Astra Linux - уязвимость в linux-5.10, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: bcsp: receives data only if registered Currently, the bcsprecv function can still be called even when the BCSP protocol has not been registered. This leads to a NULL pointer dereference, as shown in the following stack...

CVE-2025-40308

CVE-2025-40308 (Linux kernel) affects the Bluetooth BCSP path (bcsp_recv) where data can be received before the BCSP protocol is registered, causing a NULL pointer dereference. Root cause: bcsp_recv may run when BCSP is not registered. The documented fix is to require the HCI_UART_REGISTERED flag...

CVE-2025-40308 Bluetooth: bcsp: receive data only if registered

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: bcsp: receive data only if registered Currently, bcsprecv can be called even when the BCSP protocol has not been registered. This leads to a NULL pointer dereference, as shown in the following stack trace: KASAN:...

PT-2025-45553

Name of the Vulnerable Software and Affected Versions WPFunnels – The Easiest Funnel Builder For WordPress And WooCommerce To Collect Leads And Increase Sales versions prior to 3.6.3 Description The WPFunnels plugin for WordPress is susceptible to unauthorized user registration. The plugin...

PT-2026-2902

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue within the drm/tilcdc subsystem related to device removal actions during probe failures. The drm kms helper poll fini and drm atomic helper shutdown...