Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from lpfc not checking for the hdwq null pointer when cleaning up vport structures...

scsi: ufs: core: Add NULL check in ufshcd_mcq_compl_pending_transfer()

...

blk-mq: Fix kmemleak in blk_mq_init_allocated_queue

...

ublk: fix handling recovery & reissue in ublk_abort_queue()

...

scsi: mpi3mr: Synchronous access b/w reset and tm thread for reply queue

...

net: mana: Fix TX CQE error handling

...

ArrayQueue's push_front is not panic-safe

The safe API arrayqueue::ArrayQueue::pushfront can lead to deallocating uninitialized memory if a panic occurs while invoking the clone method on the passed argument. Specifically, pushfront receives an argument that is intended to be cloned and pushed, whose type implements the Clone trait...

kernel: net/sched: Always pass notifications when child class becomes empty

A use-after-free UAF vulnerability was found in the Linux kernel's net/sched subsystem, specifically in the Credit-Based Shaper CBS qdisc implementation schcbs. The vulnerability occurs because the CBS qdisc's reset function qdiscresetqueue only resets its internal queue but fails to reset its...

kernel: net/sched: Always pass notifications when child class becomes empty

A use-after-free UAF vulnerability was found in the Linux kernel's net/sched subsystem, specifically in the Credit-Based Shaper CBS qdisc implementation schcbs. The vulnerability occurs because the CBS qdisc's reset function qdiscresetqueue only resets its internal queue but fails to reset its...

kernel: sch_hfsc: make hfsc_qlen_notify() idempotent

In the Linux kernel, the following vulnerability has been resolved: schhfsc: make hfscqlennotify idempotent hfscqlennotify is not idempotent either and not friendly to its callers, like fqcodeldequeue. Let's make it idempotent to ease qdisctreereducebacklog callers' life: 1. updatevf decreases...

kernel: udp: Fix memory accounting leak.

A memory overflow vulnerability exists within the Linux kernel's networking subsystem. Specifically, an application can set the SORCVBUF socket option to its maximum value INTMAX, which triggers an integer overflow within the udprmemrelease function during socket closure. The udpdestructcommon...

Linux Distros Unpatched Vulnerability : CVE-2025-37932

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - schhtb: make htbqlennotify idempotent htbqlennotify always deactivates the HTB class and in fact could trigger a warning if it is already deactivated. Therefore...

Linux Distros Unpatched Vulnerability : CVE-2025-38620

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: zloop: fix KASAN use-after-free of tag set When a zoned loop device, or zloop device, is...

PT-2025-35653

🔴 Rust array queue, Memory Corruption, CVE-2021-28016 Critical https://t.co/xvt7ni76ig...

Malicious code in monolith-twirp-merge-queue-go-mergequeuemonolith (RubyGems)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 58e829a595050f4922bb0937c2d6c0d2759059af987ceb38f0c33712345eadc2 The OpenSSF Package Analysis project identified 'monolith-twirp-merge-queue-go-mergequeuemonolith' @ 1.0.2 rubygems as malicious. It is consider...

Malicious code in monolith-twirp-merge-queue-go-mergequeueservice (RubyGems)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 3e907c6e8d9b369e32e165c27d2a66931e8ecbb4b256a932542731234e6cf8da The OpenSSF Package Analysis project identified 'monolith-twirp-merge-queue-go-mergequeueservice' @ 1.0.2 rubygems as malicious. It is considere...

MAL-2025-46932 Malicious code in monolith-twirp-merge-queue-go-mergequeueservice (RubyGems)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 3e907c6e8d9b369e32e165c27d2a66931e8ecbb4b256a932542731234e6cf8da The OpenSSF Package Analysis project identified 'monolith-twirp-merge-queue-go-mergequeueservice' @ 1.0.2 rubygems as malicious. It is considere...

Linux Distros Unpatched Vulnerability : CVE-2025-38594

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Fix UAF on sva unbind with pending IOPFs Commit 17fce9d2336d iommu/vt-d: Put iop...

RHEL 9 : kernel (RHSA-2025:14744)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:14744 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: driver: base: fix UAF when...

RHEL 8 : kernel (RHSA-2025:14692)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:14692 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: can: peakusb: fix use after...