Syzkaller reported a memory leak as follows: BUG...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-005474)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005474 advisory. A flaw possibility of memory leak in the Linux kernel cpuentryarea mapping of X86 CPU data to memory was found in the way user can guess location of exception stacks...
PT-2026-22676
Name of the Vulnerable Software and Affected Versions versions prior to 2026-0028 Description An out-of-bounds write issue exists in the pkvm host share guest function within mem protect.c due to an integer overflow. This could allow for local escalation of privilege without requiring additional...