Astra Linux - уязвимость в linux, linux-5.15, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: dm flakey: fixed an crash caused by an invalid table line. This command will cause a crash when using a NULL pointer dereference: dmsetup create flakey --table "0 blockdev --getsize /dev/ram0 flakey /dev/ram0 0 0 1 2 corruptbioby...

Astra Linux - уязвимость в linux-5.15, linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: drivers/virt/acrn: Fixed the PFNMAP PTE checks in acrnvmrammap. The patch series “mm: Improvements to followpte and fixes for acrn followpte”. Patch 1 fixes a number of issues I identified in the acrn driver. It’s just compile...

CVE-2026-6386 Missing large page handling in pmap_pkru_update_range()

In order to apply a particular protection key to an address range, the kernel must update the corresponding page table entries. The subroutine which handled this failed to take into account the presence of 1GB largepage mappings created using the shmcreatelargepage3 interface. In particular, it...

EUVD-2021-15355

Malware in sbrugna...

SUSE-SU-2025:20527-1 Security update for kernel-livepatch-MICRO-6-0_Update_4

This update for kernel-livepatch-MICRO-6-0Update4 fixes the following issues: - CVE-2024-53146: NFSD: prevent a potential integer overflow bsc1234854 - CVE-2024-53166: block, bfq: fix bfqq uaf in bfqlimitdepth bsc1234885 - CVE-2024-53173: NFSv4.0: Fix a use-after-free problem in the asynchronous...

Security update for kernel-livepatch-MICRO-6-0-RT_Update_4

This update for kernel-livepatch-MICRO-6-0-RTUpdate4 fixes the following issues: CVE-2024-53146: NFSD: prevent a potential integer overflow bsc1234854 CVE-2024-53166: block, bfq: fix bfqq uaf in bfqlimitdepth bsc1234885 CVE-2024-53173: NFSv4.0: Fix a use-after-free problem in the asynchronous ope...

SUSE SLES15 Security Update : kernel (Live Patch 23 for SLE 15 SP5) (SUSE-SU-2025:02393-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2025:02393-1 advisory. This update for the Linux Kernel 5.14.21-1505005594 fixes one issue. The following security issue was fixed: - CVE-2025-21772: partitions: mac: fix...

CVE-2025-37952 ksmbd: Fix UAF in __close_file_table_ids

In the Linux kernel, the following vulnerability has been resolved: ksmbd: Fix UAF in closefiletableids A use-after-free is possible if one thread destroys the file via ksmbdclosefd while another thread holds a reference to it. The existing checks on fp-refcount are not sufficient to prevent this...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a null pointer dereference issue in the ARM architecture page table handling...

The vulnerability of the select-menu.php web system for the online reservation Multi Restaurant Table Reservation System allows a perpetrator to execute arbitrary code.

The vulnerability of the select-menu.php web system for the online reservation system of the Multi Restaurant Table Reservation System is related to the lack of measures taken to protect the SQL query structure when processing the table parameter. Exploiting this vulnerability allows an attacker ...

CVE-2025-21772

In the Linux kernel, the following vulnerability has been resolved: partitions: mac: fix handling of bogus partition table Fix several issues in partition probing: - The bailout for a bad partoffset must use putdevsector, since the preceding readpartsector succeeded. - If the partition table clai...

CVE-2023-36746

Multiple heap-based buffer overflow vulnerabilities exist in the fstReaderIterBlocks2 fstWritex len functionality of GTKWave 3.3.115. A specially crafted .fst file can lead to memory corruption. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability...

RHEL 8 : grub2, mokutil, shim, and shim-unsigned-x64 (RHSA-2022:5095)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:5095 advisory. The grub2 packages provide version 2 of the Grand Unified Boot Loader GRUB, a highly configurable and customizable boot loader with modular...

SUSE: Security Advisory (SUSE-SU-2022:2038-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE: Security Advisory for grub2 (SUSE-SU-2022:2035-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

The vulnerability of Xen hypervisors, related to the use of memory after it is freed, allows a attacker to cause a service failure or increase their privileges.

The vulnerability of Xen hypervisors relates to the use of memory after it is freed during the processing of input/output page tables in the IOMMU Input/Output Memory Management Unit memory management unit. Exploiting this vulnerability can allow an attacker to cause service failures or increase...

SUSE-SU-2021:3322-1 Security update for xen

This update for xen fixes the following issues: - CVE-2021-28701: Fixed race condition in XENMAPSPACEgranttable handling XSA-384 bsc1189632. - CVE-2021-28694,CVE-2021-28695,CVE-2021-28696: Fixed IOMMU page mapping issues on x86 XSA-378bsc1189373. - CVE-2021-28697: Fixed grant table v2 status page...

SUSE SLES15 Security Update : xen (SUSE-SU-2021:2943-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:2943-1 advisory. - Observable response discrepancy in some IntelR Processors may allow an authorized user to potentially enable information disclosu...

SUSE-SU-2021:2925-1 Security update for xen

This update for xen fixes the following issues: Security issues fixed: - CVE-2021-28693: xen/arm: Boot modules are not scrubbed bsc1186428 - CVE-2021-28692: xen: inappropriate x86 IOMMU timeout detection / handling bsc1186429 - CVE-2021-0089: xen: Speculative Code Store Bypass bsc1186433 -...

CVE-2021-28698

long running loops in grant table handling In order to properly monitor resource use, Xen maintains information on the grant mappings a domain may create to map grants offered by other domains. In the process of carrying out certain actions, Xen would iterate over all such entries, including ones...