Ubuntu 22.04 LTS / 24.04 LTS : Linux kernel vulnerabilities (USN-8278-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-8278-1 advisory. It was discovered that the Linux kernel algifaead module did not properly handle in-place cryptographic operations. This flaw is known as Cop...

Important: nvidia-persistenced

Issue Overview: NVIDIA Display Driver for Linux contains a vulnerability in the NVIDIA kernel module where an attacker could cause an integer overflow or wraparound. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of servic...

EUVD-2021-2622

Malware in sbrugna...

EUVD-2021-2621

Malware in sbrugna...

EUVD-2005-1372

Malware in sbrugna...

EUVD-2017-1522

Malware in sbrugna...

EUVD-2020-17222

Malware in sbrugna...

EUVD-2020-17224

Malware in sbrugna...

EUVD-2011-0654

Malware in sbrugna...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414452)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414452 advisory. Linux PV device frontends vulnerable to attacks by backends This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities...

leds: an30259a: Use devm_mutex_init() for mutex initialization

...

Vulnerabilities of components such as drivers, NVMe, and host kernels of the Linux operating system, which allow attackers to cause service failures

The vulnerability of components such as drivers, NVMe, and host kernels in the Linux operating system is related to errors during thread blocking. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the drivers/firmware/EFI/libstub components of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the drivers/firmware/EFI/libstub components of the Linux operating system is related to the allocation of unlimited memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

Vulnerability of the amdgpu_discovery_reg_base_init() function in the drivers/gpu/drm/amd/amdgpu/amdgpu_discovery.c file – This driver provides support for AMD GPU cores in Linux operating systems’ Direct Rendering Infrastructure (DRI) components. This vulnerability allows attackers to cause system failures.

Vulnerability of the amdgpudiscoveryregbaseinit function in the drivers/gpu/drm/amd/amdgpu/amdgpudiscovery.c file – The drivers for AMD GPU cores in Linux operating systems are vulnerable due to unvalidated array indexing. Exploiting this vulnerability could allow an attacker to cause a system...

Vulnerability of the otx2_set_rxfh_context() function in the drivers/net/ethernet/marvell/octeontx2/nic/otx2_ethtool.c file – Marvell Ethernet network adapter support driver for the Linux operating system. This vulnerability allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.

Vulnerability of the otx2setrxfhcontext function in the drivers/net/ethernet/marvell/octeontx2/nic/otx2ethtool.c module – Marvell Ethernet network adapter drivers for Linux operating systems are vulnerable due to buffer overflow exploits. Exploitation of this vulnerability could allow attackers t...

Vulnerability of the iscsi_prep_bidi_ahs() function in the drivers/scsi/libiscsi.c module – This driver supports SCSI devices in Linux operating systems. It can be exploited by attackers to cause service interruptions.

Vulnerability of the iscsiprepbidiahs function in the drivers/scsi/libiscsi.c module – The Linux system’s SCSI device driver framework involves the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to cause a service failure...

CVE-2022-50022 drivers:md:fix a potential use-after-free bug

In the Linux kernel, the following vulnerability has been resolved: drivers:md:fix a potential use-after-free bug In line 2884, "raid5releasestripesh;" drops the reference to sh and may cause sh to be released. However, sh is subsequently used in lines 2886 "if sh-batchhead && sh != sh-batchhead"...

The vulnerability of the irqfd_shutdown() function in Linux kernel-based Xen driver support allows a attacker to trigger a service failure.

The vulnerability of the irqfdshutdown function in Xen kernel-based Linux operating system drivers is related to the reutilization of previously released memory. Exploiting this vulnerability could allow an attacker to trigger a service failure...

Vulnerability of the trans_stat_show() function in the drivers/devfreq/devfreq.c module – A driver for supporting dynamic voltage and frequency scaling in the Linux operating system. This vulnerability allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

Vulnerability of the transstatshow function in the drivers/devfreq/devfreq.c module – The drivers for dynamic voltage and frequency scaling in the Linux operating system are vulnerable to buffer overflow attacks without proper input data size checking classical buffer overflow attack. Exploiting...

The vulnerability of the irqfd_wakeup() function in Linux kernel-based Xen drivers allows a hacker to trigger a service failure.

The vulnerability of the irqfdwakeup function in Xen kernel-based Linux operating system drivers is related to insufficient resource locking. Exploiting this vulnerability can allow an attacker to trigger a service failure...