Azure Linux 3.0 Security Update: kernel (CVE-2025-38338)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38338 advisory. - In the Linux kernel, the following vulnerability has been resolved: fs/nfs/read: fix double-unlock bug in...

Azure Linux 3.0 Security Update: kernel (CVE-2024-48875)

"The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-48875 advisory. - In the Linux kernel, the following vulnerability has been resolved: btrfs: don't take devreplace rwsem on...

Azure Linux 3.0 Security Update: kernel (CVE-2024-49855)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-49855 advisory. - In the Linux kernel, the following vulnerability has been resolved: nbd: fix race between timeout and normal...

Azure Linux 3.0 Security Update: kernel (CVE-2025-37997)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-37997 advisory. - In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: fix region locking in...

Azure Linux 3.0 Security Update: kernel (CVE-2024-42315)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42315 advisory. - In the Linux kernel, the following vulnerability has been resolved: exfat: fix potential deadlock on...

ROS-20260121-73-0003

A vulnerability in the iprtupdatepmtu function of the ipv4/route.c component of the Linux operating system kernel is related to improper resource locking. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

Pterodactyl improperly locks resources allowing raced queries to create more resources than alloted

Summary Pterodactyl implements rate limits that are applied to the total number of resources e.g. databases, port allocations, or backups that can exist for an individual server. These resource limits are applied on a per-server basis, and validated during the request cycle. However, it is possib...

GHSA-JW2V-CQ5X-Q68G Pterodactyl improperly locks resources allowing raced queries to create more resources than alloted

Summary Pterodactyl implements rate limits that are applied to the total number of resources e.g. databases, port allocations, or backups that can exist for an individual server. These resource limits are applied on a per-server basis, and validated during the request cycle. However, it is possib...

CLSA-2026-1768110920 kernel: Fix of 16 CVEs

crypto: lzo - Fix compression buffer overrun CVE-2025-38068 - wifi: brcmfmac: fix use-after-free when rescheduling brcmfbtcoexinfo work CVE-2025-39863 - NFSD: Protect against send buffer overflow in NFSv2 READ CVE-2022-43945 - tcp: Clear tcpsksk-fastopenrsk in tcpdisconnect. CVE-2025-40186 - can:...

MiracleLinux 9 : libvirt-8.5.0-7.el9 (AXSA:2023-4911:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-4911:01 advisory. libvirt: missing locking in nwfilterConnectNumOfNWFilters can lead to denial of service CVE-2022-0897 Tenable has extracted the preceding description block...

ROS-20260120-7319

Vulnerability in kernel-lt related to incorrect resource locking. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

ROS-20260120-7318

Vulnerability in kernel-lt related to incorrect resource locking. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

ROS-20260120-7310

A vulnerability in the opteesuppthrdreq function drivers/tee/optee/supp.c of the Linux operating system kernel is related to incorrect locking. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

ROS-20260120-7302

A vulnerability in the fmidi component of the Linux operating system kernel is related to insufficient locking. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

ROS-20260120-73-0002

A vulnerability in the smb2lock function of the fs/smb/server/smb2pdu.c module of the Linux kernel is related to incorrect resource locking. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

ROS-20260120-7337

A vulnerability in the skbget function of the Linux kernel is related to incorrect resource locking. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

ROS-20260120-7340

A vulnerability in the memoryhotplug component of the Linux kernel is related to incorrect resource locking. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

Improper Resource Locking

Overview pterodactyl/panel is a game management panel. Affected versions of this package are vulnerable to Improper Resource Locking due to the validation occuring early in the request cycle and not locking the target resource while it is processing. An attacker can exhaust system resources and...

CVE-2025-69198 Pterodactyl's improper resource locking allows raced queries to create more resources than alloted

Pterodactyl is a free, open-source game server management panel. Pterodactyl implements rate limits that are applied to the total number of resources e.g. databases, port allocations, or backups that can exist for an individual server. These resource limits are applied on a per-server basis, and...

CVE-2025-69198 Pterodactyl's improper resource locking allows raced queries to create more resources than alloted

Pterodactyl is a free, open-source game server management panel. Pterodactyl implements rate limits that are applied to the total number of resources e.g. databases, port allocations, or backups that can exist for an individual server. These resource limits are applied on a per-server basis, and...