Astra Linux - уязвимость в linux-5.15, linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: PNP: fix name memory leak in pnpallocdev After commit 1fa5ae857bb1 "driver core: get rid of struct device's busid string array", the name of device is allocated dynamically, move devsetname after pnpaddid to avoid memory leak...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-004854)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004854 advisory. In the Linux kernel, the following vulnerability has been resolved: PNP: fix name memory leak in pnpallocdev After commit 1fa5ae857bb1 driver core: get rid of struct...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992275)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992275 advisory. In the Linux kernel, the following vulnerability has been resolved: PNP: fix name memory leak in pnpallocdev After commit 1fa5ae857bb1 driver core: get rid of struct...

SUSE CVE-2025-68332

In the Linux kernel, the following vulnerability has been resolved: comedi: c6xdigio: Fix invalid PNP driver unregistration The Comedi low-level driver "c6xdigio" seems to be for a parallel port connected device. When the Comedi core calls the driver's Comedi "attach" handler c6xdigioattach to...

SUSE SLES12 Security Update : kernel (SUSE-SU-2025:03614-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:03614-1 advisory. The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security bugfixes. The following security bugs were fixed: -...

OESA-2025-2468 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: mmc: vub300: fix return value check of mmcaddhost mmcaddhost may return error, if we ignore its return value, the memory that allocated in mmcallochost will be...

SUSE-SU-2025:03614-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2022-50233: Bluetooth: eir: Fix using strlen with hdev-devname,shortname bsc1246968. - CVE-2022-50242: drivers: net: qlcnic: Fix potential memory leak in...

EUVD-2022-52595

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2022-50278

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - PNP: fix name memory leak in pnpallocdev After commit 1fa5ae857bb1 driver core: get rid of struct device's busid string array, the name of device is allocated...

SUSE CVE-2022-50278

In the Linux kernel, the following vulnerability has been resolved: PNP: fix name memory leak in pnpallocdev After commit 1fa5ae857bb1 "driver core: get rid of struct device's busid string array", the name of device is allocated dynamically, move devsetname after pnpaddid to avoid memory leak...

UBUNTU-CVE-2022-50278

In the Linux kernel, the following vulnerability has been resolved: PNP: fix name memory leak in pnpallocdev After commit 1fa5ae857bb1 "driver core: get rid of struct device's busid string array", the name of device is allocated dynamically, move devsetname after pnpaddid to avoid memory leak...

CVE-2022-50278 PNP: fix name memory leak in pnp_alloc_dev()

In the Linux kernel, the following vulnerability has been resolved: PNP: fix name memory leak in pnpallocdev After commit 1fa5ae857bb1 "driver core: get rid of struct device's busid string array", the name of device is allocated dynamically, move devsetname after pnpaddid to avoid memory leak...

Malicious code in pnp-resume (npm)

The package communicates with a domain associated with malicious activity...

MAL-2025-5452 Malicious code in pnp-resume (npm)

The package communicates with a domain associated with malicious activity...

UBUNTU-CVE-2025-21913

In the Linux kernel, the following vulnerability has been resolved: x86/amdnb: Use rdmsrsafe in amdgetmmconfigrange Xen doesn't offer MSRFAM10HMMIOCONFBASE to all guests. This results in the following warning: unchecked MSR access error: RDMSR from 0xc0010058 at rIP: 0xffffffff8101d19f...

PVS targets running on Nutanix have a BSOD after boot

The customer created two different vdisks from two different master target devices on Nutanix. Both master target devices appeared to have identical hardware configuration in Nutanix management console. One vdisk failed to boot against PVS targets created via CVAD Setup Wizard, while the other...

@pnp/nodejs (>=4.0.0 <=4.1.1-v4nightly.20240617), insomnia-plugin-azure-ad-authentication (=1.1.2) potentially affected by CVE-2024-35255 via @azure/msal-node (>=2.7.0 <=2.9.1)

@azure/msal-node NPM version =2.7.0, =4.0.0, =4.1.1-v4nightly.20240617 - insomnia-plugin-azure-ad-authentication =1.1.2 Source cves: CVE-2024-35255 Source advisory: OSV:GHSA-M5VV-6R4H-3VJ9...

CVE-2023-47252

An issue was discovered in PnpSmm in Insyde InsydeH2O with kernel 5.0 through 5.6. There is a possible out-of-bounds access in the SMM communication buffer, leading to tampering. The PNP-related SMI sub-functions do not verify data size before getting it from the communication buffer, which could...

CVE-2023-47252

An issue was discovered in PnpSmm in Insyde InsydeH2O with kernel 5.0 through 5.6. There is a possible out-of-bounds access in the SMM communication buffer, leading to tampering. The PNP-related SMI sub-functions do not verify data size before getting it from the communication buffer, which could...

CVE-2024-20348

A vulnerability in the Out-of-Band OOB Plug and Play PnP feature of Cisco Nexus Dashboard Fabric Controller NDFC could allow an unauthenticated, remote attacker to read arbitrary files. This vulnerability is due to an unauthenticated provisioning web server. An attacker could exploit this...