Astra Linux - уязвимость в linux-5.10, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: arm64: topology: fix possible overflow in amufiesetup cpufreqgethwmaxfreq returns max frequency in kHz as unsigned int, while freqinvsetmaxratio gets passed this frequency in Hz as 'u64'. Multiplying max frequency by 1000 can...

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerability has been resolved: PCI: kirin: Fix for buffer overflow in kirinpcieparseport Within kirinpcieparseport, the value of pcie-numslots is compared to pcie-gpioidreset size MAXPCISLOTS, which is incorrect and could lead to a buffer overflow. Therefore,...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986729)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986729 advisory. In the Linux kernel, the following vulnerability has been resolved: ata: libata-core: fix NULL pointer deref in atahostallocpinfo In an unlikely and probably wrong?...

EUVD-2025-13985

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2023-52687

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: crypto: safexcel - Add error handling for dmamapsg calls Macro dmamapsg may return 0 on erro...

CVE-2025-38159

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: fix the 'para' buffer size to avoid reading out of bounds Set the size to 6 instead of 2, since 'para' array is passed to 'rtwfwbtwificontrolrtwdev, para0, &para1', which reads 5 bytes: void rtwfwbtwificontrolstruct...

PT-2025-27744

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A buffer size issue in the Linux kernel's wifi component, specifically in the rtw88 module, has been resolved. The issue involved reading out of bounds due to an incorrect buffer size...

SUSE CVE-2025-37851

In the Linux kernel, the following vulnerability has been resolved: fbdev: omapfb: Add 'plane' value check Function dispcovlsetup is not intended to work with the value OMAPDSSWB of the enum parameter plane. The value of this parameter is initialized in dssinitoverlays and in the current state of...

SUSE CVE-2025-37811

In the Linux kernel, the following vulnerability has been resolved: usb: chipidea: cihdrcimx: fix usbmisc handling usbmisc is an optional device property so it is totally valid for the corresponding data-usbmiscdata to have a NULL value. Check that before dereferencing the pointer. Found by Linux...

CVE-2023-53066

In the Linux kernel, the following vulnerability has been resolved: qed/qedsriov: guard against NULL derefs from qediovgetvfinfo We have to make sure that the info returned by the helper is valid before using it. Found by Linux Verification Center linuxtesting.org with the SVACE static analysis...

DEBIAN-CVE-2025-21962

In the Linux kernel, the following vulnerability has been resolved: cifs: Fix integer overflow while processing closetimeo mount option User-provided mount parameter closetimeo of type u32 is intended to have an upper limit, but before it is validated, the value is converted from seconds to jiffi...

DEBIAN-CVE-2025-21963

In the Linux kernel, the following vulnerability has been resolved: cifs: Fix integer overflow while processing acdirmax mount option User-provided mount parameter acdirmax of type u32 is intended to have an upper limit, but before it is validated, the value is converted from seconds to jiffies...

CVE-2024-58009

CVE-2024-58009 : In the Linux kernel, a NULL sock pointer could reach l2cap_sock_alloc() when invoked from l2cap_sock_new_connection_cb(), with error paths not handling NULL. The vulnerability was resolved by ensuring NULL checks (and related path awareness) in the Bluetooth L2CAP layer, effectiv...

CVE-2022-49267

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

SUSE CVE-2022-48672

In the Linux kernel, the following vulnerability has been resolved: of: fdt: fix off-by-one error in unflattendtnodes Commit 78c44d910d3e "drivers/of: Fix depth when unflattening devicetree" forgot to fix up the depth check in the loop body in unflattendtnodes which makes it possible to overflow...

UBUNTU-CVE-2022-48657

In the Linux kernel, the following vulnerability has been resolved: arm64: topology: fix possible overflow in amufiesetup cpufreqgethwmaxfreq returns max frequency in kHz as unsigned int, while freqinvsetmaxratio gets passed this frequency in Hz as 'u64'. Multiplying max frequency by 1000 can...

PT-2022-7366 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a possible overflow in the amu fie setup function. The cpufreq get hw max freq function returns the maximum frequency in kHz as an unsigned int, while the freq...

PT-2025-8195

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A buffer overflow issue has been identified in the Linux kernel's MMC core, which used the sprintf function for sysfs output. This function is vulnerable to buffer overflow. The issue wa...