Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: dma-debug: fixed a possible deadlock in radixlock. radixlock should not be held while holding dmahashentryidx.lock. Otherwise, a deadlock scenario may occur when the dma debug API is called while holding rqlock: CPU0 CPU1 CPU2...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: mm: swap: check for stable address space before operating on the VMA It is possible to encounter a zero entry while traversing the vmas in unusemm, called from the swapoff path. Accessing this zero entry can result in an OOPS...

SUSE CVE-2025-71114

In the Linux kernel, the following vulnerability has been resolved: viawdt: fix critical boot hang due to unnamed resource allocation The VIA watchdog driver uses allocateresource to reserve a MMIO region for the watchdog control register. However, the allocated resource was not given a name, whi...

EUVD-2002-2017

Malware in sbrugna...

EUVD-2024-19187

Malicious code in bioql PyPI...

CVE-2024-21478

transient DOS when setting up a fence callback to free a KGSL memory entry object during DMA...

CVE-2024-21478

transient DOS when setting up a fence callback to free a KGSL memory entry object during DMA...

CVE-2024-21478 NULL Pointer Dereference in Graphics

transient DOS when setting up a fence callback to free a KGSL memory entry object during DMA...

CVE-2024-21478 NULL Pointer Dereference in Graphics

transient DOS when setting up a fence callback to free a KGSL memory entry object during DMA...

SUSE CVE-2017-5978

The zzipmementrynew function in memdisk.c in zziplib 0.13.62 allows remote attackers to cause a denial of service out-of-bounds read and crash via a crafted ZIP file...

The vulnerability of the zzip_mem_entry_new() function in the ZZIPlib compression library, which allows a hacker to cause a service failure

The vulnerability of the zzipmementrynew function zzip/memdisk.c in the ZZIPlib compression library is related to the operation exceeding the permissible buffer data size. Exploiting this vulnerability could allow a malicious actor to cause service failures remotely...

Qualcomm Android - Kernel Use-After-Free via Incorrect set_page_dirty() in KGSL

The following issue exists in the android-msm-wahoo-4.4-pie branch of https://android.googlesource.com/kernel/msm and possibly others: When kgslmementrydestroy in drivers/gpu/msm/kgsl.c is called for a writable entry with memtype KGSLMEMENTRYUSER, it attempts to mark the entry's pages as dirty...

iOS / macOS - xpc_data Objects Sandbox Escape Privelege Escalation Exploit

Exploit for multiple platform in category local exploits Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1247 When XPC serializes large xpcdata objects it creates mach memory entry ports to represent the memory region then transfers that region to the receiving process by sendin...

CVE-2002-2038

Next Generation POSIX Threading NGPT 1.9.0 uses a filesystem-based shared memory entry, which allows local users to cause a denial of service or in threaded processes or spoof files via unknown methods...