32 matches found
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: ice: Ensure that the copied buffer is terminated with NUL characters. Currently, we allocate a kernel buffer of a certain size and copy a certain number of bytes from user space to that buffer. Later, we use sscanf on this buffer...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-010884)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010884 advisory. In the Linux kernel, the following vulnerability has been resolved: wifi: wil6210: debugfs: fix info leak in wilwritefilewmi The simplewritetobuffer function will...
SUSE-SU-2026:0090-1 Security update for the Linux Kernel (Live Patch 24 for SUSE Linux Enterprise 15 SP5)
This update for the SUSE Linux Enterprise kernel 5.14.21-150500.55.97 fixes various security issues The following security issues were fixed: - CVE-2023-53574: wifi: rtw88: delete timer and free skb queue when unloading bsc1251984. - CVE-2025-38257: s390/pkey: prevent overflow in size calculation...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992180)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992180 advisory. In the Linux kernel, the following vulnerability has been resolved: nfsd: Fix a memory leak in an error handling path If this memdupuser call fails, the memory...
AZL-70109 CVE-2025-40193 affecting package kernel for versions less than 6.6.117.1-1
In the Linux kernel, the following vulnerability has been resolved: xtensa: simdisk: add input size check in procwritesimdisk A malicious user could pass an arbitrarily bad value to memdupusernul, potentially causing kernel crash. This follows the same pattern as commit ee76746387f6 "netdevsim:...
CVE-2025-40193
In CVE-2025-40193, the Linux kernel’s xtensa simdisk component (proc_write_simdisk) lacks an input size check, allowing a malicious user to pass an invalid value to memdup_user_nul() and potentially crash the kernel. The issue is tied to changes referenced as a pattern to the nsim_dev_health_brea...
Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-393787)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-393787 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: qedf: Ensure the copied buf is NUL terminated Currently, we allocate a count-sized kernel...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-382572)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-382572 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: bfa: Ensure the copied buf is NUL terminated Currently, we allocate a nbytes-sized kernel...
EUVD-2022-55614
Malicious code in bioql PyPI...
CVE-2022-50348
In the Linux kernel, the following vulnerability has been resolved: nfsd: Fix a memory leak in an error handling path If this memdupuser call fails, the memory allocated in a previous call a few lines above should be freed. Otherwise it leaks...
UBUNTU-CVE-2022-50348
In the Linux kernel, the following vulnerability has been resolved: nfsd: Fix a memory leak in an error handling path If this memdupuser call fails, the memory allocated in a previous call a few lines above should be freed. Otherwise it leaks...
CVE-2022-50348 nfsd: Fix a memory leak in an error handling path
In the Linux kernel, the following vulnerability has been resolved: nfsd: Fix a memory leak in an error handling path If this memdupuser call fails, the memory allocated in a previous call a few lines above should be freed. Otherwise it leaks...
CVE-2022-50348 nfsd: Fix a memory leak in an error handling path
In the Linux kernel, the following vulnerability has been resolved: nfsd: Fix a memory leak in an error handling path If this memdupuser call fails, the memory allocated in a previous call a few lines above should be freed. Otherwise it leaks...
PT-2025-46750
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel where a malicious user could provide an invalid value to the memdup user nul function, potentially leading to a kernel crash. This issue is related to t...
Linux Distros Unpatched Vulnerability : CVE-2025-38257
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - s390/pkey: Prevent overflow in size calculation for memdupuser Number of apqn target list entries contained in 'nrapqns' variable is determined by userspace via...
s390/pkey: Prevent overflow in size calculation for memdup_user()
...
AZL-64871 CVE-2025-38257 affecting package kernel for versions less than 6.6.96.1-1
In the Linux kernel, the following vulnerability has been resolved: s390/pkey: Prevent overflow in size calculation for memdupuser Number of apqn target list entries contained in 'nrapqns' variable is determined by userspace via an ioctl call so the result of the product in calculation of size...
UBUNTU-CVE-2025-38257
In the Linux kernel, the following vulnerability has been resolved: s390/pkey: Prevent overflow in size calculation for memdupuser Number of apqn target list entries contained in 'nrapqns' variable is determined by userspace via an ioctl call so the result of the product in calculation of size...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a memdupuser computational overflow in the s390 pkey driver, which could lead to a memory allocation error...
PT-2025-28885
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a flaw within the s390/pkey subsystem. A calculation error in the memdup user function, related to the number of apqn target list entries determined by a...