Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: net: qrtr: A refcount bug was fixed in qrtrrecvmsg. Syzbot reported the following bugs: refcountt: Addition of 0; use-after-free. … RIP: 0010:refcountwarnsaturate+0x17c/0x1f0 lib/refcount.c:25 … Call Trace: refcountadd...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: iio: adc: aspeed: Fixed the refcount leak in aspeedadcsettrimdata. The function offindnodebyname returns a node pointer with a refcount incremented; we should use ofnodeput on it after processing. Added the missing ofnodeput...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: ath11k: The function ofnodeput was added to prevent a leak. The node pointer is returned by offindnodebytype or ofparsephandle, where the reference count is incremented. Calling ofnodeput is necessary to address the reference cou...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-013381)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013381 advisory. In the Linux kernel, the following vulnerability has been resolved: of: unittest: fix null pointer dereferencing in ofunittestfindnodebyname when kmalloc fail to...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an ath11k wifi driver peer node lookup failure, which may result in error logs...

EUVD-2025-31897

Malicious code in bioql PyPI...

SUSE CVE-2023-53496

In the Linux kernel, the following vulnerability has been resolved: x86/platform/uv: Use alternate source for socket to node data The UV code attempts to build a set of tables to allow it to do bidirectional socketnode lookups. But when nrcpus is set to a smaller number than actually present, the...

CVE-2023-53496

In the Linux kernel, the following vulnerability has been resolved: x86/platform/uv: Use alternate source for socket to node data The UV code attempts to build a set of tables to allow it to do bidirectional socketnode lookups. But when nrcpus is set to a smaller number than actually present, the...

CVE-2023-53385

The CVE-2023-53385 issue relates to the Linux kernel: media: mdp3: Fix resource leaks in of_find_device_by_node. The fix adds release of the object obtained via of_find_device_by_node using put_device to prevent leaks. Public references point to upstream commits implementing this change. If explo...

PT-2025-38464

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a refcount bug in the qrtr recvmsg function. This issue occurs in concurrent scenarios involving qrtr recvmsg and qrtr endpoint unregister, potentially leading ...

SUSE CVE-2022-49684

In the Linux kernel, the following vulnerability has been resolved: iio: adc: aspeed: Fix refcount leak in aspeedadcsettrimdata offindnodebyname returns a node pointer with refcount incremented, we should use ofnodeput on it when done. Add missing ofnodeput to avoid refcount leak...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the am65cpswinitcpts and am65cpswnussprobe functions failing to release nodes returned by ofgetchildbyname,...

libuv: out-of-bounds read in uv__idna_toascii() can lead to information disclosures or crashes

A flaw has been found in libuv. Node.js is vulnerable to out-of-bounds read in libuv's uvidnatoascii function which is used to convert strings to ASCII which is called by Node's DNS module's lookup function and can lead to information disclosures or crashes. The highest threat from this...

PacketFence v2.0.0 - Latest Version !

"PacketFencePacketFence is an open-source network access control NAC system which provides the following features: registration, detection of abnormal network activities, proactive vulnerability scans, isolation of problematic devices, remediation through a captive portal, 802.1X, wireless...