Astra Linux - уязвимость в linux

In drivers/target/targetcorexcopy.c in the Linux kernel before 5.10.7, insufficient identifier checking in the LIO SCSI target code can be used by remote attackers to read or write files via directory traversal in an XCOPY request, aka CID-2896c93811e3. For example, an attack can occur over a...

Unity Linux 20.1050a Security Update: kernel (UTSA-2026-006988)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006988 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix buffer overflow in liotargetnaclinfoshow The function...

CLSA-2026-1771078945 kernel: Fix of 131 CVEs

net/ieee802154: don't warn zero-sized rawsendmsg CVE-2022-50706 - scsi: target: iscsi: Fix buffer overflow in liotargetnaclinfoshow CVE-2023-53676 - ALSA: usb-audio: Fix potential overflow of PCM transfer buffer CVE-2025-40269 - ipv6: reject malicious packets in ipv6gsosegment CVE-2025-38572 -...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-004956)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004956 advisory. In the Linux kernel, the following vulnerability has been resolved: RDMA/srpt: Fix a use-after-free Change the LIO port members inside struct srptport from regular...

SUSE-SU-2026:0247-1 Security update for the Linux Kernel (Live Patch 5 for SUSE Linux Enterprise 15 SP7)

This update for the SUSE Linux Enterprise kernel 6.4.0-150700.53.19 fixes various security issues The following security issues were fixed: - CVE-2023-53676: scsi: target: iscsi: Fix buffer overflow in liotargetnaclinfoshow bsc1251787. - CVE-2025-40204: sctp: Fix MAC comparison to be constant-tim...

SUSE-SU-2026:0246-1 Security update for the Linux Kernel (Live Patch 22 for SUSE Linux Enterprise 15 SP5)

This update for the SUSE Linux Enterprise kernel 5.14.21-150500.55.91 fixes various security issues The following security issues were fixed: - CVE-2022-50327: ACPI: processor: idle: Check acpifetchacpidev return value bsc1254451. - CVE-2022-50409: net: If sock is dead don't access sock's skwq in...

SUSE SLES15 Security Update : kernel (Live Patch 16 for SUSE Linux Enterprise 15 SP6) (SUSE-SU-2026:0204-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0204-1 advisory. This update for the SUSE Linux Enterprise kernel 6.4.0-150600.23.73 fixes various security issues The following security issues were fixed: -...

MiracleLinux 7 : kernel-3.10.0-1160.21.1.el7 (AXSA:2021-1625:06)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-1625:06 advisory. kernel: Local buffer overflow in ctnetlinkparsetuplefilter in net/netfilter/nfconntracknetlink.c CVE-2020-25211 kernel: SCSI target LIO write to any...

SUSE-SU-2026:20265-1 Security update for the Linux Kernel RT (Live Patch 4 for SUSE Linux Enterprise Micro 6.0)

This update for the SUSE Linux Enterprise kernel 6.4.0-22.1 fixes various security issues The following security issues were fixed: - CVE-2023-53676: scsi: target: iscsi: Fix buffer overflow in liotargetnaclinfoshow bsc1251787. - CVE-2025-38476: rpl: Fix use-after-free in rpldosrhinline bsc125120...

CVE-2023-53676

The CVE-2023-53676 vulnerability affects the Linux kernel’s iSCSI target (lio_target_nacl_info_show) where printf-style buffer handling in a loop could overflow a configfs buffer. Root cause: sprintf() used without bounds checking for each iSCSI connection, enabling memory corruption with many co...

EUVD-2020-20833

Malware in sbrugna...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414668)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414668 advisory. In drivers/target/targetcorexcopy.c in the Linux kernel before 5.10.7, insufficient identifier checking in the LIO SCSI target code can be used by remote attackers t...

MAL-2025-43297 Malicious code in @zalastax/nolb-lio- (npm)

The package @zalastax/nolb-lio- was found to contain malicious code...

Malicious code in @zalastax/nolb-lio- (npm)

The package @zalastax/nolb-lio- was found to contain malicious code...

MAL-2025-26340 Malicious code in mike-lio-project (npm)

The package mike-lio-project was found to contain malicious code...

Malicious code in mike-lio-project (npm)

The package mike-lio-project was found to contain malicious code...

MAL-2025-12231 Malicious code in @zalastax/nolb-lion-lio (npm)

The package @zalastax/nolb-lion-lio was found to contain malicious code...

Malicious code in @zalastax/nolb-lion-lio (npm)

The package @zalastax/nolb-lion-lio was found to contain malicious code...

DEBIAN-CVE-2022-50129

In the Linux kernel, the following vulnerability has been resolved: RDMA/srpt: Fix a use-after-free Change the LIO port members inside struct srptport from regular members into pointers. Allocate the LIO port data structures from inside srptmaketport and free these from inside srptmaketport. Keep...

UBUNTU-CVE-2022-50129

In the Linux kernel, the following vulnerability has been resolved: RDMA/srpt: Fix a use-after-free Change the LIO port members inside struct srptport from regular members into pointers. Allocate the LIO port data structures from inside srptmaketport and free these from inside srptmaketport. Keep...