RLSA-2025:8395 Low: rsync security update

The rsync utility enables the users to copy and synchronize files locally or across a network. Synchronization with rsync is fast because rsync only sends the differences in files over the network instead of sending whole files. The rsync utility is also used as a mirroring tool. Security Fixes:...

zlib: Out-of-bound pointer arithmetic in inftrees.c

A vulnerability was discovered in the inftrees.c file of zlib. Pointer arithmetic operations violate the C standard by subtracting an offset from an array pointer before its allocated memory, leading to undefined behavior...

CVE-2025-38489

In the Linux kernel, the following vulnerability has been resolved: s390/bpf: Fix bpfarchtextpoke with newaddr == NULL again Commit 7ded842b356d "s390/bpf: Fix bpfplt pointer arithmetic" has accidentally removed the critical piece of commit c730fce7c70c "s390/bpf: Fix bpfarchtextpoke with newaddr...

CVE-2025-38489

In the Linux kernel, the following vulnerability has been resolved: s390/bpf: Fix bpfarchtextpoke with newaddr == NULL again Commit 7ded842b356d "s390/bpf: Fix bpfplt pointer arithmetic" has accidentally removed the critical piece of commit c730fce7c70c "s390/bpf: Fix bpfarchtextpoke with newaddr...

The vulnerability of the `in_gnutls_figure_common_ciphersuite()` function in the GnuTLS library allows a attacker to corrupt memory and cause a service failure.

The vulnerability of the ingnutlsfigurecommonciphersuite function in the GnuTLS library is related to pointer arithmetic errors. Exploiting this vulnerability could allow a remote attacker to corrupt memory and cause service failures...

zlib: Out-of-bound pointer arithmetic in inftrees.c

A vulnerability was discovered in the inftrees.c file of zlib. Pointer arithmetic operations violate the C standard by subtracting an offset from an array pointer before its allocated memory, leading to undefined behavior...

CVE-2025-53101

ImageMagick is free and open-source software used for editing and manipulating digital images. In versions prior to 7.1.2-0 and 6.9.13-26, in ImageMagick's magick mogrify command, specifying multiple consecutive %d format specifiers in a filename template causes internal pointer arithmetic to...

CVE-2025-53101 ImageMagick has Stack Buffer Overflow in image.c

ImageMagick is free and open-source software used for editing and manipulating digital images. In versions prior to 7.1.2-0 and 6.9.13-26, in ImageMagick's magick mogrify command, specifying multiple consecutive %d format specifiers in a filename template causes internal pointer arithmetic to...

zlib: Out-of-bound pointer arithmetic in inftrees.c

A vulnerability was discovered in the inftrees.c file of zlib. Pointer arithmetic operations violate the C standard by subtracting an offset from an array pointer before its allocated memory, leading to undefined behavior...

The vulnerability of the alloc_preauth_hash() function in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the allocpreauthhash function in the Linux operating system’s kernel is related to pointer arithmetic errors. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the lpfc_sli_flush_io_rings() function in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the lpfcsliflushiorings function in the Linux operating system is related to pointer arithmetic errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the ipvs component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the ipvs component in the Linux operating system’s kernel is related to pointer arithmetic errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the Linux operating system’s kernel NFS component, which allows a hacker to trigger a service failure

The vulnerability of the Linux operating system’s kernel NFS component is related to pointer arithmetic errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the DRM/AMD/display components in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the DRM/amd/display components in the Linux operating system is related to errors in pointer arithmetic. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the Linux operating system’s kernel, related to errors in pointer arithmetic involving the NULL pointer, allows a hacker to trigger a service failure.

The vulnerability of the Linux operating system’s kernel is related to errors in pointer arithmetic involving the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a system failure...

The vulnerability of the Linux operating system’s kernel, related to errors in pointer assignment involving the NULL pointer, allows a hacker to trigger a service failure.

The vulnerability of the Linux operating system’s kernel is related to errors in pointer arithmetic involving the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a system failure...

The vulnerability of the Linux operating system’s kernel, related to errors in pointer arithmetic, allows a hacker to trigger a service failure.

The vulnerability of the Linux operating system’s kernel is related to errors in pointer arithmetic. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the net/sched component in the Linux operating system’s kernel, which allows a hacker to trigger a service failure

The vulnerability of the net/sched component in the Linux operating system’s kernel is related to pointer arithmetic errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the Linux operating system’s kernel, which allows a hacker to trigger a Denial-of-Service attack (DoS).

The vulnerability of the Linux operating system’s kernel is related to pointer arithmetic errors. Exploiting this vulnerability can allow an attacker to trigger a Denial-of-Service attack...

The vulnerability of the ath12k/dp.c component in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the ath12k/dp.c component in the Linux operating system is related to pointer arithmetic errors. Exploiting this vulnerability can allow an attacker to cause a service failure...