CVE-2026-45918

A flaw was found in the Linux kernel's handling of OpenVPN Open Virtual Private Network TCP Transmission Control Protocol connections. A race condition can occur when a userspace process closes a socket while a peer is in the kernel's release list. This can lead to a null pointer dereference when...

Astra Linux - уязвимость в linux-5.10, linux-5.15, linux

In the Linux kernel, the following vulnerability has been resolved: ALSA: aoa: i2sbus: fixed a possible memory leak in i2sbusadddev The devsetname function in soundbusaddone allocates memory for the device name. This memory needs to be freed when ofdeviceregister fails. The soundbusdevput functio...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: mctp i2c: Do not count unused/invalid keys for flow release. We are currently encountering the WARNON message in mctpi2cflowrelease: c if midev-releasecount midev-i2clockcount WARNONCE1, "Release count overflow"; This issue may...

CVE-2025-38683 affecting package kernel for versions less than 5.15.200.1-1

CVE-2025-38683 affecting package kernel for versions less than 5.15.200.1-1. An upgraded version of the package is available that resolves this issue...

ROS-20260128-73-0047

Vulnerability in kernel-lt related to failure to release a resource after its valid lifetime has expired. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service using specially crafted ipv6 traffic...

CVE-2022-50822 RDMA/restrack: Release MR restrack when delete

In the Linux kernel, the following vulnerability has been resolved: RDMA/restrack: Release MR restrack when delete The MR restrack also needs to be released when delete it, otherwise it cause memory leak as the task struct won't be released...

EUVD-2021-8953

Malicious code in bioql PyPI...

CVE-2025-39734 Revert "fs/ntfs3: Replace inode_trylock with inode_lock"

In the Linux kernel, the following vulnerability has been resolved: Revert "fs/ntfs3: Replace inodetrylock with inodelock" This reverts commit 69505fe98f198ee813898cbcaf6770949636430b. Initially, conditional lock acquisition was removed to fix an xfstest bug that was observed during internal...

CVE-2025-37995

CVSS note: CVE-2025-37995 is a Linux kernel issue with a local exploit vector and a MEDIUM impact rating. The vulnerability arises in module handling of kobjects: in lookup_or_create_module_kobject(), an internal kobject is created using module_ktype, and a call to kobject_put() on the error path...

CVE-2022-49915 mISDN: fix possible memory leak in mISDN_register_device()

In the Linux kernel, the following vulnerability has been resolved: mISDN: fix possible memory leak in mISDNregisterdevice Afer commit 1fa5ae857bb1 "driver core: get rid of struct device's busid string array", the name of device is allocated dynamically, add putdevice to give up the reference, so...

FreeBSD 资源管理错误漏洞

FreeBSD is a set of Unix-like operating systems from the FreeBSD Foundation. A resource management error vulnerability exists in FreeBSD that stems from the ctlwritebuffer function incorrectly setting a flag that results in kernel-release-after-reuse when the command completes processing...

Docker cgroups Container Escape

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Docker cgroups Container Escape', 'Description' = %q This exploit module takes advantage of a Docker image which has either the privileged flag, ...

Qualcomm 芯片资源管理错误漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way to miniaturize circuits mainly semiconductor devices, but also passive components, etc. and are often manufactured on the surface of semiconductor wafers. A resource management error vulnerability exists in Qualcomm chips that stems...

FreeBSD rtld execl() Privilege Escalation Exploit

This Metasploit module exploits a vulnerability in the FreeBSD run-time link-editor rtld. The rtld unsetenv function fails to remove LD environment variables if findenv fails. This can be abused to load arbitrary shared objects using LDPRELOAD, resulting in privileged code execution. This module...

Amazon Linux 2 : kernel (ALAS-2018-939) (Meltdown) (Spectre)

An updated kernel release for Amazon Linux has been made available which prevents speculative execution of indirect branches within the kernel. This release incorporates latest stable open source Linux security improvements to address CVE-2017-5715 within the kernel and builds upon previously...

Critical: kernel

Issue Overview: An updated kernel release for Amazon Linux has been made available which prevents speculative execution of indirect branches within the kernel. This release incorporates latest stable open source Linux security improvements to address CVE-2017-5715 within the kernel and builds upo...

Low: Red Hat Bug Fix Advisory: Updated lvm package

An updated lvm package that includes a number of bug fixes and enhancements is now available for the latest Red Hat Enterprise Linux Update 3 kernel release. LVM includes all of the support for handling read/write operations on physical volumes, creating volume groups from one or more physical...

Linux news 13.11.00

Linux Kernel pre-patch 2.4.0 test11-pre3 Вышел третий пререлиз одинадцатого тестового ядра Linux - Linux Kernel 2.4.0. Подробее: ftp://ftp.funet.fi/pub/linux/kernel/testing 2.4 будет в декабре Линус обмолвился в интервью немецкому журналу, что ядро 2.4 точно будет в декабре. Что в принципе...

Linux news 29.09.00

Linux 2.2.18pre11 Alax Cox выпустил новую pre-версию следующего стабильного ядра Linux: 2.2.18pre11. Подробнее: http://linuxtoday.com/newsstory.php3?ltsn=2000-09-27-011-04-NW-KN MySQL 3.23.25 Вышла новая beta версия популярного SQL сервера MySQL - MySQL 3.23.25. Подробнее:...

Linux news 22.09.00

2.4.0-test9-pre5 kernel released Вышла новая тестовая версия 2.4.0 кернела test9-pre5. Она включает в себя множество исправлений. Так же продолжен процесс синхронизации драйверов между 2.2 и 2.4 ветками Подробнее: http://balrog.ruwr.ru/tmp/test9-pre5.txt Роботы под Linux Как оказалось, на...