78 matches found
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: fsverity: Rejects FSIOCENABLEVERITY when accessing files with access mode 3 PAGESIZE. Commit 56124d6c87fd “fsverity: supports enabling enableverify for fds with tree block size fmode & FMODEREAD condition in kernelread became...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007395)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007395 advisory. In the Linux kernel, the following vulnerability has been resolved: netpoll: Fix race condition in netpollowneractive KCSAN detected a race condition in netpoll: BUG...
libpng security update
2:1.6.37-12.2 - fix CVE-2026-25646: heap buffer overflow in pngsetquantize RHEL-148970 - fix CVE-2026-22695: heap buffer over-read in pngimagefinishread RHEL-148403 - fix CVE-2026-22801: heap buffer over-read in pngimagewritebit RHEL-147343...
PT-2026-8114
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a data race condition around dev-work within the mISDN module. Specifically, dev-work can be read locklessly in the mISDN read and mISDN poll functions. The iss...
UBUNTU-CVE-2022-50782
In the Linux kernel, the following vulnerability has been resolved: ext4: fix bugon in estreesearch caused by bad quota inode We got a issue as fllows: ================================================================== kernel BUG at fs/ext4/extentsstatus.c:202! invalid opcode: 0000 1 PREEMPT SMP...
EUVD-2020-3456
Malware in sbrugna...
EUVD-2018-6261
Malware in sbrugna...
EUVD-2025-20906
Malicious code in bioql PyPI...
EUVD-2025-12932
Malicious code in bioql PyPI...
ALSA: usb-audio: Fix out-of-bounds read in snd_usb_get_audioformat_uac3()
...
arm64/ptrace: Fix stack-out-of-bounds read in regs_get_kernel_stack_nth()
...
CVE-2025-38497
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: configfs: Fix OOB read on empty string write When writing an empty string to either 'qwsign' or 'landingPage' sysfs attributes, the store functions attempt to access pagel - 1 before validating that the length 'l' is...
CVE-2025-38375
In the Linux kernel, the following vulnerability has been resolved: virtio-net: ensure the received length does not exceed allocated size In xdplinearizepage, when reading the following buffers from the ring, we forget to check the received length with the true allocate size. This can lead to an...
CVE-2025-38329
CVE-2025-38329 – Linux kernel: firmware: cs_dsp: fixes OOB memory read in KUnit test (wmfw info). KASAN reported out-of-bounds access in cs_dsp_mock_wmfw_add_info() where source string length was rounded up to the allocation size. Impact: local attacker with LOW privileges; confidentiality and av...
libjpeg-turbo security update
1.5.3-14 - updated previous fix RHEL-87364 1.5.3-13 - fix CVE-2020-13790: heap-based buffer over-read in getrgbrow RHEL-87364...
CVE-2023-52973 vc_screen: move load of struct vc_data pointer in vcs_read() to avoid UAF
In the Linux kernel, the following vulnerability has been resolved: vcscreen: move load of struct vcdata pointer in vcsread to avoid UAF After a call to consoleunlock in vcsread the vcdata struct can be freed by vcdeallocate. Because of that, the struct vcdata pointer load must be done at the top...
openSUSE 15 Security Update : radare2 (openSUSE-SU-2025:0101-1)
The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2025:0101-1 advisory. - CVE-2025-1864: Fix buffer overflow and potential code execution. boo1238451 - CVE-2025-1744: Fix heap-based buffer over-read or buffer overflow...
OESA-2025-1285 kernel security update
The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: IORINGOPREAD did not correctly consume the provided buffer list when read i/o returned 0 except for -EAGAIN and -EIOCBQUEUED return. This can lead to a potential...
CVE-2024-56710 ceph: fix memory leak in ceph_direct_read_write()
In the Linux kernel, the following vulnerability has been resolved: ceph: fix memory leak in cephdirectreadwrite The bvecs array which is allocated in itergetbvecsalloc is leaked and pages remain pinned if cephallocsparseextmap fails. There is no need to delay the allocation of sparseext map unti...
CVE-2024-56548 hfsplus: don't query the device logical block size multiple times
In the Linux kernel, the following vulnerability has been resolved: hfsplus: don't query the device logical block size multiple times Devices block sizes may change. One of these cases is a loop device by using ioctl LOOPSETBLOCKSIZE. While this may cause other issues like IO being rejected, in t...