33 matches found
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: “Revert ‘tty: ngsm: fix UAF in gsmcleanupmux’” This reversion involves commit 9b9c8195f3f0d74a826077fc1c01b9ee74907239. The above commit was reverted because it did not solve the original issue. The function gsmcleanupmux attempt...
CVE-2026-46143
A flaw was found in the Linux kernel's ASoC Advanced Linux Sound Architecture on Chip qcom q6apm-lpass-dai component. This vulnerability occurs because the prepare function can be invoked multiple times, leading to repeated graph openings for the playback path. This can result in memory leaks,...
EUVD-2026-20532
Saleor is an e-commerce platform. From 2.0.0 to before 3.23.0a3, 3.22.47, 3.21.54, and 3.20.118, a malicious actor can include many GraphQL mutations or queries in a single API call using aliases or chaining multiple mutations, resulting in resource exhaustion. This vulnerability is fixed in...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992534)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992534 advisory. In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcisysfs: Fix attempting to call deviceadd multiple times deviceadd shall not be calle...
EUVD-2023-60262
In the Linux kernel, the following vulnerability has been resolved: ipmi:ssif: Fix a memory leak when scanning for an adapter The adapter scan ssifinfofind sets info-adaptername if the adapter info came from SMBIOS, as it's not set in that case. However, this function can be called more than once...
EUVD-2005-3355
Malware in sbrugna...
SUSE CVE-2022-50419
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcisysfs: Fix attempting to call deviceadd multiple times deviceadd shall not be called multiple times as stated in its documentation: 'Do not call this routine or deviceregister more than once for any device structure...
CVE-2022-50419
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcisysfs: Fix attempting to call deviceadd multiple times deviceadd shall not be called multiple times as stated in its documentation: 'Do not call this routine or deviceregister more than once for any device structure...
CVE-2022-50419
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcisysfs: Fix attempting to call deviceadd multiple times deviceadd shall not be called multiple times as stated in its documentation: 'Do not call this routine or deviceregister more than once for any device structure...
CVE-2022-50419 Bluetooth: hci_sysfs: Fix attempting to call device_add multiple times
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcisysfs: Fix attempting to call deviceadd multiple times deviceadd shall not be called multiple times as stated in its documentation: 'Do not call this routine or deviceregister more than once for any device structure...
CVE-2022-50419
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcisysfs: Fix attempting to call deviceadd multiple times deviceadd shall not be called multiple times as stated in its documentation: 'Do not call this routine or deviceregister more than once for any device structure...
CVE-2022-50419 Bluetooth: hci_sysfs: Fix attempting to call device_add multiple times
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcisysfs: Fix attempting to call deviceadd multiple times deviceadd shall not be called multiple times as stated in its documentation: 'Do not call this routine or deviceregister more than once for any device structure...
vhost-scsi: Fix handling of multiple calls to vhost_scsi_set_endpoint
...
Astra Linux – Vulnerability in Linux 6.12
In the Linux kernel, the following vulnerabilities have been resolved: vhost-scsi: Fixed the handling of multiple calls to vhostscsisetendpoint. If vhostscsisetendpoint is called multiple times without a vhostscsiclearendpoint between them, we may encounter several bugs identified by Haoran Zhang...
CVE-2024-45583
Memory corruption while handling multiple IOCTL calls from userspace to operate DMA operations...
CVE-2025-22083 vhost-scsi: Fix handling of multiple calls to vhost_scsi_set_endpoint
In the Linux kernel, the following vulnerability has been resolved: vhost-scsi: Fix handling of multiple calls to vhostscsisetendpoint If vhostscsisetendpoint is called multiple times without a vhostscsiclearendpoint between them, we can hit multiple bugs found by Haoran Zhang: 1. Use-after-free...
CVE-2025-22083
In the Linux kernel, the following vulnerability has been resolved: vhost-scsi: Fix handling of multiple calls to vhostscsisetendpoint If vhostscsisetendpoint is called multiple times without a vhostscsiclearendpoint between them, we can hit multiple bugs found by Haoran Zhang: 1. Use-after-free...
CVE-2025-22083 vhost-scsi: Fix handling of multiple calls to vhost_scsi_set_endpoint
In the Linux kernel, the following vulnerability has been resolved: vhost-scsi: Fix handling of multiple calls to vhostscsisetendpoint If vhostscsisetendpoint is called multiple times without a vhostscsiclearendpoint between them, we can hit multiple bugs found by Haoran Zhang: 1. Use-after-free...
kernel: net: hns3: do not allow call hns3_nic_net_open repeatedly
A vulnerability was discovered in the Linux kernel's hns3 network driver. The hns3nicnetopen function is designed to be called only once per device instance. However, due to insufficient checks, multiple calls to this function are possible. This can lead to scenarios where hns3nicnetopen is invok...
kernel: net: hns3: do not allow call hns3_nic_net_open repeatedly
A vulnerability was discovered in the Linux kernel's hns3 network driver. The hns3nicnetopen function is designed to be called only once per device instance. However, due to insufficient checks, multiple calls to this function are possible. This can lead to scenarios where hns3nicnetopen is invok...