84 matches found
Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15
In the Linux kernel, the following vulnerability has been resolved: crypto: marvell/cesa – Handles zero-length skcipher requests Do not access random memory for zero-length skcipher requests. Simply return 0...
Azure Linux 3.0 Security Update: kernel (CVE-2025-38173)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38173 advisory. - In the Linux kernel, the following vulnerability has been resolved: crypto: marvell/cesa - Handle zero- leng...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004791)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004791 advisory. A flaw was found in the subsequent getuserpagesfast in the Linux kernels interface for symmetric key cipher algorithms in the skcipherrecvmsg of crypto/algifskcipher...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001304)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001304 advisory. The cryptoskcipherinittfm function in crypto/skcipher.c in the Linux kernel through 4.11.2 relies on a setkey function that lacks a key-size check, which allows loca...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001272)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001272 advisory. The Salsa20 encryption algorithm in the Linux kernel before 4.14.8 does not correctly handle zero-length inputs, allowing a local attacker able to use the AFALG-base...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000995)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000995 advisory. A elevation of privilege vulnerability in the Upstream kernel skcipher. Product: Android. Versions: Android kernel. Android ID: A-64386293. References: Upstream...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001027)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001027 advisory. The crypto API in the Linux kernel through 3.9-rc8 does not initialize certain length variables, which allows local users to obtain sensitive information from kernel...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001642)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001642 advisory. A flaw was found in the crypto subsystem of the Linux kernel before version kernel-4.15-rc4. The null skcipher was being dropped when each afalgctx was freed instead...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003472)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003472 advisory. The cryptoskcipherinittfm function in crypto/skcipher.c in the Linux kernel through 4.11.2 relies on a setkey function that lacks a key-size check, which allows loca...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003420)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003420 advisory. A elevation of privilege vulnerability in the Upstream kernel skcipher. Product: Android. Versions: Android kernel. Android ID: A-64386293. References: Upstream...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003289)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003289 advisory. A elevation of privilege vulnerability in the Upstream kernel skcipher. Product: Android. Versions: Android kernel. Android ID: A-64386293. References: Upstream...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003104)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003104 advisory. The Salsa20 encryption algorithm in the Linux kernel before 4.14.8 does not correctly handle zero-length inputs, allowing a local attacker able to use the AFALG-base...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003138)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003138 advisory. The cryptoskcipherinittfm function in crypto/skcipher.c in the Linux kernel through 4.11.2 relies on a setkey function that lacks a key-size check, which allows loca...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003262)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003262 advisory. A flaw was found in the crypto subsystem of the Linux kernel before version kernel-4.15-rc4. The null skcipher was being dropped when each afalgctx was freed instead...
Linux Distros Unpatched Vulnerability : CVE-2022-50707
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - virtio-crypto: fix memory leak in virtiocryptoalgskcipherclosesession 'vcctrlreq' is alloced in virtiocryptoalgskcipherclosesession, and should be freed in the...
CVE-2022-50707
In the Linux kernel, the following vulnerability has been resolved: virtio-crypto: fix memory leak in virtiocryptoalgskcipherclosesession 'vcctrlreq' is alloced in virtiocryptoalgskcipherclosesession, and should be freed in the invalid ctrlstatus-status error handling case. Otherwise there is a...
UBUNTU-CVE-2022-50707
In the Linux kernel, the following vulnerability has been resolved: virtio-crypto: fix memory leak in virtiocryptoalgskcipherclosesession 'vcctrlreq' is alloced in virtiocryptoalgskcipherclosesession, and should be freed in the invalid ctrlstatus-status error handling case. Otherwise there is a...
EUVD-2025-150392
In the Linux kernel, the following vulnerability has been resolved: crypto: skcipher - Fix reqsize handling Commit afddce13ce81d "crypto: api - Add reqsize to cryptoalg" introduced crareqsize field in cryptoalg struct to replace type specific reqsize fields. It looks like this was introduced...
Linux Distros Unpatched Vulnerability : CVE-2025-40182
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: crypto: skcipher - Fix reqsize handling Commit afddce13ce81d crypto: api - Add reqsize to...
DEBIAN-CVE-2025-40182
In the Linux kernel, the following vulnerability has been resolved: crypto: skcipher - Fix reqsize handling Commit afddce13ce81d "crypto: api - Add reqsize to cryptoalg" introduced crareqsize field in cryptoalg struct to replace type specific reqsize fields. It looks like this was introduced...