Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2026-50234)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-50234 advisory. - macvlan: fix possible UAF in macvlanforwardsource Eric Dumazet Orabug: 38887731 CVE-2026-23001 - macvlan: fix error recovery in...

RockyLinux 8 : kernel-rt (RLSA-2026:6036)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:6036 advisory. kernel: Linux kernel: Use-After-Free vulnerability in ATM subsystem CVE-2025-38180 kernel: macvlan: fix error recovery in macvlancommonnewlink...

CVE-2025-68769

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix return value of f2fsrecoverfsyncdata With below scripts, it will trigger panic in f2fs: mkfs.f2fs -f /dev/vdd mount /dev/vdd /mnt/f2fs touch /mnt/f2fs/foo sync echo 111 /mnt/f2fs/foo f2fsio fsync /mnt/f2fs/foo f2fsio...

ROS-20250929-08

Intel processor firmware vulnerability is linked to information disclosure. Exploitation exploitation of the vulnerability could allow an intruder to gain unauthorized access to protected information A vulnerability in the cross-platform Xen hypervisor of the Linux operating system kernel is...

May 31, 2025—KB5062170 (OS Builds 22621.5415 and 22631.5415 Out-of-band

May 31, 2025—KB5062170 OS Builds 22621.5415 and 22631.5415 Out-of-band For information about Windows update terminology, see types of Windows updates and the monthly quality update types. To find an overview, see the update history page for Windows 11, version 23H2. Follow @WindowsUpdate to find...

SUSE CVE-2024-46781

In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix missing cleanup on rollforward recovery error In an error injection test of a routine for mount-time recovery, KASAN found a use-after-free bug. It turned out that if data recovery was performed using partial logs...

CVE-2024-46781 nilfs2: fix missing cleanup on rollforward recovery error

In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix missing cleanup on rollforward recovery error In an error injection test of a routine for mount-time recovery, KASAN found a use-after-free bug. It turned out that if data recovery was performed using partial logs...

CVE-2024-46781 nilfs2: fix missing cleanup on rollforward recovery error

In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix missing cleanup on rollforward recovery error In an error injection test of a routine for mount-time recovery, KASAN found a use-after-free bug. It turned out that if data recovery was performed using partial logs...

CVE-2024-46781

CVE-2024-46781 : Linux kernel nilfs2 use-after-free during rollforward recovery error. If recovery logs are partially written (dsync) and an error occurs before the log writer starts, inodes with recovered data may remain in ns_dirty_files and not be freed. The patch adds cleanup of inodes that h...

CVE-2024-46781 nilfs2: fix missing cleanup on rollforward recovery error

In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix missing cleanup on rollforward recovery error In an error injection test of a routine for mount-time recovery, KASAN found a use-after-free bug. It turned out that if data recovery was performed using partial logs...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an issue with the drm/amdgpu component where a soft recovery error is not properly passed to user space...

OESA-2024-1962 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: s390/qeth: fix deadlock during failing recovery Commit 0b9902c1fcc5 "s390/qeth: fix deadlock during recovery" removed taking disciplinemutex inside qethdoreset,...

The vulnerability in the PHPMemcachedAdmin web interface exists due to errors in the mechanism for recovering serialized data. This allows attackers to escalate their privileges and execute arbitrary PHP code.

The vulnerability of the PHPMemcachedAdmin web interface exists due to errors in the mechanism for restoring serialized data. Exploiting this vulnerability allows a malicious actor to elevate their privileges to the level of an administrator and execute arbitrary PHP code...