EUVD-2026-15261

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: Fix possible oob access in mt76connac2macwritetxwi80211 Check frame length before accessing the mgmt fields in mt76connac2macwritetxwi80211 in order to avoid a possible oob access. fix check to also cover...

RLSA-2025:22405 Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: nfsd: handle getclientlocked failure in nfsd4setclientidconfirm CVE-2025-38724 kernel: wifi: cfg80211: fix use-after-free in cmpbss CVE-2025-39864 kernel: e1000e: fix heap overflow in...

Oracle Linux 9 : kernel (ELSA-2025-22405)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-22405 advisory. - tcp: Clear tcpsksk-fastopenrsk in tcpdisconnect. Antoine Tenart RHEL-120668 CVE-2025-39955 - Bluetooth: MGMT: fix crash in setmeshsync and...

EUVD-2022-54750

Malicious code in bioql PyPI...

EUVD-2025-5260

Malicious code in bioql PyPI...

CVE-2025-39918

CVE-2025-39918 is a Linux kernel issue affecting the wifi mt76 driver: fix for linked list corruption caused by not leaving scheduled wcid entries on the temporary on-stack list. Multiple advisories (AlmaLinux/Rocky/Oracle Linux) reference this CVE among kernel issues; the available documents des...

CVE-2022-49479 mt76: fix tx status related use-after-free race on station removal

In the Linux kernel, the following vulnerability has been resolved: mt76: fix tx status related use-after-free race on station removal There is a small race window where ongoing tx activity can lead to a skb getting added to the status tracking idr after that idr has already been cleaned up, whic...

CVE-2022-49479 mt76: fix tx status related use-after-free race on station removal

In the Linux kernel, the following vulnerability has been resolved: mt76: fix tx status related use-after-free race on station removal There is a small race window where ongoing tx activity can lead to a skb getting added to the status tracking idr after that idr has already been cleaned up, whic...

CVE-2022-49328

CVE-2022-49328 is a vulnerability in the Linux kernel mt76 driver where a use-after-free can occur in mt76_txq_schedule due to an unprotected wcid pointer (non-RCU). The issue is addressed by guarding the mtxq->wcid with an rcu_lock between mt76_txq_schedule and sta_info_alloc/free, per the re...

CVE-2022-49129

In the Linux kernel, the following vulnerability has been resolved: mt76: mt7921: fix crash when startup fails. If the nic fails to start, it is possible that the resetwork has already been scheduled. Ensure the work item is canceled so we do not have use-after-free crash in case cleanup is calle...

AZL-47056 CVE-2024-42225 affecting package kernel for versions less than 5.15.163.1-1

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: replace skbput with skbputzero Avoid potentially reusing uninitialized data...