158 matches found
UBUNTU-CVE-2022-50580
In the Linux kernel, the following vulnerability has been resolved: blk-throttle: prevent overflow while calculating wait time There is a problem found by code review in tgwithinbpslimit that 'bpslimit jiffyelapsedrnd' might overflow. Fix the problem by calling mulu64u64divu64 instead...
CVE-2022-50580 blk-throttle: prevent overflow while calculating wait time
In the Linux kernel, the following vulnerability has been resolved: blk-throttle: prevent overflow while calculating wait time There is a problem found by code review in tgwithinbpslimit that 'bpslimit jiffyelapsedrnd' might overflow. Fix the problem by calling mulu64u64divu64 instead...
CVE-2022-50580
CVE-2022-50580 affects the Linux kernel’s blk-throttle code. A risk existed that in tg_with_in_bps_limit() the expression bps_limit * jiffy_elapsed_rnd could overflow. The fix substitutes a safe multiplication/division helper, calling mul_u64_u64_div_u64() to prevent overflow. Several sources (in...
CVE-2022-50580 blk-throttle: prevent overflow while calculating wait time
In the Linux kernel, the following vulnerability has been resolved: blk-throttle: prevent overflow while calculating wait time There is a problem found by code review in tgwithinbpslimit that 'bpslimit jiffyelapsedrnd' might overflow. Fix the problem by calling mulu64u64divu64 instead...
EUVD-2002-0887
Malware in sbrugna...
EUVD-2024-53787
Malicious code in bioql PyPI...
EUVD-2022-54764
Malicious code in bioql PyPI...
CVE-2025-39821 perf: Avoid undefined behavior from stopping/starting inactive events
In the Linux kernel, the following vulnerability has been resolved: perf: Avoid undefined behavior from stopping/starting inactive events Calling pmu-start/stop on perf events in PERFEVENTSTATEOFF can leave event-hw.idx at -1. When PMU drivers later attempt to use this negative index as a shift...
EulerOS 2.0 SP10 : kernel (EulerOS-SA-2025-2100)
According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : KVM: SVM: Don't BUG if userspace injects an interrupt with GIF=0CVE-2022-50228 md: call mdstopwrites in mdstopCVE-2022-49987 iommu/vt-d: avoid...
PT-2025-46622
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contained a flaw in the block I/O throttling mechanism. Specifically, a race condition existed during throttle policy activation, potentially leading to a NULL pointer...
taky-cache-loop (=0.0.1), taky-redis-throttle (=0.0.1) potentially affected by unknown CVE via every-time (=0.0.0)
every-time NPM version =0.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on every-time and may be impacted: - taky-cache-loop =0.0.1 - taky-redis-throttle =0.0.1 Source cves: unknown CVE Source advisory: OSV:MAL-2025-19990...
Malicious code in shopify-throttle (npm)
The package shopify-throttle was found to contain malicious code...
MAL-2025-33140 Malicious code in shopify-throttle (npm)
The package shopify-throttle was found to contain malicious code...
dm: fix unconditional IO throttle caused by REQ_PREFLUSH
...
CVE-2025-54879
Mastodon is a free, open-source social network server based on ActivityPub Mastodon which facilitates LDAP configuration for authentication. In versions 3.1.5 through 4.2.24, 4.3.0 through 4.3.11 and 4.4.0 through 4.4.3, Mastodon's rate-limiting system has a critical configuration error where the...
CVE-2025-54879 Mastodon e‑mail throttle misconfiguration allows unlimited email confirmations against unconfirmed emails
Mastodon is a free, open-source social network server based on ActivityPub Mastodon which facilitates LDAP configuration for authentication. In versions 3.1.5 through 4.2.24, 4.3.0 through 4.3.11 and 4.4.0 through 4.4.3, Mastodon's rate-limiting system has a critical configuration error where the...
CVE-2025-54879
CVE-2025-54879 affects Mastodon when using the email-based confirmation throttle. The root cause is a misconfiguration in Mastodon’s rate-limiting: the email throttle checks the password-reset path instead of the confirmation path, effectively disabling per-email limits for confirmation requests....
Security update for the Linux Kernel (Live Patch 37 for SLE 15 SP4)
This update for the Linux Kernel 5.14.21-15040024153 fixes several issues. The following security issues were fixed: CVE-2022-49465: blk-throttle: Set BIOTHROTTLED when bio has been throttled bsc1238920. CVE-2025-21772: partitions: mac: fix handling of bogus partition table bsc1238912...
Security update for the Linux Kernel (Live Patch 54 for SLE 15 SP3)
This update for the Linux Kernel 5.3.18-15030059195 fixes several issues. The following security issues were fixed: CVE-2022-49465: blk-throttle: Set BIOTHROTTLED when bio has been throttled bsc1238920. CVE-2025-21772: partitions: mac: fix handling of bogus partition table bsc1238912...
SUSE-SU-2025:02418-1 Security update for the Linux Kernel (Live Patch 54 for SLE 15 SP3)
This update for the Linux Kernel 5.3.18-15030059195 fixes several issues. The following security issues were fixed: - CVE-2022-49465: blk-throttle: Set BIOTHROTTLED when bio has been throttled bsc1238920. - CVE-2025-21772: partitions: mac: fix handling of bogus partition table bsc1238912. -...