MAL-2025-5811 Malicious code in dot-net-interactive-kernels (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1fd9b96d8e362f39434da180321dd4529c19fd43df80c54c561a2db56794270e Any computer that has this package installed or running should be considered...

Malicious code in dot-net-interactive-kernels (npm)

The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1fd9b96d8e362f39434da180321dd4529c19fd43df80c54c561a2db56794270e Any computer that has this package installed or running should be considered...

AZL-64647 CVE-2025-38174 affecting package kernel for versions less than 6.6.96.1-1

In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Do not double dequeue a configuration request Some of our devices crash in tbcfgrequestdequeue: general protection fault, probably for non-canonical address 0xdead000000000122 CPU: 6 PID: 91007 Comm: kworker/6:2...

Vulnerabilities of components such as drivers, NVMe, and host kernels of the Linux operating system, which allow attackers to cause service failures

The vulnerability of components such as drivers, NVMe, and host kernels in the Linux operating system is related to errors during thread blocking. Exploiting this vulnerability can allow an attacker to cause a service failure...

Design High-Confidence Computers Using Trusted Instructional Set Architecture and Emulators

High-confidence computing relies on trusted instructional set architecture, sealed kernels, and secure operating systems. Cloud computing depends on trusted systems for virtualization tasks. Branch predictions and pipelines are essential in improving performance of a CPU/GPU. But Spectre and...

CVE-2022-49935

In the Linux kernel, the following vulnerability has been resolved: dma-buf/dma-resv: check if the new fence is really later Previously when we added a fence to a dmaresv object we always assumed the the newer than all the existing fences. With Jason's work to add an UAPI to explicit export/impor...

DEBIAN-CVE-2022-49935

In the Linux kernel, the following vulnerability has been resolved: dma-buf/dma-resv: check if the new fence is really later Previously when we added a fence to a dmaresv object we always assumed the the newer than all the existing fences. With Jason's work to add an UAPI to explicit export/impor...

CVE-2022-49935

CVE-2022-49935 affects the Linux kernel’s dma-buf/dma-resv code. The vulnerability arises from assuming a newly added fence is newer than all existing fences; with the explicit UAPI export/import, this assumption was removed, creating a path where userspace could force the kernel into a use-after...

SUSE-SU-2025:01988-1 Security update for golang-github-prometheus-node_exporter

This update for golang-github-prometheus-nodeexporter fixes the following issues: golang-github-prometheus-nodeexporter was updated to version 1.9.1: - Security issues fixed: CVE-2025-22870: Bumped golang.org/x/net to version 0.37.0 bsc1238686 - Other bugs fixed: pressure: Fixed missing IRQ on...

Astra Linux - уязвимость в linux-6.12

In the Linux kernel, the following vulnerability has been resolved: scsi: smartpqi: Fix smpprocessorid call trace for preemptible kernels Correct kernel call trace when calling smpprocessorid when called in preemptible kernels by using rawsmpprocessorid. smpprocessorid checks to see if preemption...

OESA-2025-1629 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: ARM: 9410/1: vfp: Use asm volatile in fmrx/fmxr macros Floating point instructions in userspace can crash some arm kernels built with clang/LLD 17.0.6: BUG:...

The vulnerability of the dev_replace_rwsem() function in the BTRFS file system of Linux kernels allows a attacker to cause a service failure.

The vulnerability of the devreplacerwsem function in the BTRFS file system of Linux operating systems is related to improper locking of resources. Exploiting this vulnerability can allow an attacker to cause service failures...

CVE-2023-28149

An issue was discovered in the IhisiServiceSmm module in Insyde InsydeH2O with kernel 5.2 before 05.28.42, 5.3 before 05.37.42, 5.4 before 05.45.39, 5.5 before 05.53.39, and 5.6 before 05.60.39 that could allow an attacker to modify UEFI variables...

CVE-2022-28658

Apport argument parsing mishandles filename splitting on older kernels resulting in argument spoofing...

AZL-62654 CVE-2025-37931 affecting package kernel for versions less than 6.6.112.1-1

In the Linux kernel, the following vulnerability has been resolved: btrfs: adjust subpage bit start based on sectorsize When running machines with 64k page size and a 16k nodesize we started seeing tree log corruption in production. This turned out to be because we were not writing out dirty bloc...

kernel: selinux: ignore unknown extended permissions

In the Linux kernel, the following vulnerability has been resolved: selinux: ignore unknown extended permissions When evaluating extended permissions, ignore unknown permissions instead of calling BUG. This commit ensures that future permissions can be added without interfering with older kernels...

PT-2025-29008

Name of the Vulnerable Software and Affected Versions: Linux Kernel affected versions not specified Description: The Linux kernel contains an issue within the smartpqi module related to the smp processor id function. Calling smp processor id in preemptible kernels can lead to an error message and...

The vulnerability of components related to DRM, AMD, and display kernels in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of components related to DRM, AMD, and display in the Linux operating system is associated with incorrect validation of input data in the function dcvalidateseamlessboottiming. Exploiting this vulnerability can allow attackers to cause service failures...

The vulnerability of components related to DRM, AMD, and display kernels in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of components such as DRM, AMD, and display kernels in the Linux operating system is related to improper error handling. Exploiting this vulnerability can allow an attacker to cause service failures...

CLSA-2025-1743012551 Update of shim

Fix installation on systems having Almalinux signed kernels...