76 matches found
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: video: fbdev: nvidiafb: Use strscpy to prevent buffer overflow Coverity reports a possible buffer overflow issue. However, given the ‘static’ scope of nvidiasetupi2cbus, it seems that this issue cannot occur after examining the...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: The issue was that can: ucan: introduced an out-of-bound read in the strscpy function’s source code. Commit 7fdaf8966aae “can: ucan: use strscpy instead of strncpy” inadvertently resulted in an out-of-bound read of one byte from...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: Bluetooth: hcicore: Fixed possible buffer overflow issues. The struct hcidevinfo structure has a name8 field with a fixed size. In cases where hdev-name is larger than this size, strcpy would attempt to write beyond its size...
Azure Linux 3.0 Security Update: kernel (CVE-2025-22003)
"The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-22003 advisory. - In the Linux kernel, the following vulnerability has been resolved: can: ucan: fix out of bound read in...
CVE-2025-71123 ext4: fix string copying in parse_apply_sb_mount_options()
In the Linux kernel, the following vulnerability has been resolved: ext4: fix string copying in parseapplysbmountoptions strscpypad can't be used to copy a non-NUL-term string into a NUL-term string of possibly bigger size. Commit 0efc5990bca5 "string.h: Introduce memtostr and memtostrpad" provid...
kernel: NFS: Fix potential buffer overflowin nfs_sysfs_link_rpc_client()
In the Linux kernel, the following vulnerability has been resolved: NFS: Fix potential buffer overflowin nfssysfslinkrpcclient name is char64 where the size of clnt-clprogram-name remains unknown. Invoking strcat directly will also lead to potential buffer overflow. Change them to strscpy and...
kernel: NFS: Fix potential buffer overflowin nfs_sysfs_link_rpc_client()
In the Linux kernel, the following vulnerability has been resolved: NFS: Fix potential buffer overflowin nfssysfslinkrpcclient name is char64 where the size of clnt-clprogram-name remains unknown. Invoking strcat directly will also lead to potential buffer overflow. Change them to strscpy and...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990455)
"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990455 advisory. In the Linux kernel, the following vulnerability has been resolved: video: fbdev: nvidiafb: Use strscpy to prevent buffer overflow Coverity complains of a possible...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990626)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990626 advisory. In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcicore: Fix possible buffer overflow struct hcidevinfo has a fixed size name8 field s...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989215)
"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989215 advisory. In the Linux kernel, the following vulnerability has been resolved: video: fbdev: nvidiafb: Use strscpy to prevent buffer overflow Coverity complains of a possible...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989963)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989963 advisory. In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcicore: Fix possible buffer overflow struct hcidevinfo has a fixed size name8 field s...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990359)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990359 advisory. In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcicore: Fix possible buffer overflow struct hcidevinfo has a fixed size name8 field s...
Unity Linux 20.1050e Security Update: kernel (UTSA-2025-990107)
"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990107 advisory. In the Linux kernel, the following vulnerability has been resolved: video: fbdev: nvidiafb: Use strscpy to prevent buffer overflow Coverity complains of a possible...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987568)
"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987568 advisory. In the Linux kernel, the following vulnerability has been resolved: video: fbdev: nvidiafb: Use strscpy to prevent buffer overflow Coverity complains of a possible...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986503)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986503 advisory. In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcicore: Fix possible buffer overflow struct hcidevinfo has a fixed size name8 field s...
EUVD-2025-9600
Malicious code in bioql PyPI...
EUVD-2021-34662
Malicious code in bioql PyPI...
EUVD-2022-54828
Malicious code in bioql PyPI...
EUVD-2024-24151
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2025-22003
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: can: ucan: fix out of bound read in strscpy source Commit 7fdaf8966aae can: ucan: use strsc...