15 matches found
Astra Linux - уязвимость в linux-6.1
In the Linux kernel, the following vulnerability has been resolved: xtensa: simdisk: added input size checking in procwritesimdisk A malicious user could enter an arbitrarily bad value into memdupusernul, potentially causing a kernel crash. This follows the same pattern as the issue fixed in comm...
CVE-2025-58341
The CVE-2025-58341 entry affects Samsung Mobile Processor and Wearable Processor Exynos family (980, 850, 1080, 1280, 1330, 1380, 1480, 1580, W920, W930, W1000). A vulnerability in the Wi‑Fi driver allows unbounded memory allocation via a large buffer in the /proc/driver/unifi0/ap_cert_disable_ht...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001877)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001877 advisory. Buffer overflow in the exitcodeprocwrite function in arch/um/kernel/exitcode.c in the Linux kernel before 3.12 allows local users to cause a denial of service or...
kernel: smb: client: fix potential UAF in cifs_stats_proc_write()
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in cifsstatsprocwrite Skip sessions that are being teared down status == SESEXITING to avoid UAF...
Improper File Access
runc is vulnerable to improper file access. The vulnerability is due to insufficient validation of write targets in /proc during concurrent container execution with shared mounts, which allows an attacker to exploit race conditions and redirect writes to unintended procfs files...
EUVD-2025-150381
In the Linux kernel, the following vulnerability has been resolved: xtensa: simdisk: add input size check in procwritesimdisk A malicious user could pass an arbitrarily bad value to memdupusernul, potentially causing kernel crash. This follows the same pattern as commit ee76746387f6 "netdevsim:...
UBUNTU-CVE-2025-40193
In the Linux kernel, the following vulnerability has been resolved: xtensa: simdisk: add input size check in procwritesimdisk A malicious user could pass an arbitrarily bad value to memdupusernul, potentially causing kernel crash. This follows the same pattern as commit ee76746387f6 "netdevsim:...
CVE-2025-40193 xtensa: simdisk: add input size check in proc_write_simdisk
In the Linux kernel, the following vulnerability has been resolved: xtensa: simdisk: add input size check in procwritesimdisk A malicious user could pass an arbitrarily bad value to memdupusernul, potentially causing kernel crash. This follows the same pattern as commit ee76746387f6 "netdevsim:...
CVE-2025-40193
In CVE-2025-40193, the Linux kernel’s xtensa simdisk component (proc_write_simdisk) lacks an input size check, allowing a malicious user to pass an invalid value to memdup_user_nul() and potentially crash the kernel. The issue is tied to changes referenced as a pattern to the nsim_dev_health_brea...
CVE-2025-40193
In the Linux kernel, the following vulnerability has been resolved: xtensa: simdisk: add input size check in procwritesimdisk A malicious user could pass an arbitrarily bad value to memdupusernul, potentially causing kernel crash. This follows the same pattern as commit ee76746387f6 "netdevsim:...
SUSE-SU-2025:4079-1 Security update for podman
This update for podman fixes the following issues: - CVE-2025-31133: Fixed container escape via 'masked path' abuse due to mount race conditions bsc1252376 - CVE-2025-52565: Fixed container escape with malicious config due to /dev/console mount and related races bsc1252376 - CVE-2025-52881: Fixed...
AZL-70586 CVE-2025-52881 affecting package kubernetes for versions less than 1.30.10-18
runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7, 1.3.2 and 1.4.0-rc.2, an attacker can trick runc into misdirecting writes to /proc to other procfs files through the use of a racing container with shared mounts we have also verified thi...
PT-2025-45375
Name of the Vulnerable Software and Affected Versions runc versions 1.2.7 through 1.3.2 runc version 1.4.0-rc.2 Description The runC tool is a lightweight implementation of the Open Container Format OCF used for container runtime. A flaw exists in runC that allows an attacker to manipulate writes...
smb: client: fix potential UAF in cifs_stats_proc_write()
...
CVE-2022-49288
In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: Fix races among concurrent prealloc proc writes We have no protection against concurrent PCM buffer preallocation changes via proc files, and it may potentially lead to UAF or some weird problem. This patch applies the...