Important: kernel-livepatch-6.1.150-174.273

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: net/sched: Fix backlog accounting in qdiscdequeueinternal CVE-2025-39677 In the Linux kernel, the following vulnerability has been resolved: dmaengine: qcom: bamdma: Fix DT error handling for num-channels/ees...

CVE-2025-63718

A SQL injection vulnerability exists in the SourceCodester PQMS Patient Queue Management System 1.0 in the apipatientschedule.php endpoint. The appointmentID parameter is not properly sanitized, allowing attackers to execute arbitrary SQL commands...

CVE-2025-63718

A SQL injection vulnerability exists in the SourceCodester PQMS Patient Queue Management System 1.0 in the apipatientschedule.php endpoint. The appointmentID parameter is not properly sanitized, allowing attackers to execute arbitrary SQL commands...

CVE-2025-63718

The CVE-2025-63718 entry describes a SQL injection in SourceCodester PQMS 1.0 at api_patient_schedule.php, where the appointmentID parameter is not properly sanitized, enabling arbitrary SQL commands. This is evidenced across multiple connected sources (e.g., Red Hat, EUVD, NVD/CVE records, CNVD,...

CVE-2025-63718

A SQL injection vulnerability exists in the SourceCodester PQMS Patient Queue Management System 1.0 in the apipatientschedule.php endpoint. The appointmentID parameter is not properly sanitized, allowing attackers to execute arbitrary SQL commands...

PT-2025-45480

Name of the Vulnerable Software and Affected Versions SourceCodester PQMS version 1.0 Description A SQL injection issue exists in the Patient Queue Management System. The api patient schedule.php endpoint is affected because the appointmentID parameter does not receive proper sanitization,...

PT-2025-48203

Name of the Vulnerable Software and Affected Versions Suricata versions prior to 7.0.13 Suricata versions prior to 8.0.2 Description Suricata is a network IDS, IPS and NSM engine. A heap overflow can occur when logging verdict information in eve.alert and eve.drop records for versions prior to...

USN-7835-5: Linux kernel (Oracle) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - ACPI drivers; - Ublk userspace block driver; -...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990515)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990515 advisory. In the Linux kernel, the following vulnerability has been resolved: net: stmmac: fix dma queue left shift overflow issue When queue number is 4, left shift overflows...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990433)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990433 advisory. In the Linux kernel, the following vulnerability has been resolved: s390/dasd: protect device queue against concurrent access In dasdprofilestart the amount of...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990587)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990587 advisory. In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: mesh: Fix leak of meshpreqqueue objects The hwmp code use objects of type...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990464)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990464 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: Revert scsi: fcoe: Fix potential deadlock on &fip-ctlrlock This reverts commit...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990563)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990563 advisory. In the Linux kernel, the following vulnerability has been resolved: net: tun: unlink NAPI from device on destruction Syzbot found a race between tun file and device...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990628)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990628 advisory. In the Linux kernel, the following vulnerability has been resolved: block: don't delete queue kobject before its children kobjects aren't supposed to be deleted befo...

Security update for kernel-livepatch-MICRO-6-0_Update_4

This update for kernel-livepatch-MICRO-6-0Update4 fixes the following issues: CVE-2024-53164: net: sched: fix ordering of qlen adjustment bsc1246019 CVE-2025-38664: ice: Fix a null pointer dereference in icecopyandinitpkg bsc1248631 CVE-2025-38618: vsock: Do not allow binding to VMADDRPORTANY...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989593)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989593 advisory. In the Linux kernel, the following vulnerability has been resolved: Revert Revert block, bfq: honor already-setup queue merges A crash 1 happened to be triggered in...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989441)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989441 advisory. In the Linux kernel, the following vulnerability has been resolved: s390/dasd: protect device queue against concurrent access In dasdprofilestart the amount of...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990264)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990264 advisory. In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: mesh: Fix leak of meshpreqqueue objects The hwmp code use objects of type...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989458)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989458 advisory. In the Linux kernel, the following vulnerability has been resolved: IB/mlx5: Fix initializing CQ fragments buffer The function initcqfragbuf can be called to...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989256)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989256 advisory. In the Linux kernel, the following vulnerability has been resolved: bfq: Avoid merging queues with different parents It can happen that the parent of a bfqq changes...