6347 matches found
USN-7835-1 linux, linux-aws, linux-azure, linux-azure-6.8, linux-gcp, linux-gkeop, linux-ibm, linux-ibm-6.8, linux-lowlatency, linux-lowlatency-hwe-6.8, linux-oracle vulnerabilities
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - ACPI drivers; - Ublk userspace block driver; -...
USN-7835-1: Linux kernel vulnerabilities
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - ACPI drivers; - Ublk userspace block driver; -...
CVE-2023-53727
CVE-2023-53727 (Linux kernel) : The vulnerability resides in net/sched fq_pie where fq_pie_timer() could stall when configuring a very high number of flows (65536). The fix adds logic to yield the CPU every 2048 flows, reducing stall time to under 150 microseconds on debug kernels and preventing ...
USN-7834-1 linux-azure, linux-azure-6.14, linux-azure-nvidia-6.14 vulnerabilities
Oleksii Oleksenko, Cedric Fournet, Jana Hofmann, Boris Köpf, Stavros Volos, and Flavien Solt discovered that some AMD processors may allow an attacker to infer data from previous stores, potentially resulting in the leakage of privileged information. A local attacker could possibly use this to...
SUSE CVE-2025-58147
This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Some Viridian hypercalls can specify a mask of vCPU IDs as an input, in one of three formats. Xen has boundary checking bugs with all three formats, which can cause...
CVE-2025-8052
SQL Injection vulnerability in opentext Flipper allows SQL Injection. The vulnerability could allow a low privilege user to interact with the database in unintended ways and extract data by interacting with the HQL processor. This issue affects Flipper: 3.1.2...
CLSA-2025-1761073890 Update of linux-firmware
Addition AMD CPU microcode for processor family 0x1a: cpuid:0x00B00F21ver:0x0B002151, cpuid:0x00B10F10ver:0x0B10104E; - Update AMD CPU microcode for processor family 0x19: cpuid:0x00A00F11ver:0x0A0011DE, cpuid:0x00A00F12ver:0x0A001247, cpuid:0x00A00F82ver:0x0A00820D,...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987617)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987617 advisory. In the Linux kernel, the following vulnerability has been resolved: powerpc/smp: do not decrement idle task preempt count in CPU offline With PREEMPTCOUNT=y, when a...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987675)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987675 advisory. In the Linux kernel, the following vulnerability has been resolved: perf/x86/amd: fix potential integer overflow on shift of a int The left shift of int 32 bit integ...
EUVD-2025-35106
SQL Injection vulnerability in opentext Flipper allows SQL Injection. The vulnerability could allow a low privilege user to interact with the database in unintended ways and extract data by interacting with the HQL processor. This issue affects Flipper: 3.1.2...
CVE-2025-8052
SQL Injection vulnerability in opentext Flipper allows SQL Injection. The vulnerability could allow a low privilege user to interact with the database in unintended ways and extract data by interacting with the HQL processor. This issue affects Flipper: 3.1.2...
CVE-2025-8052
CVE-2025-8052 affects OpenText Flipper 3.1.2. The vulnerability is a SQL Injection via the HQL processor that could let a low-privilege user interact with the database and extract data. The available connected sources consistently describe the impact as SQL injection with high confidentiality/int...
SAMSUNG多款产品 安全漏洞
SAMSUNG Mobile Processor and others are products of the South Korean company Samsung SAMSUNG.SAMSUNG Mobile Processor is a series of mobile processors.SAMSUNG Wearable Processor is a series of wearable processors.SAMSUNG Mobile Processor Exynos is. A security vulnerability exists in several SAMSU...
CVE-2024-55568
An issue was discovered in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, W920, W930, W1000, Modem 5123, Modem 5300, Modem 5400. The absence of a NULL check leads to a Denial of Service when an attacker sends...
CVE-2025-26782
An issue was discovered in L2 in Samsung Mobile Processor, Wearable Processor, and Modem Exynos 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 9110, W920, W930, Modem 5123, and Modem 5300. Incorrect handling of RLC AM PDUs leads to a Denial of Service...
OpenText Flipper 安全漏洞
OpenText Flipper is a vendor self-submission invoice portal extension package from OpenText Canada. A security vulnerability exists in OpenText Flipper version 3.1.2, which stems from a low-privileged user being able to interact with the database via the HQL processor, potentially leading to an S...
CVE-2025-48025
The CVE-2025-48025 entry concerns Samsung Mobile/Wearable Processors (Exynos 980, 850, 1280, 1330, 1380, 1480, 1580, and W920/W930/W1000). The vulnerability is described as improper access control related to a log file. Connected sources (Red Hat, EUVD, NVD, CVE lists) validate the affected famil...
Denial of Service (DoS)
Overview Affected versions of this package are vulnerable to Denial of Service DoS via the processing of malicious JSON payloads in the request handling process. An attacker can exhaust system memory and CPU resources by sending specially crafted JSON objects that, when deserialized, consume...
Security update for pam
This update for pam fixes the following issues: Improve previous CVE-2024-10041 fix which led to CPU performance issues bsc1232234 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...
riscv: Fix IPIs usage in kfence_protect_page()
...