155 matches found
LLM-Based Dynamic Differential Testing for Database Connectors with Reinforcement Learning-Guided Prompt Selection
Database connectors are critical components enabling applications to interact with underlying database management systems DBMS, yet their security vulnerabilities often remain overlooked. Unlike traditional software defects, connector vulnerabilities exhibit subtle behavioral patterns and are...
Astra Linux – Vulnerability in Linux 6.12
In the Linux kernel, the following vulnerabilities have been resolved: btrfs: Proper folio cleanup should be performed when rundelallocnocow fails. BUG With CONFIGDEBUGVM set, test case generic/476 may crash due to the following VMBUGONFOLIO issues: - BTRFS error device dm-3: cowfilerange failed;...
Co-PatcheR: Collaborative Software Patching with Component(S)-Specific Small Reasoning Models
Motivated by the success of general-purpose large language models LLMs in software patching, recent works started to train specialized patching models. Most works trained one model to handle the end-to-end patching pipeline including issue localization, patch generation, and patch validation...
PT-2025-39241
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue within the Bluetooth L2CAP implementation related to the handling of encryption key sizes during incoming connections. The problem arises when the...
DEBIAN-CVE-2025-21895
In the Linux kernel, the following vulnerability has been resolved: perf/core: Order the PMU list to fix warning about unordered pmuctxlist Syskaller triggers a warning due to prevepc-pmu != nextepc-pmu in perfeventswaptaskctxdata. vmcore shows that two lists have the same perfeventpmucontext, bu...
SUSE CVE-2023-52942
In the Linux kernel, the following vulnerability has been resolved: cgroup/cpuset: Fix wrong check in updateparentsubpartscpumask It was found that the check to see if a partition could use up all the cpus from the parent cpuset in updateparentsubpartscpumask was incorrect. As a result, it is...
DEBIAN-CVE-2023-52942
In the Linux kernel, the following vulnerability has been resolved: cgroup/cpuset: Fix wrong check in updateparentsubpartscpumask It was found that the check to see if a partition could use up all the cpus from the parent cpuset in updateparentsubpartscpumask was incorrect. As a result, it is...
CVE-2023-52942
In the Linux kernel, the following vulnerability has been resolved: cgroup/cpuset: Fix wrong check in updateparentsubpartscpumask It was found that the check to see if a partition could use up all the cpus from the parent cpuset in updateparentsubpartscpumask was incorrect. As a result, it is...
UBUNTU-CVE-2023-52942
In the Linux kernel, the following vulnerability has been resolved: cgroup/cpuset: Fix wrong check in updateparentsubpartscpumask It was found that the check to see if a partition could use up all the cpus from the parent cpuset in updateparentsubpartscpumask was incorrect. As a result, it is...
CVE-2023-52942 cgroup/cpuset: Fix wrong check in update_parent_subparts_cpumask()
In the Linux kernel, the following vulnerability has been resolved: cgroup/cpuset: Fix wrong check in updateparentsubpartscpumask It was found that the check to see if a partition could use up all the cpus from the parent cpuset in updateparentsubpartscpumask was incorrect. As a result, it is...
CVE-2023-52942 cgroup/cpuset: Fix wrong check in update_parent_subparts_cpumask()
In the Linux kernel, the following vulnerability has been resolved: cgroup/cpuset: Fix wrong check in updateparentsubpartscpumask It was found that the check to see if a partition could use up all the cpus from the parent cpuset in updateparentsubpartscpumask was incorrect. As a result, it is...
CVE-2025-21881 uprobes: Reject the shared zeropage in uprobe_write_opcode()
In the Linux kernel, the following vulnerability has been resolved: uprobes: Reject the shared zeropage in uprobewriteopcode We triggered the following crash in syzkaller tests: BUG: Bad page state in process syz.7.38 pfn:1eff3 page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0...
PT-2025-14330
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.14.0-rc2+ 241 Description A vulnerability in the Linux kernel has been resolved, related to the LoongArch architecture. The issue arises when the base address allocated from hugetlbfs is not aligned with the pm...
SUSE CVE-2024-57947
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfsetpipapo: fix initial map fill The initial buffer has to be inited to all-ones, but it must restrict it to the size of the first field, not the total field size. After each round in the map search step, the result a...
CVE-2024-57947
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfsetpipapo: fix initial map fill The initial buffer has to be inited to all-ones, but it must restrict it to the size of the first field, not the total field size. After each round in the map search step, the result a...
CVE-2024-57947 netfilter: nf_set_pipapo: fix initial map fill
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfsetpipapo: fix initial map fill The initial buffer has to be inited to all-ones, but it must restrict it to the size of the first field, not the total field size. After each round in the map search step, the result a...
CVE-2024-57947 netfilter: nf_set_pipapo: fix initial map fill
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfsetpipapo: fix initial map fill The initial buffer has to be inited to all-ones, but it must restrict it to the size of the first field, not the total field size. After each round in the map search step, the result a...
DEBIAN-CVE-2024-50231
In the Linux kernel, the following vulnerability has been resolved: iio: gts-helper: Fix memory leaks in iiogtsbuildavailscaletable modprobe iio-test-gts and rmmod it, then the following memory leak occurs: unreferenced object 0xffffff80c810be00 size 64: comm "kunittrycatch", pid 1654, jiffies...
kernel: netfilter: ipset: Fix race between namespace cleanup and gc in the list:set type
In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: Fix race between namespace cleanup and gc in the list:set type Lion Ackermann reported that there is a race condition between namespace cleanup in ipset and the garbage collection of the list:set type. The...
CVE-2024-50060
In the Linux kernel, the following vulnerability has been resolved: iouring: check if we need to reschedule during overflow flush In terms of normal application usage, this list will always be empty. And if an application does overflow a bit, it'll have a few entries. However, nothing obviously...