CVE-2021-42554

An issue was discovered in Insyde InsydeH2O with Kernel 5.0 before 05.08.42, Kernel 5.1 before 05.16.42, Kernel 5.2 before 05.26.42, Kernel 5.3 before 05.35.42, Kernel 5.4 before 05.42.51, and Kernel 5.5 before 05.50.51. An SMM memory corruption vulnerability in FvbServicesRuntimeDxe allows a...

CVE-2021-42113

An issue was discovered in StorageSecurityCommandDxe in Insyde InsydeH2O with Kernel 5.1 before 05.14.28, Kernel 5.2 before 05.24.28, and Kernel 5.3 before 05.32.25. An SMM callout vulnerability allows an attacker to hijack execution flow of code running in System Management Mode. Exploiting this...

CVE-2019-0365

SAP Kernel RFC, KRNL32NUC, KRNL32UC and KRNL64NUC before versions 7.21, 7.21EXT, 7.22, 7.22EXT, KRNL64UC, before versions 7.21, 7.21EXT, 7.22, 7.22EXT, 7.49, 7.73 and KERNEL before versions 7.21, 7.49, 7.53, 7.73, 7.76 SAP GUI for Windows BC-FES-GUI before versions 7.5, 7.6, and SAP GUI for Java...

CVE-2025-21680 affecting package kernel for versions less than 5.15.180.1-1

CVE-2025-21680 affecting package kernel for versions less than 5.15.180.1-1. An upgraded version of the package is available that resolves this issue...

CVE-2025-21762 affecting package kernel for versions less than 5.15.180.1-1

CVE-2025-21762 affecting package kernel for versions less than 5.15.180.1-1. An upgraded version of the package is available that resolves this issue...

PT-2025-18514 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.1.0-rc1 Description: A potential null pointer dereference issue has been identified in the Linux kernel, specifically in the kprobe event gen test exit function. This issue occurs when the trace get event file...

CVE-2024-49200

An issue was discovered in AcpiS3SaveDxe and ChipsetSvcDxe in Insyde InsydeH2O with kernel 5.2 though 5.7. A potential DXE memory corruption vulnerability has been identified. The root cause is use of a pointer originating from the value of an NVRAM variable as the target of a write operation. Th...

CVE-2024-49200

The CVE-2024-49200 entry describes a DXE memory corruption in InsydeH2O (AcpiS3SaveDxe and ChipsetSvcDxe) affecting kernel 5.2–5.7. Root cause: using a pointer derived from an NVRAM variable as the target of a write, enabling arbitrary writes and potentially arbitrary code execution. Affected pla...

CVE-2024-49200

An issue was discovered in AcpiS3SaveDxe and ChipsetSvcDxe in Insyde InsydeH2O with kernel 5.2 though 5.7. A potential DXE memory corruption vulnerability has been identified. The root cause is use of a pointer originating from the value of an NVRAM variable as the target of a write operation. Th...

AZL-60363 CVE-2025-21904 affecting package kernel for versions less than 5.15.180.1-1

In the Linux kernel, the following vulnerability has been resolved: caifvirtio: fix wrong pointer check in cfvprobe delvqs frees virtqueues, therefore cfv-vqtx pointer should be checked for NULL before calling it, not cfv-vdev. Also the current implementation is redundant because the pointer...

CVE-2024-56601 affecting package kernel for versions less than 6.6.76.1-1

CVE-2024-56601 affecting package kernel for versions less than 6.6.76.1-1. An upgraded version of the package is available that resolves this issue...

CVE-2025-21670 affecting package kernel for versions less than 6.6.76.1-1

CVE-2025-21670 affecting package kernel for versions less than 6.6.76.1-1. An upgraded version of the package is available that resolves this issue...

PT-2025-11012 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.13.0-rc6 Description: A crash can occur in the Linux kernel when a namespace is disabled due to a null pointer dereference. This issue arises because the namespace percpu counter, which protects pending I/O, i...

Linux Distros Unpatched Vulnerability : CVE-2022-0516

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in kvms390guestsidaop in the arch/s390/kvm/kvm-s390.c function in KVM for s390 in the Linux kernel. This flaw allows a local attacker...

Linux Distros Unpatched Vulnerability : CVE-2017-12762

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In /drivers/isdn/i4l/isdnnet.c: A user-controlled buffer is copied into a local buffer of constant size using strcpy without a length check which can cause a...

AZL-57935 CVE-2025-21787 affecting package kernel for versions less than 6.6.79.1-1

In the Linux kernel, the following vulnerability has been resolved: team: better TEAMOPTIONTYPESTRING validation syzbot reported following splat 1 Make sure user-provided data contains one nul byte. 1 BUG: KMSAN: uninit-value in stringnocheck lib/vsprintf.c:633 inline BUG: KMSAN: uninit-value in...

UBUNTU-CVE-2022-49711

In the Linux kernel, the following vulnerability has been resolved: bus: fsl-mc-bus: fix KASAN use-after-free in fslmcbusremove In fslmcbusremove, mc-rootmcbusdev-mcio is passed to fsldestroymcio. However, mc-rootmcbusdev is already freed in fslmcdeviceremove. Then reference to mc-rootmcbusdev-mc...

RHSA-2025:1662 Red Hat Security Advisory: kpatch-patch-4_18_0-372_118_1, kpatch-patch-4_18_0-372_131_1, and kpatch-patch-4_18_0-372_91_1 security update

Bulletin has no description...

AZL-56550 CVE-2025-21684 affecting package kernel for versions less than 6.6.76.1-1

In the Linux kernel, the following vulnerability has been resolved: gpio: xilinx: Convert gpiolock to raw spinlock irqchip functions may be called in raw spinlock context. Therefore, we must also use a raw spinlock for our own internal locking. This fixes the following lockdep splat: 5.349336...

AZL-56393 CVE-2025-21669 affecting package kernel for versions less than 6.6.76.1-1

In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: discard packets if the transport changes If the socket has been de-assigned or assigned to another transport, we must discard any packets received because they are not expected and would cause issues when we access...