321 matches found
CVE-2013-2094 affecting package kernel for versions less than 5.15.153.1-1
CVE-2013-2094 affecting package kernel for versions less than 5.15.153.1-1. An upgraded version of the package is available that resolves this issue...
CVE-2024-0584 affecting package kernel for versions less than 5.15.153.1-1
CVE-2024-0584 affecting package kernel for versions less than 5.15.153.1-1. An upgraded version of the package is available that resolves this issue...
CVE-2024-0565 affecting package kernel for versions less than 5.15.153.1-1
CVE-2024-0565 affecting package kernel for versions less than 5.15.153.1-1. An upgraded version of the package is available that resolves this issue...
PT-2024-26798
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.8.9 Description The issue is related to the btrfs file system in the Linux kernel. It was discovered that the kernel did not properly set the WRITTEN flag on all metadata blocks, which could lead to corruption ...
CVE-2024-26583 affecting package kernel for versions less than 6.6.22.1-2
CVE-2024-26583 affecting package kernel for versions less than 6.6.22.1-2. An upgraded version of the package is available that resolves this issue...
PT-2024-26764
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.37 Description The issue is related to a potential use-after-free bug in the Linux kernel's SMB client when walking DFS referrals, mounting, and performing DFS failover. This is resolved by ensuring all...
PT-2024-27248
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.37 Description The current implementation of the fpga manager in the Linux kernel assumes that the low-level module registers a driver for the parent device and uses its owner pointer to take the module's...
PT-2024-21615
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.9.0-rc3+ 365 Description The vulnerability is related to a memleak in the netfilter nf tables module. The delete set command does not rely on the transaction object for element removal, which could result in...
PT-2024-8423 · Linux +3 · Linux Kernel +3
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.7.2 Description: The vulnerability is related to incorrect lock ordering in the btrfs zone activate function, which can lead to a deadlock. This issue was detected by the btrfs CI when running generic/129,...
Important: kernel
Issue Overview: An issue was discovered in the Linux kernel before 6.5.9, exploitable by local users with userspace access to MMIO registers. Incorrect access checking in the VC handler and instruction emulation of the SEV-ES emulation of MMIO accesses could lead to arbitrary write access to kern...
Important: kernel
Issue Overview: A race condition between two functions, lmLogClose and txEnd, in the Linux kernel's JFS filesystem can lead to a use-after-free vulnerability and crash. CVE-2023-3397 In the Linux kernel, the following vulnerability has been resolved: usb: hub: Guard against accesses to...
PT-2023-9742 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to the version that includes the fix for the f2fs reference count leak Description: The issue is related to a reference count leak in the f2fs component of the Linux kernel. During the f2fs put super function, a...
ALSA-2023:5069 Important: kernel security, bug fix, and enhancement update
The kernel packages contain the Linux kernel, the core of any Linux operating system. The following packages have been upgraded to a later upstream version: kernel 5.14.0. Security Fixes: kernel: UAF in nftables when nftsetlookupglobal triggered after handling named and anonymous sets in batch...
Important: kernel
Issue Overview: A division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality. CVE-2023-20588 The fix for XSA-423 added logic to Linux'es netback driver to deal with a frontend splitting a packet in a way such that not all of the...
AZL-27349 CVE-2023-3389 affecting package kernel for versions less than 5.15.122.1-2
A use-after-free vulnerability in the Linux Kernel iouring subsystem can be exploited to achieve local privilege escalation. Racing a iouring cancel poll request with a linked timeout can cause a UAF in a hrtimer. We recommend upgrading past commit ef7dfac51d8ed961b742218f526bd589f3900a59...
[slackware-security] Slackware 15.0 kernel
New kernel packages are available for Slackware 15.0 to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/linux-5.15.118/: Upgraded. These updates fix various bugs and security issues. Be sure to upgrade your initrd after upgrading the kernel packages. ...
PT-2023-3668 · Linux +5 · Linux Kernel +5
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.3.8 Description: An issue in the Linux kernel's ksmbd module, specifically in the fs/smb/server/connection.c file, does not validate the relationship between the NetBIOS header's length field and the SMB heade...
Important: Red Hat Security Advisory: kernel security, bug fix, and enhancement update
An update for kernel is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...
PT-2025-38041
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.3.0-rc2-xfstests-00056-g131086faa369 139 Description A flaw exists in the Linux kernel related to the ext2/dax subsystem. Specifically, the ext2 setsize function does not handle page-aligned lengths correctly,...
[SECURITY] [DLA 3356-1] wireless-regdb security update
Debian LTS Advisory DLA-3356-1 [email protected] https://www.debian.org/lts/security/ Tobias Frost March 09, 2023 https://wiki.debian.org/LTS Package : wireless-regdb Version : 2022.04.08-2deb10u1 CVE ID : n/a Debian Bug : This update the wireless regulatory database to version...