191 matches found
Exploit for CVE-2026-31431
CVE Checker for Copy Fail CVE-2026-31431 Authors: Chris Fol...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004357)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004357 advisory. In the Linux kernel before 5.16.3, drivers/usb/dwc3/dwc3-qcom.c misinterprets the dwc3qcomcreateursusbplatdev return value expects it to be NULL in the error case,...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004134)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004134 advisory. A memory leak in the nfpflowerspawnvnicreprs function in drivers/net/ethernet/netronome/nfp/flower/main.c in the Linux kernel before 5.3.4 allows attackers to cause ...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004190)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004190 advisory. An issue was discovered in the Linux kernel before 5.4.7. The prbcalcretireblktmo function in net/packet/afpacket.c can result in a denial of service CPU consumption...
PT-2025-43119
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.5.0-rc1-00276-g20edcec23f92 Description A flaw exists in the Linux kernel related to the ring buffer implementation. Specifically, the cpu buffer can be swapped during a resize process, leading to an incorrect...
SUSE SLES15 Security Update : kernel (Live Patch 2 for SLE 15 SP7) (SUSE-SU-2025:03413-1)
The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:03413-1 advisory. This update for the Linux Kernel 6.4.0-150700536 fixes several issues. The following security issues were fixed: - CVE-2025-38498: dochangetyp...
AZL-74763 CVE-2025-40300 affecting package kernel for versions less than 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: x86/vmscape: Add conditional IBPB mitigation VMSCAPE is a vulnerability that exploits insufficient branch predictor isolation between a guest and a userspace hypervisor like QEMU. Existing mitigations already protect kernel/KVM...
AZL-66350 CVE-2025-38548 affecting package kernel for versions less than 6.6.104.2-1
In the Linux kernel, the following vulnerability has been resolved: hwmon: corsair-cpro Validate the size of the received input buffer Add bufferrecvsize to store the size of the received bytes. Validate bufferrecvsize in sendusbcmd...
PT-2025-18899 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to the fixed version Description: The issue is related to the Linux kernel's stack unwinding function, walk stackframe, which can lead to a stack-out-of-bounds error when CONFIG FRAME POINTER is unset and KASAN is...
PT-2025-18541
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.1.0-rc3+ Description A vulnerability in the Linux kernel has been resolved, specifically in the libata-transport module. The issue arises from the lack of error handling in the ata tlink add function, where the...
Amazon Linux AMI : kernel (ALAS-2025-1975)
The version of kernel installed on the remote host is prior to 4.14.330-176.540. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2025-1975 advisory. A use-after-free flaw was found in vcsread in drivers/tty/vt/vcscreen.c in vcscreen in the Linux Kernel. In this fl...
PT-2025-3021 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.12.0-rc6+ Description: A circular locking dependency warning has been detected in the Linux kernel's Bluetooth module. This issue occurs when the iso sock recvmsg function is called, which can lead to a deadlo...
PT-2025-30759
Name of the Vulnerable Software and Affected Versions Linux Kernel versions 6.16.0-20250531.rc0.git0.69b3a602feac.63.fc42.s390x+debug and earlier. Description A flaw exists in the Linux kernel related to handling in atomic within the do secure storage access function. User space accesses to...
SUSE SLES15 Security Update : kernel (Live Patch 49 for SLE 15 SP2) (SUSE-SU-2024:4231-1)
The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:4231-1 advisory. This update for the Linux Kernel 5.3.18-15020024194 fixes several issues. The following security issues were fixed: - CVE-2024-36904: tcp: Use...
PT-2025-18904 · Linux +3 · Linux Kernel +3
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to the version that includes the fix for the race condition between unloading and reloading kernel modules. Description: A race condition in the Linux kernel has been resolved. The issue was caused by a bug...
PT-2023-35407 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.1.12 Description: The issue concerns a potential NULL dereference in the pinctrl single component. The actual impact and attack plausibility have not yet been proven. It was introduced in version v4.11 and...
CVE-2023-26607
In the Linux kernel 6.0.8, there is an out-of-bounds read in ntfsattrfind in fs/ntfs/attrib.c...
SUSE CVE-2007-5093
The disconnect method in the Philips USB Webcam pwc driver in Linux kernel 2.6.x before 2.6.22.6 "relies on user space to close the device," which allows user-assisted local attackers to cause a denial of service USB subsystem hang and CPU consumption in khubd by not closing the device after the...
GSD-2023-1002106 xhci: Fix null pointer dereference when host dies
xhci: Fix null pointer dereference when host dies This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.90 by commit...
GSD-2023-1001917 bnxt: Do not read past the end of test names
bnxt: Do not read past the end of test names This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.9 by commit...