OESA-2025-2278 httpd security update

Apache HTTP Server is a powerful and flexible HTTP/1.1 compliant web server. Security Fixes: HTTP response splitting in the core of Apache HTTP Server allows an attacker who can manipulate the Content-Type response headers of applications hosted or proxied by the server can split the HTTP respons...

UBUNTU-CVE-2025-39791

In the Linux kernel, the following vulnerability has been resolved: dm: dm-crypt: Do not partially accept write BIOs with zoned targets Read and write operations issued to a dm-crypt target may be split according to the dm-crypt internal limits defined by the maxreadsize and maxwritesize module...

PT-2025-37248

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a flaw within the dm-crypt module related to handling write operations on zoned storage devices. Specifically, the issue arises from the splitting of BIOs blo...

PT-2025-54576

Name of the Vulnerable Software and Affected Versions Google Chrome affected versions not specified Description A flaw exists in the Split View component of the Google Chrome browser related to errors in how information is presented in the user interface. Remote exploitation of this issue could...

CVE-2025-39725 mm/vmscan: fix hwpoisoned large folio handling in shrink_folio_list

In the Linux kernel, the following vulnerability has been resolved: mm/vmscan: fix hwpoisoned large folio handling in shrinkfoliolist In shrinkfoliolist, the hwpoisoned folio may be large folio, which can't be handled by unmappoisonedfolio. For THP, trytounmapone must be passed with TTUSPLITHUGEP...

PT-2025-36319

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue within the shrink folio list function related to handling hardware-poisoned large folios. Specifically, the function fails to correctly handle large...

DEBIAN-CVE-2025-38686

In the Linux kernel, the following vulnerability has been resolved: userfaultfd: fix a crash in UFFDIOMOVE when PMD is a migration entry When UFFDIOMOVE encounters a migration PMD entry, it proceeds with obtaining a folio and accessing it even though the entry is swpentryt. Add the missing check...

CVE-2025-38686

In the Linux kernel, the following vulnerability has been resolved: userfaultfd: fix a crash in UFFDIOMOVE when PMD is a migration entry When UFFDIOMOVE encounters a migration PMD entry, it proceeds with obtaining a folio and accessing it even though the entry is swpentryt. Add the missing check...

UBUNTU-CVE-2025-38686

In the Linux kernel, the following vulnerability has been resolved: userfaultfd: fix a crash in UFFDIOMOVE when PMD is a migration entry When UFFDIOMOVE encounters a migration PMD entry, it proceeds with obtaining a folio and accessing it even though the entry is swpentryt. Add the missing check...

CVE-2025-38686 userfaultfd: fix a crash in UFFDIO_MOVE when PMD is a migration entry

In the Linux kernel, the following vulnerability has been resolved: userfaultfd: fix a crash in UFFDIOMOVE when PMD is a migration entry When UFFDIOMOVE encounters a migration PMD entry, it proceeds with obtaining a folio and accessing it even though the entry is swpentryt. Add the missing check...

Brave Desktop 1.82.161 Security Fixes

Disabled "navigator.share" in Tor windows on macOS as reported on HackerOne by cinzinga. - Treat ".onion" hostnames as secure for insecure form warnings and autofill as reported on HackerOne by newfunction. - Prevent tab modal dialogs being shown from inactive split tab as reported on HackerOne...

drm/amd/display: Pass non-null to dcn20_validate_apply_pipe_split_flags

...

Linux Distros Unpatched Vulnerability : CVE-2025-38563

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - perf/core: Prevent VMA split of buffer mappings The perf mmap code is careful about mmap'ing the user page with the ringbuffer and additionally the auxiliary...

Linux Distros Unpatched Vulnerability : CVE-2022-28734

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Out-of-bounds write when handling split HTTP headers; When handling split HTTP headers, GRUB2 HTTP code accidentally moves its internal data buffer point by one...

kernel: ext4: fix off-by-one error in do_split

In the Linux kernel, the following vulnerability has been resolved: ext4: fix off-by-one error in dosplit Syzkaller detected a use-after-free issue in ext4insertdentry that was caused by out-of-bounds access due to incorrect splitting in dosplit. BUG: KASAN: use-after-free in...

Important: Red Hat Security Advisory: kernel-rt security update

An update for kernel-rt is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

kernel: ext4: fix off-by-one error in do_split

In the Linux kernel, the following vulnerability has been resolved: ext4: fix off-by-one error in dosplit Syzkaller detected a use-after-free issue in ext4insertdentry that was caused by out-of-bounds access due to incorrect splitting in dosplit. BUG: KASAN: use-after-free in...

Linux Distros Unpatched Vulnerability : CVE-2019-13445

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the ROS communications-related packages aka roscomm or ros-melodic-ros-comm through 1.14.3. parseOptions in tools/rosbag/src/record.c...

Linux Distros Unpatched Vulnerability : CVE-2020-12831

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in FRRouting FRR aka Free Range Routing through 7.3.1. When using the split- config feature, the init script creates an empty config fil...

Linux Distros Unpatched Vulnerability : CVE-2017-7459

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ntopng before 3.0 allows HTTP Response Splitting. CVE-2017-7459 Note that Nessus relies on the presence of the package as reported by the vendor. %NASLMINLEVEL...