Astra Linux - уязвимость в linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: bpf: Detects IP == ksym.end as part of the BPF program Now, since bpfthrow is the first call instruction with noreturn semantics within the verifier, this also leads to the elimination of dead code in unprecedented ways. For...

CVE-2025-68173

The CVE-2025-68173 entry concerns the Linux kernel, where ftrace_module_enable could cause a soft lockup when loading the amdgpu module. The root cause is multiple kallsyms_lookup calls spending excessive time in the RCU critical section with preemption disabled, potentially leading to a kernel p...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989322)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989322 advisory. In the Linux kernel, the following vulnerability has been resolved: bpf: Detect IP == ksym.end as part of BPF program Now that bpfthrow kfunc is the first such call...

ftrace: Fix UAF when lookup kallsym after ftrace disabled

...

PT-2023-9747 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the BPF Berkeley Packet Filter program in the Linux kernel. When the bpf throw kfunc is called, it triggers dead code elimination in an unprecedented way, causi...

RLSA-2022:0819 Important: kernel-rt security and bug fix update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: improper initialization of the "flags" member of the new pipebuffer CVE-2022-0847 kernel: Use After Free in unixgc which could...

xen-kernel -- guest 32-bit ELF symbol table load leaking host data

The Xen Project reports: Along with their main kernel binary, unprivileged guests may arrange to have their Xen environment load kernel symbol tables for their use. The ELF image metadata created for this purpose has a few unused bytes when the symbol table binary is in 32-bit ELF format. These...

OS X 10.9.5 IOKit IntelAccelerator NULL Pointer Dereference

Exploit for iOS platform in category local exploits // clang -o ig23exploit ig23exploit.c -framework IOKit -framework CoreFoundation -m32 -DFORTIFYSOURCE=0 // ianbeer include include include include include include include include uint64t kernelsymbolchar sym char cmd1024; strcpycmd, "nm -g...

Scientific Linux Security Update : kvm on SL5.4 i386/x86_64

The x86 emulator implementation was missing a check for the Current Privilege Level CPL and I/O Privilege Level IOPL. A user in a guest could leverage these flaws to cause a denial of service guest crash or possibly escalate their privileges within that guest. CVE-2010-0298, CVE-2010-0306 A flaw...

CentOS 5 : kvm (CESA-2010:0088)

Updated kvm packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. KVM Kernel-based Virtual Machine is a full virtualization solution for...

CVE-2001-1181

CVE-2001-1181 concerns HP-UX 11.11 where the Dynamically Loadable Kernel Module (dlkm) static kernel symbol table is misconfigured, enabling local users to gain privileges. The NVD entry lists a base score of 7.2 (HIGH) with LOCAL access, low attack complexity, and complete impacts to confidentia...