PT-2025-30622 · Undefined · Undefined

🚨 BREAKING: SUSE releases CRITICAL kernel patch CVE-2025-02470 | CVSS 9.1. Impact: Root access via netfilter UA Affects: Kernels 5.15-6.5 Action: zypper patch --cve=CVE-2025-02470 Read more: 👉 https://t.co/Iyqyhf0Cfc https://t.co/qRWwdxp2tj...

SUSE SLES15 Security Update : kernel RT (Live Patch 10 for SLE 15 SP6) (SUSE-SU-2025:02439-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2025:02439-1 advisory. This update for the Linux Kernel 6.4.0-1506001034 fixes several issues. The following security issue was fixed: - CVE-2025-22115: btrfs: fix block gro...

Important: Red Hat Security Advisory: kpatch-patch-5_14_0-427_13_1, kpatch-patch-5_14_0-427_31_1, kpatch-patch-5_14_0-427_44_1, kpatch-patch-5_14_0-427_55_1, and kpatch-patch-5_14_0-427_68_2 security update

An update for kpatch-patch-5140-427131, kpatch-patch-5140-427311, kpatch-patch-5140-427441, kpatch-patch-5140-427551, and kpatch-patch-5140-427682 is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact ...

Important: Red Hat Security Advisory: kpatch-patch-5_14_0-70_112_1, kpatch-patch-5_14_0-70_121_1, kpatch-patch-5_14_0-70_124_1, kpatch-patch-5_14_0-70_132_1, and kpatch-patch-5_14_0-70_85_1 security update

An update for kpatch-patch-5140-701121, kpatch-patch-5140-701211, kpatch-patch-5140-701241, kpatch-patch-5140-701321, and kpatch-patch-5140-70851 is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a securit...

PT-2025-49439

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the exFAT file system related to the validation of cluster allocation bits in the allocation bitmap. Specifically, the system reads and utilizes t...

OESA-2025-1823 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: arm64: Don't call NULL in docompatalignmentfixup doalignmentt32tohandler only fixes up alignment faults for specific instructions; it returns NULL otherwise e.g...

codel: remove sch->q.qlen check before qdisc_tree_reduce_backlog()

...

mptcp: fix NULL pointer in can_accept_new_subflow

...

CVE-2022-49535 affecting package kernel for versions less than 5.15.182.1-1

CVE-2022-49535 affecting package kernel for versions less than 5.15.182.1-1. A patched version of the package is available...

CVE-2024-46784 affecting package kernel for versions less than 5.15.182.1-1

CVE-2024-46784 affecting package kernel for versions less than 5.15.182.1-1. A patched version of the package is available...

DEBIAN-CVE-2025-38306

In the Linux kernel, the following vulnerability has been resolved: fs/fhandle.c: fix a race in call of haslockedchildren maydecodefh is calling haslockedchildren while holding no locks. That's an oopsable race... The rest of the callers are safe since they are holding namespacesem and are...

CVE-2025-38343 wifi: mt76: mt7996: drop fragments with multicast or broadcast RA

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7996: drop fragments with multicast or broadcast RA IEEE 802.11 fragmentation can only be applied to unicast frames. Therefore, drop fragments with multicast or broadcast RA. This patch addresses vulnerabilities suc...

UBUNTU-CVE-2025-38266

In the Linux kernel, the following vulnerability has been resolved: pinctrl: mediatek: eint: Fix invalid pointer dereference for v1 platforms Commit 3ef9f710efcb "pinctrl: mediatek: Add EINT support for multiple addresses" introduced an access to the 'soc' field of struct mtkpinctrl in...

CVE-2025-38278 octeontx2-pf: QOS: Refactor TC_HTB_LEAF_DEL_LAST callback

In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: QOS: Refactor TCHTBLEAFDELLAST callback This patch addresses below issues, 1. Active traffic on the leaf node must be stopped before its send queue is reassigned to the parent. This patch resolves the issue by marki...

kernel: usb: atm: cxacru: fix endpoint checking in cxacru_bind()

In the Linux kernel, the following vulnerability has been resolved: usb: atm: cxacru: fix endpoint checking in cxacrubind Syzbot is still reporting quite an old issue 1 that occurs due to incomplete checking of present usb endpoints. As such, wrong endpoints types may be used at urb sumbitting...

kernel: udf: Fix a slab-out-of-bounds write bug in udf_find_entry()

In the Linux kernel, the following vulnerability has been resolved: udf: Fix a slab-out-of-bounds write bug in udffindentry Syzbot reported a slab-out-of-bounds Write bug: loop0: detected capacity change from 0 to 2048 ================================================================== BUG: KASAN:...

RHEL 9 : kpatch-patch-5_14_0-570_17_1 (RHSA-2025:10674)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2025:10674 advisory. This is a kernel live patch module which can be loaded by the kpatch command line utility to modify the code of a running kernel. This patch module ...

SUSE CVE-2025-38174

In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Do not double dequeue a configuration request Some of our devices crash in tbcfgrequestdequeue: general protection fault, probably for non-canonical address 0xdead000000000122 CPU: 6 PID: 91007 Comm: kworker/6:2...

UBUNTU-CVE-2025-38206

In the Linux kernel, the following vulnerability has been resolved: exfat: fix double free in delayedfree The double free could happen in the following path. exfatcreateupcasetable exfatcreateupcasetable : return error exfatfreeupcasetable : free -volutbl exfatloaddefaultupcasetable : return erro...

CVE-2025-38164 f2fs: zone: fix to avoid inconsistence in between SIT and SSA

In the Linux kernel, the following vulnerability has been resolved: f2fs: zone: fix to avoid inconsistence in between SIT and SSA w/ below testcase, it will cause inconsistence in between SIT and SSA. createnullblk 512 2 1024 1024 mkfs.f2fs -m /dev/nullb0 mount /dev/nullb0 /mnt/f2fs/ touch...