69 matches found
CVE-2026-45975
In the Linux kernel, the following vulnerability has been resolved: ublk: use READONCE to read struct ublksrvctrlcmd struct ublksrvctrlcmd is part of the iouringsqe, which may lie in userspace-mapped memory. It's racy to access its fields with normal loads, as userspace may write to them...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: fsverity: Rejects FSIOCENABLEVERITY when accessing files with access mode 3 PAGESIZE. Commit 56124d6c87fd “fsverity: supports enabling enableverify for fds with tree block size fmode & FMODEREAD condition in kernelread became...
CVE-2026-43280
CVE-2026-43280 is a Linux kernel vulnerability in the drm/xe module where a malicious user can supply a malformed pat_index via the madvise IOCTL, triggering an out-of-bounds read from xe->pat.table due to missing bounds checking in xe_pat_index_get_coh_mode() (validated only by a call in madv...
Important: kernel6.12
Issue Overview: In the Linux kernel, the following vulnerability has been resolved: bpf: Reject narrower access to pointer ctx fields CVE-2025-38591 In the Linux kernel, the following vulnerability has been resolved: schedext: Fix possible deadlock in the deferredirqworkfn CVE-2025-68333 In the...
PT-2026-8207
In the Linux kernel, the following vulnerability has been resolved: procfs: avoid fetching build ID while holding VMA lock Fix PROCMAP QUERY to fetch optional build ID only after dropping mmap lock or per-VMA lock, whichever was used to lock VMA under question, to avoid deadlock reported by syzbo...
SUSE CVE-2026-23002
In the Linux kernel, the following vulnerability has been resolved: lib/buildid: use kernelread for sleepable context Prevent a "BUG: unable to handle kernel NULL pointer dereference in filemapreadfolio". For the sleepable context, convert freader to use kernelread instead of direct page cache...
CVE-2026-23002
In the Linux kernel, the following vulnerability has been resolved: lib/buildid: use kernelread for sleepable context Prevent a "BUG: unable to handle kernel NULL pointer dereference in filemapreadfolio". For the sleepable context, convert freader to use kernelread instead of direct page cache...
CVE-2026-23002 lib/buildid: use __kernel_read() for sleepable context
In the Linux kernel, the following vulnerability has been resolved: lib/buildid: use kernelread for sleepable context Prevent a "BUG: unable to handle kernel NULL pointer dereference in filemapreadfolio". For the sleepable context, convert freader to use kernelread instead of direct page cache...
CVE-2026-23002
In the Linux kernel, the following vulnerability has been resolved: lib/buildid: use kernelread for sleepable context Prevent a "BUG: unable to handle kernel NULL pointer dereference in filemapreadfolio". For the sleepable context, convert freader to use kernelread instead of direct page cache...
CVE-2026-23002
CVE-2026-23002 affects the Linux kernel’s buildid path. The fix switches the sleepable context reader to use __kernel_read() for reading file data instead of direct page cache access via read_cache_folio(), reducing the risk of a NULL pointer dereference in filemap_read_folio. The patch keeps exi...
EUVD-2026-4620
In the Linux kernel, the following vulnerability has been resolved: lib/buildid: use kernelread for sleepable context Prevent a "BUG: unable to handle kernel NULL pointer dereference in filemapreadfolio". For the sleepable context, convert freader to use kernelread instead of direct page cache...
CVE-2026-23002 lib/buildid: use __kernel_read() for sleepable context
In the Linux kernel, the following vulnerability has been resolved: lib/buildid: use kernelread for sleepable context Prevent a "BUG: unable to handle kernel NULL pointer dereference in filemapreadfolio". For the sleepable context, convert freader to use kernelread instead of direct page cache...
PT-2026-4664
In the Linux kernel, the following vulnerability has been resolved: lib/buildid: use kernel read for sleepable context Prevent a "BUG: unable to handle kernel NULL pointer dereference in filemap read folio". For the sleepable context, convert freader to use kernel read instead of direct page cach...
Linux Distros Unpatched Vulnerability : CVE-2026-23002
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - lib/buildid: use kernelread for sleepable context Prevent a BUG: unable to handle kernel NULL pointer dereference in filemapreadfolio. For the sleepable context...
A 0-click exploit chain for the Pixel 9 Part 2: Cracking the Sandbox with a Big Wave
Posted by Seth Jenkins With the advent of a potential Dolby Unified Decoder RCE exploit, it seemed prudent to see what kind of Linux kernel drivers might be accessible from the resulting userland context, the mediacodec context. As per the AOSP documentation, the mediacodec SELinux context is...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000379)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000379 advisory. The function hsogetconfigdata in drivers/net/usb/hso.c in the Linux kernel through 4.19.8 reads ifnum from the USB device as a u8 and uses it to index a small array,...
PT-2026-8114
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a data race condition around dev-work within the mISDN module. Specifically, dev-work can be read locklessly in the mISDN read and mISDN poll functions. The iss...
CVE-2025-43374
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 18.5 and iPadOS 18.5, iPadOS 17.7.7, macOS Sequoia 15.5, macOS Sonoma 14.7.3, macOS Ventura 13.7.3, tvOS 18.5, visionOS 2.5, watchOS 11.5. An attacker in physical proximity may be able to cause an...
EUVD-2019-18367
Malware in sbrugna...
EUVD-2022-35910
Malicious code in bioql PyPI...