450 matches found
EUVD-2022-54785
In the Linux kernel, the following vulnerability has been resolved: module: fix eshstrndx.shsize=0 OOB access It is trivial to craft a module to trigger OOB access in this line: if info-secstringsstrhdr-shsize - 1 != '\0' BUG: unable to handle page fault for address: ffffc90000aa0fff PGD 10000006...
EUVD-2022-54846
In the Linux kernel, the following vulnerability has been resolved: watchdog: rzg2lwdt: Fix 'BUG: Invalid wait context' This patch fixes the issue 'BUG: Invalid wait context' during restart callback by using clkprepareenable instead of pmruntimegetsync for turning on the clocks during restart. Th...
EUVD-2022-54892
In the Linux kernel, the following vulnerability has been resolved: drm/etnaviv: check for reaped mapping in etnaviviommuunmapgem When the mapping is already reaped the unmap must be a no-op, as we would otherwise try to remove the mapping twice, corrupting the involved data structures...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987623)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987623 advisory. In the Linux kernel, the following vulnerability has been resolved: nfsd: Fix nsfd startup race again Commit bd5ae9288d64 nfsd: register pernet ops last, unregister...
EUVD-2022-55063
In the Linux kernel, the following vulnerability has been resolved: video: fbdev: sm712fb: Fix crash in smtcfbwrite When the sm712fb driver writes three bytes to the framebuffer, the driver will crash: BUG: unable to handle page fault for address: ffffc90001ffffff RIP: 0010:smtcfbwrite+0x454/0x5b...
UBUNTU-CVE-2025-39960
In the Linux kernel, the following vulnerability has been resolved: gpiolib: acpi: initialize acpigpioinfo struct Since commit 7c010d463372 "gpiolib: acpi: Make sure we fill struct acpigpioinfo", uninitialized acpigpioinfo struct are passed to acpifindgpio and later in the call stack info-quirks ...
CVE-2025-39958 iommu/s390: Make attach succeed when the device was surprise removed
In the Linux kernel, the following vulnerability has been resolved: iommu/s390: Make attach succeed when the device was surprise removed When a PCI device is removed with surprise hotplug, there may still be attempts to attach the device to the default domain as part of tear down via...
CVE-2023-53671
The CVE-2023-53671 issue affects the Linux kernel and is tied to SRCU behavior: when using SRCU_SIZE_SMALL, code assumed CPU 0 is always online. If a different CPU is the boot CPU (e.g., kdump with maxcpus=1), the system can hang, as observed on PowerPC where long task hangs were reported. The ro...
CVE-2022-50510
CVE-2022-50510 affects the Linux kernel’s perf/smmuv3 component. The issue is a hotplug callback leak in arm_smmu_pmu_init(): when platform_driver_register() fails, the callback added by cpuhp_setup_state_multi() is not removed, potentially leaking a hotplug callback. The fix removes the callback...
Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-384825)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-384825 advisory. In the Linux kernel, the following vulnerability has been resolved: cpufreq: brcmstb-avs-cpufreq: add check for cpufreqcpuget's return value cpufreqcpuget may return...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987037)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987037 advisory. In the Linux kernel, the following vulnerability has been resolved: memory: fslifc: fix leak of IO mapping on probe failure On probe error the driver should unmap th...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-407686)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-407686 advisory. In the Linux kernel, the following vulnerability has been resolved: ppp: fix pppasyncencode illegal access syzbot reported an issue in pppasyncencode 1 In this case,...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986808)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986808 advisory. In the Linux kernel, the following vulnerability has been resolved: ath11k: fix kernel panic during unload/load ath11k modules Call netifnapidel from...
CVE-2022-50472
In the Linux kernel, the following vulnerability has been resolved: IB/mad: Don't call to function that might sleep while in atomic context Tracepoints are not allowed to sleep, as such the following splat is generated due to call to ibquerypkey in atomic context. WARNING: CPU: 0 PID: 1888000 at...
CVE-2023-53612 hwmon: (coretemp) Simplify platform device handling
In the Linux kernel, the following vulnerability has been resolved: hwmon: coretemp Simplify platform device handling Coretemp's platform driver is unconventional. All the real work is done globally by the initcall and CPU hotplug notifiers, while the "driver" effectively just wraps an allocation...
CVE-2023-53607
CVE-2023-53607 involves the Linux kernel ALSA ymfpci driver. The bug is caused by snd_ymfpci_probe using snd_BUG_ON() with snd_dma_buffer.bytes that were not accounting for the aligned size, leading to a faulty check and a kernel warning in snd_ymfpci_create. The issue manifests as a local, low-p...
CVE-2025-39945
In the Linux kernel, the following vulnerability has been resolved: cnic: Fix use-after-free bugs in cnicdeletetask The original code uses canceldelayedwork in cniccmstopbnx2xhw, which does not guarantee that the delayed work item 'deletetask' has fully completed if it was already running...
EUVD-2023-59736
Malicious code in bioql PyPI...
EUVD-2023-59758
Malicious code in bioql PyPI...
EUVD-2022-55190
Malicious code in bioql PyPI...