DEBIAN-CVE-2025-39745

In the Linux kernel, the following vulnerability has been resolved: rcutorture: Fix rcutortureoneextendcheck splat in RT kernels For built with CONFIGPREEMPTRT=y kernels, running rcutorture tests resulted in the following splat: 68.797425 rcutortureoneextendcheck during change: Current 0x1 To add...

CVE-2024-43834 xdp: fix invalid wait context of page_pool_destroy()

In the Linux kernel, the following vulnerability has been resolved: xdp: fix invalid wait context of pagepooldestroy If the driver uses a page pool, it creates a page pool with pagepoolcreate. The reference count of page pool is 1 as default. A page pool will be destroyed only when a reference...

CVE-2024-39502

In the Linux kernel, the following vulnerability has been resolved: ionic: fix use after netifnapidel When queues are started, netifnapiadd and napienable are called. If there are 4 queues and only 3 queues are used for the current configuration, only 3 queues' napi should be registered and...

Linux 6.4 io_uring Use-After-Free Exploit

Linux =6.4: iouring: page UAF via buffer ring mmap Since commit c56e022c0a27 "iouring: add support for user mapped provided buffer ring", landed in Linux 6.4, iouring makes it possible to allocate, mmap, and deallocate "buffer rings". A "buffer ring" can be allocated with iouringregister...,...