2913 matches found
CVE-2025-38623
In the Linux kernel, the following vulnerability has been resolved: PCI: pnvphp: Fix surprise plug detection and recovery The existing PowerNV hotplug code did not handle surprise plug events correctly, leading to a complete failure of the hotplug system after device removal and a required reboot...
CVE-2025-55637
Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.46622503122283 was discovered to contain a command injection vulnerability via the setddnspipsystem function...
AZL-66629 CVE-2025-38623 affecting package kernel for versions less than 6.6.104.2-1
In the Linux kernel, the following vulnerability has been resolved: PCI: pnvphp: Fix surprise plug detection and recovery The existing PowerNV hotplug code did not handle surprise plug events correctly, leading to a complete failure of the hotplug system after device removal and a required reboot...
DEBIAN-CVE-2025-38623
In the Linux kernel, the following vulnerability has been resolved: PCI: pnvphp: Fix surprise plug detection and recovery The existing PowerNV hotplug code did not handle surprise plug events correctly, leading to a complete failure of the hotplug system after device removal and a required reboot...
CVE-2025-38623 PCI: pnv_php: Fix surprise plug detection and recovery
In the Linux kernel, the following vulnerability has been resolved: PCI: pnvphp: Fix surprise plug detection and recovery The existing PowerNV hotplug code did not handle surprise plug events correctly, leading to a complete failure of the hotplug system after device removal and a required reboot...
CVE-2025-38623
The CVE-2025-38623 entry describes a Linux kernel fix in PCI: pnv_php hotplug handling. The vulnerability stemmed from improper handling of surprise plug events, enabling a PE bridge to freeze MSI interrupt paths and leaving PHB/PE in a frozen state after removal. Consequences include stalled plu...
CVE-2025-38623 PCI: pnv_php: Fix surprise plug detection and recovery
In the Linux kernel, the following vulnerability has been resolved: PCI: pnvphp: Fix surprise plug detection and recovery The existing PowerNV hotplug code did not handle surprise plug events correctly, leading to a complete failure of the hotplug system after device removal and a required reboot...
PT-2025-34458 · Reolink · Reolink Smart 2K+ Plug-In Wi-Fi Video Doorbell With Chime
Name of the Vulnerable Software and Affected Versions: Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime version 3.0.0.4662 2503122283 Description: The device suffers from insufficient privilege verification. Authenticated attackers can create accounts with elevated privileges...
CVE-2025-55627
Insufficient privilege verification in Reolink Smart 2K+ Plug-in Wi-Fi Video Doorbell with Chime - firmware v3.0.0.46622503122283 allows authenticated attackers to create accounts with elevated privileges...
Linux Distros Unpatched Vulnerability : CVE-2020-14591
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Audit Plug-in. Supported versions that are affected are 8.0.20 and prior. Easily...
Linux Distros Unpatched Vulnerability : CVE-2025-6035
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in GIMP. An integer overflow vulnerability exists in the GIMP Despeckle plug-in. The issue occurs due to unchecked multiplication of image...
CVE-2025-38576 powerpc/eeh: Make EEH driver device hotplug safe
In the Linux kernel, the following vulnerability has been resolved: powerpc/eeh: Make EEH driver device hotplug safe Multiple race conditions existed between the PCIe hotplug driver and the EEH driver, leading to a variety of kernel oopses of the same general nature: A second class of oops is als...
[SECURITY] Fedora 42 Update: mingw-gstreamer1-plugins-bad-free-1.26.3-4.fc42
GStreamer is a streaming media framework, based on graphs of elements which operate on media data. This package contains plug-ins that aren't tested well enough, or the code is not of good enough quality...
[SECURITY] Fedora 42 Update: mingw-gstreamer1-1.26.3-1.fc42
GStreamer is a streaming-media framework, based on graphs of filters which operate on media data. Applications using this library can do anything from real-time sound processing to playing videos, and just about anything else media-related. Its plug-in-based architecture means that new data types...
Linux Distros Unpatched Vulnerability : CVE-2019-2791
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Audit Plug-in. Supported versions that are affected are 5.7.26 and prior and...
Linux Distros Unpatched Vulnerability : CVE-2017-3460
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Audit Plug-in. Supported versions that are affected are 5.7.17 and earlier...
Linux Distros Unpatched Vulnerability : CVE-2025-38140
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - dm: limit swapping tables for devices with zone write plugs dmrevalidatezones only allowed new or previously unzoned devices to call blkrevalidatediskzones. If...
Malicious code in @zalastax/nolb-nodebb-plug (npm)
The package @zalastax/nolb-nodebb-plug was found to contain malicious code...
MAL-2025-12720 Malicious code in @zalastax/nolb-nodebb-plug (npm)
The package @zalastax/nolb-nodebb-plug was found to contain malicious code...
Linux Distros Unpatched Vulnerability : CVE-2024-40926
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: drm/nouveau: don't attempt to schedule hpdwork on headless cards If the card doesn't have...