Oracle Linux 9 : kernel (ELSA-2025-15740)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-15740 advisory. - ipv6: mcast: Delay put pmc-idev in mlddeldelrec CKI Backport Bot RHEL-111149 CVE-2025-38550 - posix-cpu-timers: fix race between handleposixcputimers and...

jfs: Fix null-ptr-deref in jfs_ioc_trim

...

Linux Distros Unpatched Vulnerability : CVE-2021-33623

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The trim-newlines package before 3.0.1 and 4.x before 4.0.1 for Node.js has an issue related to regular expression denial-of-service ReDoS for the .end method...

Linux Distros Unpatched Vulnerability : CVE-2023-23612

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenSearch is an open source distributed and RESTful search engine. OpenSearch uses JWTs to store role claims obtained from the Identity Provider IdP when the...

Linux Distros Unpatched Vulnerability : CVE-2025-38203

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - jfs: Fix null-ptr-deref in jfsioctrim Syzkaller Report Oops: general protection fault, probably for non-canonical address 0xdffffc0000000087: 0000 1 KASAN:...

Linux Distros Unpatched Vulnerability : CVE-2023-52655

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - usb: aqc111: check packet for fixup for true limit If a device sends a packet that is inbetween 0 and sizeofu64 the value passed to skbtrim as length will wrap...

SUSE CVE-2025-38203

In the Linux kernel, the following vulnerability has been resolved: jfs: Fix null-ptr-deref in jfsioctrim Syzkaller Report Oops: general protection fault, probably for non-canonical address 0xdffffc0000000087: 0000 1 KASAN: null-ptr-deref in range 0x0000000000000438-0x000000000000043f CPU: 2 UID:...

DEBIAN-CVE-2025-38203

In the Linux kernel, the following vulnerability has been resolved: jfs: Fix null-ptr-deref in jfsioctrim Syzkaller Report Oops: general protection fault, probably for non-canonical address 0xdffffc0000000087: 0000 1 KASAN: null-ptr-deref in range 0x0000000000000438-0x000000000000043f CPU: 2 UID:...

UBUNTU-CVE-2025-38203

In the Linux kernel, the following vulnerability has been resolved: jfs: Fix null-ptr-deref in jfsioctrim Syzkaller Report Oops: general protection fault, probably for non-canonical address 0xdffffc0000000087: 0000 1 KASAN: null-ptr-deref in range 0x0000000000000438-0x000000000000043f CPU: 2 UID:...

PT-2025-27978

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.13.0-rc6 Description: A concurrency bug in the fs/jfs module results in a null pointer dereference. The issue is closely related to a previously fixed problem, but the accepted patch is still susceptible to a...

httpx 1.7.0 Denial of Service / Out-Of-Bounds Read

httpx version 1.7.0 suffers from an out-of-bounds read in trimTitleTags due to a missing bounds check when slicing the title string...

CVE-2024-6545

The Admin Trim Interface plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 3.5.1. This is due to the plugin utilizing bootstrap and leaving test files with displayerrors on. This makes it possible for unauthenticated attackers to retrieve the full pa...

kernel: wifi: ath9k_htc: Use __skb_set_length() for resetting urb before resubmit

In the Linux kernel, the following vulnerability has been resolved: wifi: ath9khtc: Use skbsetlength for resetting urb before resubmit Syzbot points out that skbtrim has a sanity check on the existing length of the skb, which can be uninitialised in some error paths. The intent here is clearly ju...

DEBIAN-CVE-2025-37873

In the Linux kernel, the following vulnerability has been resolved: eth: bnxt: fix missing ring index trim on error path Commit under Fixes converted txprod to be free running but missed masking it on the Tx error path. This crashes on error conditions, for example when DMA mapping fails...

UBUNTU-CVE-2025-37873

In the Linux kernel, the following vulnerability has been resolved: eth: bnxt: fix missing ring index trim on error path Commit under Fixes converted txprod to be free running but missed masking it on the Tx error path. This crashes on error conditions, for example when DMA mapping fails...

CVE-2025-37873

CVE-2025-37873: In the Linux kernel bnxt Ethernet driver, the ring index trim was not applied on error paths, leading to a crash when DMA mapping fails. The issue has been resolved in the kernel fixing commit for bnxt, as referenced by the vulnerability entry and multiple OSV/ELSAs linking to CVE...

CVE-2025-37873

In the Linux kernel, the following vulnerability has been resolved: eth: bnxt: fix missing ring index trim on error path Commit under Fixes converted txprod to be free running but missed masking it on the Tx error path. This crashes on error conditions, for example when DMA mapping fails...

PT-2025-20523

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been identified, related to the bnxt Ethernet driver. The issue arises from a missing ring index trim on the error path, which can cause a crash...

SUSE CVE-2022-49684

In the Linux kernel, the following vulnerability has been resolved: iio: adc: aspeed: Fix refcount leak in aspeedadcsettrimdata offindnodebyname returns a node pointer with refcount incremented, we should use ofnodeput on it when done. Add missing ofnodeput to avoid refcount leak...

DEBIAN-CVE-2022-49684

In the Linux kernel, the following vulnerability has been resolved: iio: adc: aspeed: Fix refcount leak in aspeedadcsettrimdata offindnodebyname returns a node pointer with refcount incremented, we should use ofnodeput on it when done. Add missing ofnodeput to avoid refcount leak...