29 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-45838
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bpf: fix end-of-list detection in cgroupstoragegetnextkey listnextentry never returns NULL -- when the current element is the last entry it wraps to the list he...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: ovl: fixed null pointer dereferencing in ovlgetaclrcu The processes involved are: P1 P2 pathopenat linkpathwalk maylookup inodepermissionrcu ovlpermission aclpermissioncheck checkacl getcachedaclrcu ovlgetinodeacl realinode =...
Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1
In the Linux kernel, the following vulnerability has been resolved: net: dsa: mv88e6xxx: Correct check for empty list Since the commit a3c53be55c95 “net: dsa: mv88e6xxx: Support multiple MDIO buses“”, the function mv88e6xxxdefaultmdiobus has checked that the return value of listfirstentry is...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: mlxsw: spectrumacltcam: Fixed incorrect use of the list API. Both the function that migrates all the chunks within a region and the function that migrates all the entries within a chunk call listfirstentry on the respective...
kernel: sctp: avoid NULL dereference when chunk data buffer is missing
In the Linux kernel, the following vulnerability has been resolved: sctp: avoid NULL dereference when chunk data buffer is missing chunk-skb pointer is dereferenced in the if-block where it's supposed to be NULL only. chunk-skb can only be NULL if chunk-headskb is not. Check for fraglist instead...
kernel: sctp: avoid NULL dereference when chunk data buffer is missing
In the Linux kernel, the following vulnerability has been resolved: sctp: avoid NULL dereference when chunk data buffer is missing chunk-skb pointer is dereferenced in the if-block where it's supposed to be NULL only. chunk-skb can only be NULL if chunk-headskb is not. Check for fraglist instead...
Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12
In the Linux kernel, the following vulnerability has been resolved: SCTP: Avoid NULL dereferencing when the chunk data buffer is missing. The chunk-skb pointer is dereferenced in the if-block, where it is supposed to be NULL only. chunk-skb can only be NULL if chunk-headskb is not NULL. Instead,...
kernel: sctp: avoid NULL dereference when chunk data buffer is missing
In the Linux kernel, the following vulnerability has been resolved: sctp: avoid NULL dereference when chunk data buffer is missing chunk-skb pointer is dereferenced in the if-block where it's supposed to be NULL only. chunk-skb can only be NULL if chunk-headskb is not. Check for fraglist instead...
kernel: sctp: avoid NULL dereference when chunk data buffer is missing
In the Linux kernel, the following vulnerability has been resolved: sctp: avoid NULL dereference when chunk data buffer is missing chunk-skb pointer is dereferenced in the if-block where it's supposed to be NULL only. chunk-skb can only be NULL if chunk-headskb is not. Check for fraglist instead...
CVE-2025-40240 sctp: avoid NULL dereference when chunk data buffer is missing
In the Linux kernel, the following vulnerability has been resolved: sctp: avoid NULL dereference when chunk data buffer is missing chunk-skb pointer is dereferenced in the if-block where it's supposed to be NULL only. chunk-skb can only be NULL if chunk-headskb is not. Check for fraglist instead...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-42224)
net: dsa: mv88e6xxx: wrong check on empty list. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504568; scriptversion"1.2";...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990624)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990624 advisory. In the Linux kernel, the following vulnerability has been resolved: net: dsa: mv88e6xxx: Correct check for empty list Since commit a3c53be55c95 net: dsa: mv88e6xxx:...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990272)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990272 advisory. In the Linux kernel, the following vulnerability has been resolved: net: dsa: mv88e6xxx: Correct check for empty list Since commit a3c53be55c95 net: dsa: mv88e6xxx:...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989967)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989967 advisory. In the Linux kernel, the following vulnerability has been resolved: net: dsa: mv88e6xxx: Correct check for empty list Since commit a3c53be55c95 net: dsa: mv88e6xxx:...
PT-2025-49067
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to the Socket Communication Transport Protocol SCTP. Specifically, a potential NULL dereference can occur when a chunk data buffer is missing. T...
EUVD-2018-8246
Malware in sbrugna...
EUVD-2025-19733
Malicious code in bioql PyPI...
EUVD-2024-36259
Malicious code in bioql PyPI...
openSUSE Security Advisory (SUSE-SU-2025:01814-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Azure Linux 3.0 Security Update: kernel (CVE-2024-42224)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42224 advisory. - In the Linux kernel, the following vulnerability has been resolved: net: dsa: mv88e6xxx: Correct check for...