Raspberry Pi Imager 安全漏洞

Raspberry Pi Imager is an open source utility software for Raspberry Pi. A security vulnerability exists in Raspberry Pi Imager version 1.9.6, which stems from a public key authentication setting incorrectly re-adding the local idrsa.pub key to the authorizedkeys file of the Raspberry Pi, which...

CVE-2025-60892

The CVE-2025-60892 issue affects Raspberry Pi Imager for Windows (1.9.6) where the OS customization feature’s public-key authentication setting unintentionally re-adds a local id_rsa.pub to the Pi’s authorized_keys file, even after users delete it in the UI. This creates an unintended attack surf...

EUVD-2025-37486

An issue in Raspberry Pi Imager version 1.9.6 for Windows, affecting its OS customization feature. The imager's 'public-key authentication' setting unintentionally re-adds a user's idrsa.pub key from their local Windows machine to the authorizedkeys file on the Raspberry Pi, even after the user...

EUVD-2022-55032

In the Linux kernel, the following vulnerability has been resolved: net: bcmgenet: Use stronger register read/writes to assure ordering GCC12 appears to be much smarter about its dependency tracking and is aware that the relaxed variants are just normal loads and stores and this is causing proble...

Ubuntu 25.04 : Linux kernel (Raspberry Pi) vulnerabilities (USN-7821-1)

The remote Ubuntu 25.04 host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7821-1 advisory. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the...

SUSE CVE-2022-50537

In the Linux kernel, the following vulnerability has been resolved: firmware: raspberrypi: fix possible memory leak in rpifirmwareprobe In rpifirmwareprobe, if mboxrequestchannel fails, the 'fw' will not be freed through rpifirmwaredelete, fix this leak by calling kfree in the error path...

Linux Distros Unpatched Vulnerability : CVE-2022-50537

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: firmware: raspberrypi: fix possible memory leak in rpifirmwareprobe In rpifirmwareprobe, if...

Linux Distros Unpatched Vulnerability : CVE-2023-53533

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: Input: raspberrypi-ts - fix refcount leak in rpitsprobe rpifirmwareget take reference, we ne...

CVE-2022-50537

In the Linux kernel, the following vulnerability has been resolved: firmware: raspberrypi: fix possible memory leak in rpifirmwareprobe In rpifirmwareprobe, if mboxrequestchannel fails, the 'fw' will not be freed through rpifirmwaredelete, fix this leak by calling kfree in the error path...

UBUNTU-CVE-2022-50537

In the Linux kernel, the following vulnerability has been resolved: firmware: raspberrypi: fix possible memory leak in rpifirmwareprobe In rpifirmwareprobe, if mboxrequestchannel fails, the 'fw' will not be freed through rpifirmwaredelete, fix this leak by calling kfree in the error path...

CVE-2022-50537 firmware: raspberrypi: fix possible memory leak in rpi_firmware_probe()

In the Linux kernel, the following vulnerability has been resolved: firmware: raspberrypi: fix possible memory leak in rpifirmwareprobe In rpifirmwareprobe, if mboxrequestchannel fails, the 'fw' will not be freed through rpifirmwaredelete, fix this leak by calling kfree in the error path...

CVE-2022-50537

In the Linux kernel, the following vulnerability has been resolved: firmware: raspberrypi: fix possible memory leak in rpifirmwareprobe In rpifirmwareprobe, if mboxrequestchannel fails, the 'fw' will not be freed through rpifirmwaredelete, fix this leak by calling kfree in the error path...

EUVD-2025-32824

In the Linux kernel, the following vulnerability has been resolved: firmware: raspberrypi: fix possible memory leak in rpifirmwareprobe In rpifirmwareprobe, if mboxrequestchannel fails, the 'fw' will not be freed through rpifirmwaredelete, fix this leak by calling kfree in the error path...

EUVD-2018-11534

Malware in sbrugna...

EUVD-2021-24993

Malware in sbrugna...

EUVD-2018-9807

Malware in sbrugna...

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-391794)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-391794 advisory. In the Linux kernel, the following vulnerability has been resolved: mailbox: bcm2835: Fix timeout during suspend mode During noirq suspend phase the Raspberry Pi pow...

PT-2025-41042

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak exists in the rpi firmware probe function when mbox request channel fails. Specifically, the firmware is not freed through rpi firmware delete, leading to a memory leak. Th...

SUSE CVE-2023-53533

In the Linux kernel, the following vulnerability has been resolved: Input: raspberrypi-ts - fix refcount leak in rpitsprobe rpifirmwareget take reference, we need to release it in error paths as well. Use devmrpifirmwareget helper to handling the resources. Also remove the existing rpifirmwareput...

CVE-2023-53533

In the Linux kernel, the following vulnerability has been resolved: Input: raspberrypi-ts - fix refcount leak in rpitsprobe rpifirmwareget take reference, we need to release it in error paths as well. Use devmrpifirmwareget helper to handling the resources. Also remove the existing rpifirmwareput...