The vulnerability of the `trace_action_create()` function in the kernel/trace/trace_events_hist.c module, which supports Linux operating system kernel tracing, allows a hacker to cause a service failure.

The vulnerability of the traceactioncreate function in the kernel/trace/traceeventshist.c module, which supports kernel tracing in Linux operating systems, is related to improper memory release before deleting the last reference a “memory leak”. Exploiting this vulnerability could allow an attack...

Vulnerability of the functions sof_ipc4_widget_setup_comp_dai() and sof_ipc4_prepare_copier_module() (sound/soc/sof/ipc4-topology.c) in the Linux operating system, allowing a hacker to cause a service failure

The vulnerabilities of the functions sofipc4widgetsetupcompdai and sofipc4preparecopiermodule sound/soc/sof/ipc4-topology.c in the Linux kernel are related to the assignment of zero pointers. Exploiting these vulnerabilities could allow an attacker to cause a service failure...

The vulnerability described in the structure of wwan_rtnl_link_ops{} within the drivers/net/wwan/wwan_core.c file of the Linux kernel allows a attacker to compromise the confidentiality and accessibility of protected information.

The vulnerability described in the structure of wwanrtnllinkops within the drivers/net/wwan/wwancore.c file of the Linux kernel relates to reading beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to compromise the confidentiality and accessibility of protected...

DEBIAN-CVE-2025-21875

In the Linux kernel, the following vulnerability has been resolved: mptcp: always handle address removal under msk socket lock Syzkaller reported a lockdep splat in the PM control path: WARNING: CPU: 0 PID: 6693 at ./include/net/sock.h:1711 sockownedbyme include/net/sock.h:1711 inline WARNING: CP...

The vulnerability of the raspberrypi_discover_clocks() function in the clk component of the Linux kernel allows a hacker to trigger a service failure.

The vulnerability of the raspberrypidiscoverclocks function in the clk component of the Linux operating system’s kernel is related to read misses beyond the boundary. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the zswap_shrinker_count() function in the mm/zswap.c module of the Linux kernel’s memory management subsystem allows a hacker to trigger a service failure.

The vulnerability of the zswapshrinkercount function in the mm/zswap.c module of the Linux kernel’s memory management subsystem is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a system failure...

The vulnerability of the pmu_sbi_set_scounteren() function in the drivers/perf/riscv_pmu_sbi.c module of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the pmusbisetscounteren function in the drivers/perf/riscvpmusbi.c module of the Linux operating system is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a system failure...

SUSE CVE-2023-52927

In the Linux kernel, the following vulnerability has been resolved: netfilter: allow exp not to be removed in nfctfindexpectation Currently nfconntrackin calling nfctfindexpectation will remove the exp from the hash table. However, in some scenario, we expect the exp not to be removed when the...

SUSE CVE-2024-58060

In the Linux kernel, the following vulnerability has been resolved: bpf: Reject structops registration that uses module ptr and the module btfid is missing There is a UAF report in the bpfstructops when CONFIGMODULES=n. In particular, the report is on tcpcongestionops that has a "struct module...

SUSE CVE-2025-21716

In the Linux kernel, the following vulnerability has been resolved: vxlan: Fix uninit-value in vxlanvnifilterdump KMSAN reported an uninit-value access in vxlanvnifilterdump 1. If the length of the netlink message payload is less than sizeofstruct tunnelmsg, vxlanvnifilterdump accesses bytes beyo...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the clocksourceverifychoosecpus function calling getrandomu32 in an atomic context, which could result in a...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: In the net subsystem, issues with drop bad gso csumstart and offset in virtionethdr have been addressed. Additionally, the checks for csumstart and csumoffset in virtionethdrtoskb for GSO packets have been improved. The function...

The vulnerability of the amdgpu_cs_pass1() function in the Linux kernel’s drivers/gpu/drm/amd/amdgpu/amdgpu_cs.c file allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the amdgpucspass1 function in the Linux kernel’s drivers/gpu/drm/amd/amdgpu/amdgpucs.c file is related to the repeated release of previously released memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility ...

AZL-54788 CVE-2024-56662 affecting package kernel for versions less than 5.15.176.3-1

In the Linux kernel, the following vulnerability has been resolved: acpi: nfit: vmalloc-out-of-bounds Read in acpinfitctl Fix an issue detected by syzbot with KASAN: BUG: KASAN: vmalloc-out-of-bounds in cmdtofunc drivers/acpi/nfit/ core.c:416 inline BUG: KASAN: vmalloc-out-of-bounds in...

AZL-54090 CVE-2024-53141 affecting package kernel for versions less than 5.15.176.3-1

In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: add missing range check in bitmapipuadt When tbIPSETATTRIPTO is not present but tbIPSETATTRCIDR exists, the values of ip and ipto are slightly swapped. Therefore, the range check for ip should be done later, but...

The vulnerability of the ravb_rx_gbeth() function in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the ravbrxgbeth function in the drivers/net/ethernet/renesas/ravbmain.c file of the Linux kernel is related to the repeated use of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of...

The vulnerability of the br_multicast_del_port() function in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the br MulticastDelPort function in the net/bridge/br Multicast.c module of the Linux operating system is related to the reutilization of previously freed memory due to concurrent access to resources race condition. Exploiting this vulnerability could allow an attacker to...

DEBIAN-CVE-2024-50227

In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Fix KASAN reported stack out-of-bounds read in tbretimerscan KASAN reported following issue: BUG: KASAN: stack-out-of-bounds in tbretimerscan+0xffe/0x1550 thunderbolt Read of size 4 at addr ffff88810111fc1c by task...

UBUNTU-CVE-2024-50227

In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Fix KASAN reported stack out-of-bounds read in tbretimerscan KASAN reported following issue: BUG: KASAN: stack-out-of-bounds in tbretimerscan+0xffe/0x1550 thunderbolt Read of size 4 at addr ffff88810111fc1c by task...

The vulnerability of the nf_reject_ip6_tcphdr_put() function in the netfilter component of the Linux operating system allows a attacker to compromise the confidentiality and accessibility of the protected information.

The vulnerability of the nfrejectip6tcphdrput function in the net/ipv6/netfilter/nfrejectipv6.c file of the netfilter component in the Linux kernel is related to the use of uninitialized memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality and...