17 matches found
EUVD-2025-19828
Malicious code in bioql PyPI...
EUVD-2025-5254
Malicious code in bioql PyPI...
EUVD-2025-13064
Malicious code in bioql PyPI...
Unbreakable Enterprise kernel security update
5.4.17-2136.347.6 - netsched: schsfq: move the limit validation Octavian Purdila Orabug: 38377926 CVE-2025-37752 - netsched: schsfq: use a temporary work area for validating configuration Octavian Purdila Orabug: 38377926 - netsched: schsfq: don't allow 1 packet limit Octavian Purdila Orabug:...
SUSE-SU-2025:20574-1 Security update for kernel-livepatch-MICRO-6-0_Update_9
This update for kernel-livepatch-MICRO-6-0Update9 fixes the following issues: - CVE-2025-37752: netsched: schsfq: move the limit validation bsc1245776 - CVE-2025-37797: netsched: hfsc: Fix a UAF vulnerability in class handling bsc1245793 - CVE-2025-21702: pfifotailenqueue: Drop new packet when...
net_sched: sch_sfq: reject invalid perturb period
...
Security update for the Linux Kernel (Live Patch 57 for SLE 15 SP3)
This update for the Linux Kernel 5.3.18-15030059204 fixes several issues. The following security issues were fixed: CVE-2025-37797: netsched: hfsc: Fix a UAF vulnerability in class handling bsc1245793. CVE-2025-37752: netsched: schsfq: move the limit validation bsc1245776. CVE-2025-21702:...
CVE-2025-38115
In the Linux kernel, the following vulnerability has been resolved: netsched: schsfq: fix a potential crash on gsoskb handling SFQ has an assumption of always being able to queue at least one packet. However, after the blamed commit, sch-q.len can be inflated by packets in sch-gsoskb, and an...
CVE-2025-38115
CVE-2025-38115 — Linux kernel net_sched SFQ crash fix A vulnerability in the SFQ qdisc of net_sched allowed a crash when handling gso_skb due to an inflated sch->q.len after a blamed commit. This could enable an enqueue on an already-empty SFQ queue followed by an immediate drop. The issue was...
Security update for the Linux Kernel (Live Patch 9 for SLE 15 SP6)
This update for the Linux Kernel 6.4.0-1506002342 fixes one issue. The following security issue was fixed: CVE-2024-57996: netsched: schsfq: do not allow 1 packet limit bsc1239077. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate...
SUSE-SU-2025:20389-1 Security update for kernel-livepatch-MICRO-6-0_Update_5
This update for kernel-livepatch-MICRO-6-0Update5 fixes the following issues: - CVE-2025-21680: pktgen: avoid out-of-bounds access in getimixentries bsc1236701 - CVE-2024-58013: Bluetooth: MGMT: Fix slab-use-after-free Read in mgmtremoveadvmonitorsync bsc1239096 - CVE-2024-57996: netsched: schsfq...
SUSE-SU-2025:20398-1 Security update for kernel-livepatch-MICRO-6-0_Update_4
This update for kernel-livepatch-MICRO-6-0Update4 fixes the following issues: - CVE-2025-21680: pktgen: avoid out-of-bounds access in getimixentries bsc1236701 - CVE-2024-58013: Bluetooth: MGMT: Fix slab-use-after-free Read in mgmtremoveadvmonitorsync bsc1239096 - CVE-2024-57996: netsched: schsfq...
Security update for kernel-livepatch-MICRO-6-0_Update_4
This update for kernel-livepatch-MICRO-6-0Update4 fixes the following issues: CVE-2025-21680: pktgen: avoid out-of-bounds access in getimixentries bsc1236701 CVE-2024-58013: Bluetooth: MGMT: Fix slab-use-after-free Read in mgmtremoveadvmonitorsync bsc1239096 CVE-2024-57996: netsched: schsfq: don'...
SUSE SLES15 Security Update : kernel RT (Live Patch 9 for SLE 15 SP6) (SUSE-SU-2025:01843-1)
The remote SUSE Linux SLES15 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2025:01843-1 advisory. This update for the Linux Kernel 6.4.0-1506001029 fixes one issue. The following security issue was fixed: - CVE-2024-57996: netsched: schsfq: do not...
CVE-2025-37752
In the Linux kernel, the following vulnerability has been resolved: netsched: schsfq: move the limit validation It is not sufficient to directly validate the limit on the data that the user passes as it can be updated based on how the other parameters are changed. Move the check at the end of the...
CVE-2025-37752 net_sched: sch_sfq: move the limit validation
In the Linux kernel, the following vulnerability has been resolved: netsched: schsfq: move the limit validation It is not sufficient to directly validate the limit on the data that the user passes as it can be updated based on how the other parameters are changed. Move the check at the end of the...
CVE-2024-57996 net_sched: sch_sfq: don't allow 1 packet limit
In the Linux kernel, the following vulnerability has been resolved: netsched: schsfq: don't allow 1 packet limit The current implementation does not work correctly with a limit of 1. iproute2 actually checks for this and this patch adds the check in kernel as well. This fixes the following...