CVE-2024-48077

NanoMQ v0.22.7 is vulnerable to Denial of Service DoS due to improper resource throttling. A crafted sequence of requests causes the recv-q queue to saturate, leading to the rapid exhaustion of system file descriptors FDs. This exhaustion triggers a process crash, rendering the broker unable to...

CVE-2024-48077

An issue in nanomq v0.22.7 allows attackers to cause a Denial of Service DoS via a crafted request. The number of data packets received in the recv-q queue of the Nanomq process continues to increase, causing the nanomq broker to fall into a deadlock and be unable to provide normal services...

team: fix check for port enabled in team_queue_override_port_prio_changed()

...

CVE-2025-68807

A race condition flaw was found in the Linux kernel's block layer writeback throttling WBT initialization. When enabling WBT during an I/O elevator change, a race with concurrent I/O submission can cause the WBT inflight counter to become negative. This leads to tasks hanging indefinitely in...

CVE-2025-71073

In the Linux kernel, the following vulnerability has been resolved: Input: lkkbd - disable pending work before freeing device lkkbdinterrupt schedules lk-tq via schedulework, and the work handler lkkbdreinit dereferences the lkkbd structure and its serio/inputdev fields. lkkbddisconnect and error...

SUSE CVE-2025-68793

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix a job-pasid access race in gpu recovery Avoid a possible UAF in GPU recovery due to a race between the sched timeout callback and the tdr work queue. The gpu recovery function calls drmschedstop and later...

SUSE CVE-2025-68805

In the Linux kernel, the following vulnerability has been resolved: fuse: fix io-uring list corruption for terminated non-committed requests When a request is terminated before it has been committed, the request is not removed from the queue's list. This leaves a dangling list entry that leads to...

SUSE CVE-2025-68807

In the Linux kernel, the following vulnerability has been resolved: block: fix race between wbtenabledefault and IO submission When wbtenabledefault is moved out of queue freezing in elevatorchange, it can cause the wbt inflight counter to become negative -1, leading to hung tasks in the writebac...

CVE-2025-68768

In the Linux kernel, the following vulnerability has been resolved: inet: frags: flush pending skbs in fqdirpreexit We have been seeing occasional deadlocks on pernetopsrwsem since September in NIPA. The stuck task was usually modprobe often loading a driver like ipvlan, trying to take the lock a...

CVE-2024-48077

NanoMQ v0.22.7 is vulnerable to Denial of Service DoS due to improper resource throttling. A crafted sequence of requests causes the recv-q queue to saturate, leading to the rapid exhaustion of system file descriptors FDs. This exhaustion triggers a process crash, rendering the broker unable to...

PT-2026-3090

Name of the Vulnerable Software and Affected Versions nanomq version 0.22.7 Description An issue in nanomq version 0.22.7 allows attackers to cause a Denial of Service DoS through a crafted request. The number of data packets received in the recv-q queue of the Nanomq process increases...

CVE-2024-48077

An issue in nanomq v0.22.7 allows attackers to cause a Denial of Service DoS via a crafted request. The number of data packets received in the recv-q queue of the Nanomq process continues to increase, causing the nanomq broker to fall into a deadlock and be unable to provide normal services...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003199)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003199 advisory. In the Linux kernel before 4.20.2, kernel/sched/fair.c mishandles leaf cfsrq's, which allows attackers to cause a denial of service infinite loop in...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003261)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003261 advisory. crypto/ahash.c in the Linux kernel through 4.10.9 allows attackers to cause a denial of service API operation calling its own callback, and infinite recursion by...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002896)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002896 advisory. Race condition in the queuedelete function in sound/core/seq/seqqueue.c in the Linux kernel before 4.4.1 allows local users to cause a denial of service use-after-fr...

EUVD-2026-2717

An issue in nanomq v0.22.7 allows attackers to cause a Denial of Service DoS via a crafted request. The number of data packets received in the recv-q queue of the Nanomq process continues to increase, causing the nanomq broker to fall into a deadlock and be unable to provide normal services...

CVE-2024-48077

NanoMQ v0.22.7 is vulnerable to Denial of Service DoS due to improper resource throttling. A crafted sequence of requests causes the recv-q queue to saturate, leading to the rapid exhaustion of system file descriptors FDs. This exhaustion triggers a process crash, rendering the broker unable to...

CVE-2024-48077

Nanomq v0.22.7 is affected by a DoS via a crafted request that causes the recv-q queue to grow, leading to broker deadlock and service disruption. The public sources (NVD/Red Hat OSV/PT-Security/etc.) describe the impact but do not provide a confirmed patched version; one PT-Security entry explic...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003556)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003556 advisory. The blkcginitqueue function in block/blk-cgroup.c in the Linux kernel before 4.11 allows local users to cause a denial of service double free or possibly have...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003211)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003211 advisory. Race condition in the queuedelete function in sound/core/seq/seqqueue.c in the Linux kernel before 4.4.1 allows local users to cause a denial of service use-after-fr...