Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid dividing by zero by initializing the dummy pitch to 1. Why If the dummy values in populatedummydmlsurfacecfg are not updated, they can lead to a division by zero in downstream calls such as...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: drm/xe/migrate: Do not overflow the maximum copy size. With non-page-aligned copies, we need to use a pitch that is 4 bytes in size. However, the size of the copied data may still be close to our maximum of approximately 8M. As a...

Azure Linux 3.0 Security Update: kernel (CVE-2025-38205)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38205 advisory. - In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid divide by zero by...

Dark Web Roast December 2025 Edition

Dark Web Roast - December 2025 Edition By Trellix Advanced Research Center · January 15, 2026 Executive summary December 2025 delivered a spectacular finale to the year's cybercriminal comedy show, featuring Global Ransomware-as-a-Service RaaS operator liquidating their empire for pocket change,...

Mozilla Firefox < 85.0.1

The version of Firefox installed on the remote macOS or Mac OS X host is prior to 85.0.1. It is, therefore, affected by a vulnerability as referenced in the mfsa2021-06 advisory. - In the Angle graphics library, depth pitch computations did not take into account the block size and simply multipli...

Mozilla Firefox ESR < 78.7.1

The version of Firefox ESR installed on the remote macOS or Mac OS X host is prior to 78.7.1. It is, therefore, affected by a vulnerability as referenced in the mfsa2021-06 advisory. - In the Angle graphics library, depth pitch computations did not take into account the block size and simply...

JLSEC-2025-178 The tjLoadImage function in libjpeg-turbo 2.0.1 has an integer overflow with a resultant heap-based ...

The tjLoadImage function in libjpeg-turbo 2.0.1 has an integer overflow with a resultant heap-based buffer overflow via a BMP image because multiplication of pitch and height is mishandled, as demonstrated by tjbench...

EUVD-2018-0024

Malware in sbrugna...

EUVD-2024-19172

Malicious code in bioql PyPI...

EUVD-2025-28970

Malicious code in bioql PyPI...

SUSE-SU-2025:03382-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP7 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2024-46733: btrfs: fix qgroup reserve leaks in cowfilerange bsc1230708. - CVE-2024-49996: cifs: Fix buffer overflow when parsing NFS reparse points bsc1232089...

SUSE-SU-2025:03272-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2024-46733: btrfs: fix qgroup reserve leaks in cowfilerange bsc1230708. - CVE-2024-49996: cifs: Fix buffer overflow when parsing NFS reparse points bsc1232089...

SUSE CVE-2025-39741

In the Linux kernel, the following vulnerability has been resolved: drm/xe/migrate: don't overflow max copy size With non-page aligned copy, we need to use 4 byte aligned pitch, however the size itself might still be close to our maximum of 8M, and so the dimensions of the copy can easily exceed...

CVE-2025-39741

In the Linux kernel, the following vulnerability has been resolved: drm/xe/migrate: don't overflow max copy size With non-page aligned copy, we need to use 4 byte aligned pitch, however the size itself might still be close to our maximum of 8M, and so the dimensions of the copy can easily exceed...

UBUNTU-CVE-2025-39741

In the Linux kernel, the following vulnerability has been resolved: drm/xe/migrate: don't overflow max copy size With non-page aligned copy, we need to use 4 byte aligned pitch, however the size itself might still be close to our maximum of 8M, and so the dimensions of the copy can easily exceed...

CVE-2025-39741 drm/xe/migrate: don't overflow max copy size

In the Linux kernel, the following vulnerability has been resolved: drm/xe/migrate: don't overflow max copy size With non-page aligned copy, we need to use 4 byte aligned pitch, however the size itself might still be close to our maximum of 8M, and so the dimensions of the copy can easily exceed...

CVE-2025-39741

The CVE-2025-39741 issue affects the Linux kernel DRM Xe migrator (drm/xe/migrate) where copying with non-page-aligned data could overflow the max copy size since the calculated copy dimensions could exceed the S16_MAX limit. The root cause is not fully described in the Initial document alone, bu...

CVE-2025-39741 drm/xe/migrate: don't overflow max copy size

In the Linux kernel, the following vulnerability has been resolved: drm/xe/migrate: don't overflow max copy size With non-page aligned copy, we need to use 4 byte aligned pitch, however the size itself might still be close to our maximum of 8M, and so the dimensions of the copy can easily exceed...

PT-2025-37200

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A flaw exists in the Linux kernel’s drm/xe/migrate module related to handling copy sizes during migration. Specifically, when dealing with non-page aligned copies and pitches, the...

Linux Distros Unpatched Vulnerability : CVE-2018-14522

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in aubio 0.4.6. A SEGV signal can occur in aubiopitchsetunit in pitch/pitch.c, as demonstrated by aubionotes. CVE-2018-14522 Note that...