23 matches found
Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix buffer overflow in liotargetnaclinfoshow The function liotargetnaclinfoshow uses sprintf in a loop to print details for every iSCSI connection in a session without checking for the buffer length. With...
PT-2026-34392
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A Use-After-Free UAF issue exists in the SPI subsystem. When a driver is probed via the driver attach function, the bus match callback is executed without holding the device lock. This...
Unity Linux 20.1050a Security Update: kernel (UTSA-2026-006988)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006988 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix buffer overflow in liotargetnaclinfoshow The function...
Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006700)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006700 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix buffer overflow in liotargetnaclinfoshow The function...
OESA-2025-2772 kernel security update
The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: media: davinci: vpif: fix use-after-free on driver unbind The driver allocates and registers two platform device structures during probe, but the devices were...
mmc: core: use sysfs_emit() instead of sprintf()
...
SUSE CVE-2023-53676
In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix buffer overflow in liotargetnaclinfoshow The function liotargetnaclinfoshow uses sprintf in a loop to print details for every iSCSI connection in a session without checking for the buffer length. With...
CVE-2023-53676
In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix buffer overflow in liotargetnaclinfoshow The function liotargetnaclinfoshow uses sprintf in a loop to print details for every iSCSI connection in a session without checking for the buffer length. With...
UBUNTU-CVE-2023-53676
In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix buffer overflow in liotargetnaclinfoshow The function liotargetnaclinfoshow uses sprintf in a loop to print details for every iSCSI connection in a session without checking for the buffer length. With...
CVE-2023-53676 scsi: target: iscsi: Fix buffer overflow in lio_target_nacl_info_show()
In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix buffer overflow in liotargetnaclinfoshow The function liotargetnaclinfoshow uses sprintf in a loop to print details for every iSCSI connection in a session without checking for the buffer length. With...
CVE-2023-53676
The CVE-2023-53676 vulnerability affects the Linux kernel’s iSCSI target (lio_target_nacl_info_show) where printf-style buffer handling in a loop could overflow a configfs buffer. Root cause: sprintf() used without bounds checking for each iSCSI connection, enabling memory corruption with many co...
CVE-2023-53676 scsi: target: iscsi: Fix buffer overflow in lio_target_nacl_info_show()
In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix buffer overflow in liotargetnaclinfoshow The function liotargetnaclinfoshow uses sprintf in a loop to print details for every iSCSI connection in a session without checking for the buffer length. With...
PT-2025-41120
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The lio target nacl info show function within the iSCSI target component does not properly validate buffer lengths when using sprintf in a loop to display details for each iSCSI...
SUSE CVE-2025-37866
In the Linux kernel, the following vulnerability has been resolved: mlxbf-bootctl: use sysfsemitat in securebootfusestateshow A warning is seen when running the latest kernel on a BlueField SOC: 251.512704 ------------ cut here ------------ 251.512711 invalid sysfsemit: buf:0000000003aa32ae...
CVE-2025-37866
In the Linux kernel, the following vulnerability has been resolved: mlxbf-bootctl: use sysfsemitat in securebootfusestateshow A warning is seen when running the latest kernel on a BlueField SOC: 251.512704 ------------ cut here ------------ 251.512711 invalid sysfsemit: buf:0000000003aa32ae...
UBUNTU-CVE-2025-37866
In the Linux kernel, the following vulnerability has been resolved: mlxbf-bootctl: use sysfsemitat in securebootfusestateshow A warning is seen when running the latest kernel on a BlueField SOC: 251.512704 ------------ cut here ------------ 251.512711 invalid sysfsemit: buf:0000000003aa32ae...
CVE-2025-37866 mlxbf-bootctl: use sysfs_emit_at() in secure_boot_fuse_state_show()
In the Linux kernel, the following vulnerability has been resolved: mlxbf-bootctl: use sysfsemitat in securebootfusestateshow A warning is seen when running the latest kernel on a BlueField SOC: 251.512704 ------------ cut here ------------ 251.512711 invalid sysfsemit: buf:0000000003aa32ae...
SUSE CVE-2022-49267
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...
CVE-2022-49267
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...
kernel: mmc: core: use sysfs_emit() instead of sprintf()
No description is available for this CVE...