1874 matches found
PT-2025-46625
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the f2fs filesystem related to segment migration. A race condition can occur during file allocation and garbage collection, specifically when a...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990401)
"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990401 advisory. In the Linux kernel, the following vulnerability has been resolved: seg6: fix the iif in the IPv6 socket control block When an IPv4 packet is received, the...
CMSimple_XH 安全漏洞
CMSimpleXH is a PHP-based content management system derived from the original CMSimple project and belongs to its offshoot version. CMSimpleXH suffers from a cross-site scripting vulnerability that stems from not cleaning or coding path segments under the control of an attacker, no details of the...
CLSA-2025-1762363302 frr: Fix of 4 CVEs
CVE-2022-36440: fix heap-buffer-overflow in peekforas4capability when reading BGP OPEN extended optional parameters - CVE-2023-31490: fix insufficient stream data validation in BGP prefix SID attributes processing - CVE-2023-38407: fix out-of-bounds read in BGP labeled unicast parsing -...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990202)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990202 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: set the right AMDGPU sg segment limitation The driver needs to set the correct...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989219)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989219 advisory. In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check on totaldatablocks As Yanming reported in bugzilla:...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989095)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989095 advisory. In the Linux kernel, the following vulnerability has been resolved: mmc: jz4740: Apply DMA engine limits to maximum segment size Do what is done in other DMA-enabled...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990241)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990241 advisory. In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix fortify source warning while accessing Eth segment ------------ cut here...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989398)
"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989398 advisory. In the Linux kernel, the following vulnerability has been resolved: ipv6: sr: fix out-of-bounds read when setting HMAC data. The SRv6 layer allows defining HMAC dat...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989422)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989422 advisory. In the Linux kernel, the following vulnerability has been resolved: mmc: jz4740: Apply DMA engine limits to maximum segment size Do what is done in other DMA-enabled...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989511)
"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989511 advisory. In the Linux kernel, the following vulnerability has been resolved: seg6: fix the iif in the IPv6 socket control block When an IPv4 packet is received, the...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990171)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990171 advisory. In the Linux kernel, the following vulnerability has been resolved: net: fix NULL pointer in skbsegmentlist Commit 3a1296a38d0c net: Support GRO/GSO fraglist chainin...
kernel: ipv6: sr: Fix MAC comparison to be constant-time
In the Linux kernel, the following vulnerability has been resolved: ipv6: sr: Fix MAC comparison to be constant-time To prevent timing attacks, MACs need to be compared in constant time. Use the appropriate helper function for this...
kernel: ipv6: sr: Fix MAC comparison to be constant-time
In the Linux kernel, the following vulnerability has been resolved: ipv6: sr: Fix MAC comparison to be constant-time To prevent timing attacks, MACs need to be compared in constant time. Use the appropriate helper function for this...
Astra Linux - уязвимость в linux-6.12
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to bail out in getnewsegment ------------ cut here ------------ WARNING: CPU: 3 PID: 579 at fs/f2fs/segment.c:2832 newcurseg+0x5e8/0x6dc pc : newcurseg+0x5e8/0x6dc Call trace: newcurseg+0x5e8/0x6dc...
Astra Linux – Vulnerability found in Linux 6.12, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: seg6: Fixed validation of nexthop addresses The kernel currently validates that the length of the provided nexthop address does not exceed the specified length. This could lead to the kernel reading uninitialized memory if the us...
Siemens SIMATIC Devices Incomplete Cleanup (CVE-2024-38612)
In the Linux kernel, the following vulnerability has been resolved: ipv6: sr: fix invalid unregister error path The error path of seg6init is wrong in case CONFIGIPV6SEG6LWTUNNEL is not defined. In that case if seg6hmacinit fails, the genlunregisterfamily isn't called. This issue exist since comm...
FRRouting 安全漏洞
FRRouting is FRRouting open source a network routing software suite running on a Unix-like platform . FRRouting has a denial of service vulnerability caused by NULL pointer dereference via the showvtyextlinklanadjsid function on ospfext.c, which can be exploited by an attacker to cause a denial o...
EUVD-2022-54707
In the Linux kernel, the following vulnerability has been resolved: mmc: jz4740: Apply DMA engine limits to maximum segment size Do what is done in other DMA-enabled MMC host drivers cf. host/mmci.c and limit the maximum segment size based on the DMA engine's capabilities. This is needed to avoid...
EUVD-2022-54873
In the Linux kernel, the following vulnerability has been resolved: SUNRPC: Trap RDMA segment overflows Prevent svcrdmabuildwrites from walking off the end of a Write chunk's segment array. Caught with KASAN. The test that this fix replaces is invalid, and might have been left over from an earlie...