21 matches found
CVE-2026-24491
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, videotimer can send client notifications after the control channel is closed, dereferencing a freed callback and triggering a use after free. This vulnerability is fixed in 3.22.0...
Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005073)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005073 advisory. In the Linux kernel, the following vulnerability has been resolved: watchdog: cpu5wdt.c: Fix use-after-free bug caused by cpu5wdttrigger When the cpu5wdt module is...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004424)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004424 advisory. In the Linux kernel before 5.3.11, sound/core/timer.c has a use-after-free caused by erroneous code refactoring, aka CID-e7af6307a8a5. This is related to sndtimerope...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002832)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002832 advisory. sound/core/timer.c in the Linux kernel before 4.4.1 retains certain linked lists after a close or stop action, which allows local users to cause a denial of service...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992711)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992711 advisory. In the Linux kernel, the following vulnerability has been resolved: ath11k: fix netdev open race Make sure to allocate resources needed before registering the device...
Linux Distros Unpatched Vulnerability : CVE-2025-40284
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Bluetooth: MGMT: cancel mesh send timer when hdev removed meshsenddone timer is not canceled when hdev is removed, which causes crash if the timer triggers afte...
DEBIAN-CVE-2025-39995
In the Linux kernel, the following vulnerability has been resolved: media: i2c: tc358743: Fix use-after-free bugs caused by orphan timer in probe The state-timer is a cyclic timer that schedules worki2cpoll and delayedworkenablehotplug, while rearming itself. Using timerdelete fails to guarantee...
EUVD-2022-55451
Malicious code in bioql PyPI...
CVE-2023-53189 ipv6/addrconf: fix a potential refcount underflow for idev
In the Linux kernel, the following vulnerability has been resolved: ipv6/addrconf: fix a potential refcount underflow for idev Now in addrconfmodrstimer, reference idev depends on whether rstimer is not pending. Then modify rstimer timeout. There is a time gap in 1, during which if the pending...
Linux Distros Unpatched Vulnerability : CVE-2025-38378
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: HID: appletb-kbd: fix slab use-after- free bug in appletbkbdprobe In probe appletbkbdprobe a...
Linux Distros Unpatched Vulnerability : CVE-2019-19807
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel before 5.3.11, sound/core/timer.c has a use-after-free caused by erroneous code refactoring, aka CID-e7af6307a8a5. This is related to...
SUSE CVE-2022-50187
In the Linux kernel, the following vulnerability has been resolved: ath11k: fix netdev open race Make sure to allocate resources needed before registering the device. This specifically avoids having a racing open trigger a BUGON in modtimer when ath11kmacopstart is called before the monreaptimer ...
CLSA-2025-1736783731 kernel: Fix of 10 CVEs
media: edia: dvbdev: fix a use-after-free CVE-2024-27043 - vsock/virtio: Initialization of the dangling pointer occurring in vsk-trans CVE-2024-50264 - net/sched: stop qdisctreereducebacklog on TCHROOT CVE-2024-53057 - bpf: Fix out-of-bounds write in triegetnextkey CVE-2024-50262 - KVM: nSVM:...
CLSA-2023-1682711913 kernel: Fix of 7 CVEs
mISDN: fix use-after-free bugs in l1oip timer handlers CVE-2022-3565 - media: rc: Fix use-after-free bugs caused by enetxirqsim CVE-2023-1118 - Bluetooth: btsdio: fix use after free bug in btsdioremove due to unfinished work CVE-2023-1989 - proc: procskipspaces shouldn't think it is working on C...
kernel: ath11k: fix netdev open race
In the Linux kernel, the following vulnerability has been resolved: ath11k: fix netdev open race Make sure to allocate resources needed before registering the device. This specifically avoids having a racing open trigger a BUGON in modtimer when ath11kmacopstart is called before the monreaptimer ...
kernel: ath11k: fix netdev open race
In the Linux kernel, the following vulnerability has been resolved: ath11k: fix netdev open race Make sure to allocate resources needed before registering the device. This specifically avoids having a racing open trigger a BUGON in modtimer when ath11kmacopstart is called before the monreaptimer ...
PT-2024-11352 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a possible use-after-free in the nicstar cleanup function. The problem arises because the del timer function does not wait for the timer handler to finish, whic...
Important: kernel-livepatch-4.14.173-137.228
Issue Overview: An issue was discovered in the Linux kernel before 5.6.5. There is a use-after-free in block/bfq-iosched.c related to bfqidleslicetimerbody.CVE-2020-12657 Affected Packages: kernel-livepatch-4.14.173-137.228 Issue Correction: Please ensure you have live patching enabled. Run yum...
SUSE-SU-2019:0054-2 Security update for systemd
This update for systemd fixes the following issues: Fix security vulnerabilities CVE-2018-16864 and CVE-2018-16865 bsc1120323: Both issues were memory corruptions via attacker-controlled alloca which could have been used to gain root privileges by a local attacker. Fix security vulnerability...
SUSE SLES12 Security Update : systemd (SUSE-SU-2019:0053-1)
This update for systemd fixes the following issues : Fix security vulnerabilities CVE-2018-16864 and CVE-2018-16865 bsc1120323: Both issues were memory corruptions via attacker-controlled alloca which could have been used to gain root privileges by a local attacker. Fix security vulnerability...