Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: powerpc64/ftrace: fixed the issue where r15 was clobbered during livepatching. While r15 is always clobbered when PPCFTRACEOUTOFLINE occurs, it is not restored during the livepatch sequence, resulting in less obvious failures,...

CVE-2025-60854

A vulnerability has been found in D-Link R15 AX1500 1.20.01 and below. By manipulating the model name parameter during a password change request in the web administrator page, it is possible to trigger a command injection in httpd...

EUVD-2025-200290

A vulnerability has been found in D-Link R15 AX1500 1.20.01 and below. By manipulating the model name parameter during a password change request in the web administrator page, it is possible to trigger a command injection in httpd...

CVE-2025-60854

A vulnerability has been found in D-Link R15 AX1500 1.20.01 and below. By manipulating the model name parameter during a password change request in the web administrator page, it is possible to trigger a command injection in httpd...

CVE-2025-60854

A vulnerability has been found in D-Link R15 AX1500 1.20.01 and below. By manipulating the model name parameter during a password change request in the web administrator page, it is possible to trigger a command injection in httpd...

PT-2025-48741

Name of the Vulnerable Software and Affected Versions D-Link R15 AX1500 versions prior to 1.20.02 Description A flaw exists in D-Link R15 AX1500 that allows for command injection. The issue occurs due to manipulation of the model name parameter during a password change request on the web...

CVE-2025-60854

CVE-2025-60854 affects D-Link R15 (AX1500) prior to 1.20.02. The vulnerability allows command injection in httpd by manipulating the model name parameter during a password change on the web administrator page. The CVSS v3.1 base score is 9.8 (CRITICAL) with network attack vector, no user interact...

CVE-2025-60854

A vulnerability has been found in D-Link R15 AX1500 1.20.01 and below. By manipulating the model name parameter during a password change request in the web administrator page, it is possible to trigger a command injection in httpd...

D-Link R15 安全漏洞

D-Link R15 is a wireless router from China AUO D-Link. A security vulnerability exists in the D-Link R15 that originates from the incorrect operation of the model name parameter during a password change request in the web administrator page, which could lead to command injection...

EUVD-2025-20023

Malicious code in bioql PyPI...

The vulnerability of component r15 in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of component r15 in the Linux operating system’s kernel is related to incorrect resource locking. Exploiting this vulnerability can allow an attacker to cause a service failure...

CVE-2025-38233

In the Linux kernel, the following vulnerability has been resolved: powerpc64/ftrace: fix clobbered r15 during livepatching While r15 is clobbered always with PPCFTRACEOUTOFLINE, it is not restored in livepatch sequence leading to not so obvious fails like below: BUG: Unable to handle kernel data...

UBUNTU-CVE-2025-38233

In the Linux kernel, the following vulnerability has been resolved: powerpc64/ftrace: fix clobbered r15 during livepatching While r15 is clobbered always with PPCFTRACEOUTOFLINE, it is not restored in livepatch sequence leading to not so obvious fails like below: BUG: Unable to handle kernel data...

CVE-2025-38233 powerpc64/ftrace: fix clobbered r15 during livepatching

In the Linux kernel, the following vulnerability has been resolved: powerpc64/ftrace: fix clobbered r15 during livepatching While r15 is clobbered always with PPCFTRACEOUTOFLINE, it is not restored in livepatch sequence leading to not so obvious fails like below: BUG: Unable to handle kernel data...

CVE-2025-38233

The CVE 2025-38233 entry describes a Linux kernel PPC64 ftrace livepatching issue where r15 is clobbered and not restored in the livepatch sequence, causing kernel faults (example trace shows an oops and bad memory access). Connected docs confirm concrete fixes: restore r15 unconditionally in the...

CVE-2025-38233 powerpc64/ftrace: fix clobbered r15 during livepatching

In the Linux kernel, the following vulnerability has been resolved: powerpc64/ftrace: fix clobbered r15 during livepatching While r15 is clobbered always with PPCFTRACEOUTOFLINE, it is not restored in livepatch sequence leading to not so obvious fails like below: BUG: Unable to handle kernel data...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the r15 register not being restored during ftrace live patching on the powerpc64 architecture...

CVE-2023-41603

D-Link R15 before v1.08.02 was discovered to contain no firewall restrictions for IPv6 traffic. This allows attackers to arbitrarily access any services running on the device that may be inadvertently listening via IPv6...

PT-2025-28008 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel versions 6.14.0 and later Description: The issue is related to the powerpc64/ftrace component of the Linux kernel, where the register r15 is clobbered during livepatching and not restored, leading to potential kernel crashes. Thi...

The vulnerability of the IPv6 Handler component in the D-Link R15 network device’s microprogramming software allows a hacker to gain unauthorized access to arbitrary services.

The vulnerability of the IPv6 Handler component in the D-Link R15 network device software is related to access control deficiencies. Exploiting this vulnerability could allow an attacker to gain unauthorized access to arbitrary services...