Astra Linux - уязвимость в firefox

Under unusual circumstances, an individual thread may survive the termination of its manager during shutdown. This could lead to a use-after-free condition, resulting in a potentially exploitable crash. This vulnerability affects Firefox versions earlier than 98...

GHSA-6V92-PH9P-HRPC AMF Vulnerable to Improper Resource Shutdown or Release

A security vulnerability has been detected in omec-project amf up to 2.1.3-dev. This impacts the function UERadioCapabilityCheckResponse of the file ngap/dispatcher.go. Such manipulation leads to null pointer dereference. The attack can be executed remotely. The exploit has been disclosed publicl...

Linux Distros Unpatched Vulnerability : CVE-2023-53755

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - dmaengine: ptdma: check for null desc before calling ptcmdcallback Resolves a panic that can occur on AMD systems, typically during host shutdown, after the PTD...

EUVD-2020-3269

Malware in sbrugna...

EUVD-2025-30933

Malicious code in bioql PyPI...

OESA-2025-2243 tomcat security update

Tomcat is the servlet container that is used in the official Reference Implementation for the Java Servlet and JavaServer Pages technologies. The Java Servlet and JavaServer Pages specifications are developed by Sun under the Java Community Process. Security Fixes: Apache Tomcat is vulnerable to...

Linux Distros Unpatched Vulnerability : CVE-2025-39711

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - media: ivsc: Fix crash at shutdown due to missing meicldevdisable calls Both the ACE and CSI driver are missing a meicldevdisable call in their remove function...

CVE-2025-49482

Improper Resource Shutdown or Release vulnerability in ASR180x 、ASR190x in tr069 modules allows Resource Leak Exposure. This vulnerability is associated with program files tr069/tr098.c. This issue affects FalconLinux、Kestrel、LapwingLinux: before v1536...

PT-2025-27514

Name of the Vulnerable Software and Affected Versions: ASR Falcon Linux versions prior to v1536 ASR Kestrel versions prior to v1536 ASR Lapwing Linux versions prior to v1536 Description: The issue is related to an Improper Resource Shutdown or Release, which allows Resource Leak Exposure. This is...

CVE-2025-38064 virtio: break and reset virtio devices on device_shutdown()

In the Linux kernel, the following vulnerability has been resolved: virtio: break and reset virtio devices on deviceshutdown Hongyu reported a hang on kexec in a VM. QEMU reported invalid memory accesses during the hang. Invalid read at addr 0x102877002, size 2, region 'null', reason: rejected...

CVE-2025-21871

Summary of CVE-2025-21871 (Linux kernel): The vulnerability arises in the OP-TEE subsystem where the supplicant wait loop can cause a hang if the supplicant is hung/crashed/killed during an OP-TEE RPC, especially with shutdown ordering issues between the supplicant and the OP-TEE client. The fix ...

Linux Distros Unpatched Vulnerability : CVE-2024-57926

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Set private-alldrmprivatei-drm to NULL if mtkdrmbind returns err The pointer...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel, which stems from a failure to cancel a pending job when shutting down a MIDI subflow...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the iommu/arm-smmu driver should not be logged off when shutting down...

CVE-2024-40969 f2fs: don't set RO when shutting down f2fs

In the Linux kernel, the following vulnerability has been resolved: f2fs: don't set RO when shutting down f2fs Shutdown does not check the error of thawsuper due to readonly, which causes a deadlock like below. f2fsiocshutdownF2FSGOINGDOWNFULLSYNC issuediscardthread - bdevfreeze - freezesuper -...

CVE-2021-47603 audit: improve robustness of the audit queue handling

In the Linux kernel, the following vulnerability has been resolved: audit: improve robustness of the audit queue handling If the audit daemon were ever to get stuck in a stopped state the kernel's kauditdthread could get blocked attempting to send audit records to the userspace audit daemon. With...

CVE-2024-26708 mptcp: really cope with fastopen race

In the Linux kernel, the following vulnerability has been resolved: mptcp: really cope with fastopen race Fastopen and PM-trigger subflow shutdown can race, as reported by syzkaller. In my first attempt to close such race, I missed the fact that the subflow status can change again before the...

UBUNTU-CVE-2021-47056

In the Linux kernel, the following vulnerability has been resolved: crypto: qat - ADFSTATUSPFRUNNING should be set after adfdevinit ADFSTATUSPFRUNNING is only used and checked by adfvf2pfshutdown before calling adfiovputmsg-mutexlockvf2pflock, however the vf2pflock is initialized in adfdevinit,...

PT-2022-33946 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.61 Description: The issue is related to a schedule out problem in the machine crash shutdown function. The actual impact and potential for attack have not been proven yet. Recommendations: For versions pri...

USN-5399-1 libvirt vulnerabilities

It was discovered that libvirt incorrectly handled certain locking operations. A local attacker could possibly use this issue to cause libvirt to stop accepting connections, resulting in a denial of service. This issue only affected Ubuntu 20.04 LTS. CVE-2021-3667 It was discovered that libvirt...