MiracleLinux 9 : kernel-5.14.0-427.18.1.el9_4 (AXSA:2024-8445:16)

"The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8445:16 advisory. kernel: netfilter: nftables: mark set as dead when unbinding anonymous set with timeout CVE-2024-26643 kernel: netfilter: nftables: disallow...

CVE-2023-54249

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: ep: Only send -ENOTCONN status if client driver is available For the STOP and RESET commands, only send the channel disconnect status -ENOTCONN if client driver is available. Otherwise, it will result in null pointer...

Linux Distros Unpatched Vulnerability : CVE-2019-11811

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the Linux kernel before 5.0.4. There is a use-after-free upon attempted read access to /proc/ioports after the ipmisi module is...

Linux Distros Unpatched Vulnerability : CVE-2022-48762

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: arm64: extable: fix loadunalignedzeropad reg indices In exhandlerloadunalignedzeropad we...

Linux Distros Unpatched Vulnerability : CVE-2024-27409

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: dmaengine: dw-edma: HDMA: Add sync read before starting the DMA transfer in remote setup The...

RHEL 8 : kernel-rt (RHSA-2025:12753)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:12753 advisory. The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism...

RHEL 8 : kernel (RHSA-2025:12752)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:12752 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: HID: intel-ish-hid: Fix...

SUSE-SU-2025:02514-1 Security update for the Linux Kernel (Live Patch 10 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506002347 fixes several issues. The following security issue was fixed: - CVE-2025-22115: btrfs: fix block group refcount race in btrfscreatependingblockgroups bsc1241579...

SUSE-SU-2025:02459-1 Security update for the Linux Kernel (Live Patch 17 for SLE 15 SP5)

This update for the Linux Kernel 5.14.21-1505005573 fixes several issues. The following security issues were fixed: - CVE-2024-53146: NFSD: Prevent a potential integer overflow bsc1234854. - CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability bsc1235005. - CVE-2024-5317...

RHEL 8 : kernel-rt (RHSA-2025:11299)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:11299 advisory. The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism...

Moderate: kernel-rt security update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: cifs: fix double free race when mount fails in cifsgetroot CVE-2022-48919 kernel: security/keys: fix slab-out-of-bounds in...

Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.15-2025-073 (ALASKERNEL-5.15-2025-073)

The version of kernel installed on the remote host is prior to 5.15.184-125.190. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.15-2025-073 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: target: Fix WRITESAME No Data...

CVE-2022-49853

The CVE-2022-49853 entry documents a Linux kernel macvlan memory-leak in macvlan_common_newlink when macvlan mode is set to source. If register_netdevice() errors during macvlan_changelink_sources(), the resources created by macvlan_changelink_sources() are not cleaned up, leading to a memory lea...

CVE-2022-49801 tracing: Fix memory leak in tracing_read_pipe()

In the Linux kernel, the following vulnerability has been resolved: tracing: Fix memory leak in tracingreadpipe kmemleak reports this issue: unreferenced object 0xffff888105a18900 size 128: comm "testprogs", pid 18933, jiffies 4336275356 age 22801.766s hex dump first 32 bytes: 25 73 00 90 81 88 f...

CVE-2025-23156 media: venus: hfi_parser: refactor hfi packet parsing logic

In the Linux kernel, the following vulnerability has been resolved: media: venus: hfiparser: refactor hfi packet parsing logic wordscount denotes the number of words in total payload, while data points to payload of various property within it. When wordscount reaches last word, data can access...

CVE-2025-21935

In the Linux kernel, the following vulnerability has been resolved: rapidio: add check for rioaddnet in rioscanallocnet The return value of rioaddnet should be checked. If it fails, putdevice should be called to free the memory and give up the reference initialized in rioaddnet...

Azure Linux 3.0 Security Update: kernel (CVE-2024-53145)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-53145 advisory. - In the Linux kernel, the following vulnerability has been resolved: um: Fix potential integer overflow durin...

Linux Distros Unpatched Vulnerability : CVE-2025-21660

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix unexpectedly changed path in ksmbdvfskernpathlocked When ksmbdvfskernpathlocked m...

Linux Distros Unpatched Vulnerability : CVE-2024-57881

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: mm/pagealloc: don't call pfntopage on possibly non-existent PFN in splitlargebuddy In...

Linux Distros Unpatched Vulnerability : CVE-2024-53130

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - nilfs2: fix null-ptr-deref in blockdirtybuffer tracepoint When using the block:blockdirtybuffer tracepoint, markbufferdirty may cause a NULL pointer dereference...