Linux Distros Unpatched Vulnerability : CVE-2025-38366

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Check validity of numcpu from user space The maximum supported cpu number is...

Photon OS 5.0: Jq PHSA-2025-5.0-0567

An update of the jq package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0567. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid251231...

Linux Distros Unpatched Vulnerability : CVE-2020-29570

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Xen through 4.14.x. Recording of the per-vCPU control block mapping maintained by Xen and that of pointers into the control block is...

SUSE CVE-2025-38518

In the Linux kernel, the following vulnerability has been resolved: x86/CPU/AMD: Disable INVLPGB on Zen2 AMD Cyan Skillfish Family 17h, Model 47h, Stepping 0h has an issue that causes system oopses and panics when performing TLB flush using INVLPGB. However, the problem is that that machine has...

CVE-2025-38522

In the Linux kernel, the following vulnerability has been resolved: sched/ext: Prevent updatelockedrq calls with NULL rq Avoid invoking updatelockedrq when the runqueue rq pointer is NULL in the SCXCALLOP and SCXCALLOPRET macros. Previously, calling updatelockedrqNULL with preemption enabled coul...

CVE-2025-38518

In the Linux kernel, the following vulnerability has been resolved: x86/CPU/AMD: Disable INVLPGB on Zen2 AMD Cyan Skillfish Family 17h, Model 47h, Stepping 0h has an issue that causes system oopses and panics when performing TLB flush using INVLPGB. However, the problem is that that machine has...

CVE-2025-38506 KVM: Allow CPU to reschedule while setting per-page memory attributes

In the Linux kernel, the following vulnerability has been resolved: KVM: Allow CPU to reschedule while setting per-page memory attributes When running an SEV-SNP guest with a sufficiently large amount of memory 1TB+, the host can experience CPU soft lockups when running an operation in...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a crash when drm/imagination hard resets the GPU, which may result in clocks not being enabled...

PT-2025-33579 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a use-after-free flaw within the airoha npu get function. The vulnerability occurs because the np-name field is accessed after the associated node has been...

PT-2025-33561 · Amd +1 · Amd Cyan Skillfish +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains an issue related to the handling of TLB flushes using INVLPGB on AMD Cyan Skillfish processors Family 17h, Model 47h, Stepping 0h. This can lead to system...

Linux Distros Unpatched Vulnerability : CVE-2025-37831

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: cpufreq: apple-soc: Fix null-ptr-deref in applesoccpufreqgetrate cpufreqcpugetraw can return...

Linux Distros Unpatched Vulnerability : CVE-2025-3028

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - JavaScript code running while transforming a document with the XSLTProcessor could lead to a use-after- free. This vulnerability was fixed in Firefox 137, Firef...

Malicious code in ujet-processor-manager (npm)

The package ujet-processor-manager was found to contain malicious code...

Malicious code in clips-processor (npm)

The package clips-processor was found to contain malicious code...

MAL-2025-37614 Malicious code in ujet-processor-manager (npm)

The package ujet-processor-manager was found to contain malicious code...

MAL-2025-17141 Malicious code in clips-processor (npm)

The package clips-processor was found to contain malicious code...

CVE-2025-22840

Sequence of processor instructions leads to unexpected behavior for some IntelR XeonR 6 Scalable processors may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2025-20053

Improper buffer restrictions for some IntelR XeonR Processor firmware with SGX enabled may allow a privileged user to potentially enable escalation of privilege via local access...

PT-2026-2512

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the scheduler/deadline component. A correction ensures that the free cpus bit is only set for online runqueues. A previous commit introduced...

ROS-20250814-11

System Management Mode SMM vulnerability in AMD processor firmware is related to insufficient input validation. Exploitation of the vulnerability could allow an attacker to execute arbitrary code...