Astra Linux – Vulnerability in Linux 5.10, Linux

In the Linux kernel, the following vulnerabilities have been resolved: SCTP: Fixed a kernel-infoleak issue for SCTP sockets. The syzbot reported a kernel-infoleak issue of 4 bytes. After analysis, it turned out that r-idiagexpires was not initialized when inetsctpdiagfill called...

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

There is a known vulnerability in the l2capparseconfreq function of the Linux kernel’s net/bluetooth/l2capcore.c file, which can be exploited to remotely leak kernel pointers. We recommend upgrading to a later commit:...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-013291)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013291 advisory. In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix kernel-infoleak in nilfsioctlwrapcopy The ioctl helper function nilfsioctlwrapcopy,...

Linux Distros Unpatched Vulnerability : CVE-2026-22978

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wifi: avoid kernel-infoleak from struct iwpoint struct iwpoint has a 32bit hole on 64bit arches. struct iwpoint void user pointer; / Pointer to the data in user...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003933)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003933 advisory. A heap data infoleak in multiple locations including L2CAPPARSECONFRSP was found in the Linux kernel before 5.1-rc1. Tenable has extracted the preceding description...

CVE-2025-40278

In the Linux kernel, the following vulnerability has been resolved: net: sched: actife: initialize struct tcife to fix KMSAN kernel-infoleak Fix a KMSAN kernel-infoleak detected by the syzbot . net? KMSAN: kernel-infoleak in skbdatagramiter In tcfifedump, the variable 'opt' was partially...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989046)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989046 advisory. In the Linux kernel, the following vulnerability has been resolved: sctp: fix kernel-infoleak for SCTP sockets syzbot reported a kernel infoleak 1 of 4 bytes. After...

Siemens SIMATIC Devices Use of Uninitialized Resource (CVE-2024-26901)

In the Linux kernel, the following vulnerability has been resolved: dosysnametohandle: use kzalloc to fix kernel-infoleak. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986848)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986848 advisory. In the Linux kernel, the following vulnerability has been resolved: sctp: fix kernel-infoleak for SCTP sockets syzbot reported a kernel infoleak 1 of 4 bytes. After...

EUVD-2025-13227

Malicious code in bioql PyPI...

CVE-2023-53035

In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix kernel-infoleak in nilfsioctlwrapcopy The ioctl helper function nilfsioctlwrapcopy, which exchanges a metadata array to/from user space, may copy uninitialized buffer regions to user space memory for read-only ioctl...

CVE-2023-53035 nilfs2: fix kernel-infoleak in nilfs_ioctl_wrap_copy()

In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix kernel-infoleak in nilfsioctlwrapcopy The ioctl helper function nilfsioctlwrapcopy, which exchanges a metadata array to/from user space, may copy uninitialized buffer regions to user space memory for read-only ioctl...

Linux Distros Unpatched Vulnerability : CVE-2021-47597

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - inetdiag: fix kernel-infoleak for UDP sockets KMSAN reported a kernel-infoleak 1, that can exploited by unpriv users. After analysis it turned out UDP was not...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: xfrm: fixed another kernel-infoleak issue in algorithm dumping. During fuzz testing, the following issue was discovered: BUG: KMSAN: kernel-infoleak in copytoiter+0x598/0x2a30, copytoiter+0x598/0x2a30,...

Azure Linux 3.0 Security Update: kernel (CVE-2024-42076)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42076 advisory. - In the Linux kernel, the following vulnerability has been resolved: net: can: j1939: Initialize unused data ...

kernel security update

5.14.0-503.19.15.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...

RLSA-2024:10943 Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: selinux,smack: don't bypass permissions check in inodesetsecctx hook CVE-2024-46695 kernel: net: avoid potential underflow in qdiscpktleninit with UFO CVE-2024-49949 kernel: blk-rq-qos: f...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-50110)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-50110 advisory. - In the Linux kernel, the following vulnerability has been resolved: xfrm: fix one more kernel-infoleak in al...

CVE-2024-50110

A vulnerability was found in the xfrm module in the Linux Kernel. This issue was discovered during fuzz testing, where uninitialized memory containing potentially sensitive data was inadvertently copied to user-space. This issue occurs when dumping IPsec algorithm data structures, exposing random...

DEBIAN-CVE-2024-50110

In the Linux kernel, the following vulnerability has been resolved: xfrm: fix one more kernel-infoleak in algo dumping During fuzz testing, the following issue was discovered: BUG: KMSAN: kernel-infoleak in copytoiter+0x598/0x2a30 copytoiter+0x598/0x2a30 skbdatagramiter+0x168/0x1060...