Medium: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: crypto: essiv - Check ssize for decryption and in-place encryption CVE-2025-40019 Affected Packages: kernel Issue Correction: Run dnf update kernel --releasever 2023.9.20251110 or dnf update --advisory...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989457)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989457 advisory. In the Linux kernel, the following vulnerability has been resolved: thermal: int340x: fix memory leak in int3400notify It is easy to hit the below memory leaks in my...

PT-2025-44105

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.16.3 Description The Linux kernel contains a use-after-free flaw within the simplefb driver, specifically in the simplefb detach genpds function. This issue arises because the pm domain cleanup is not properly...

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: NFSD: Protect against send buffer overflow in NFSv2 READ CVE-2022-50410 In the Linux kernel, the following vulnerability has been resolved: icmp6: Fix null-ptr-deref of ip6nullentry-rt6iidev in icmp6dev...

PT-2025-46590

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.16.0-rc1+ 1 Description The Linux kernel contained a flaw in the mpt3sas driver where a crash could occur during the removal of a transport port. This was due to logging messages with dev printk against a SAS...

PT-2025-38181

Name of the Vulnerable Software and Affected Versions: Linux kernel versions 6.1.0-rc1-00014-gbe99b089c6fc-dirty and earlier Description: The lpg brightness set function in the Qualcomm LPG driver could sleep while executing within the led's brightness set callback, which must be non-blocking. Th...

PT-2025-46738

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.16.0-rc7+ Description The Linux kernel contained a flaw related to memory mapping within KVM when running as a Secure Nested Paging SNP or Trusted Execution Technology TDX guest. Specifically, the legacy PCI...

SUSE SLES15 Security Update : kernel RT (Live Patch 0 for SLE 15 SP7) (SUSE-SU-2025:02858-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:02858-1 advisory. This update for the Linux Kernel 6.4.0-1507005 fixes several issues. The following security issues were fixed: - CVE-2025-38494: HID: core: do...

PT-2025-35957

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.12.0-116.el10.x86 64 Description A flaw was discovered in the Linux kernel's sch ets module related to the handling of queue bands during the purging of unused classes. Specifically, the code used an outdated...

Important: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

Important: Red Hat Security Advisory: kernel-rt security update

An update for kernel-rt is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

AlmaLinux 9 : kernel (ALSA-2025:9880)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:9880 advisory. kernel: Squashfs: fix handling and sanity checking of xattrids count CVE-2023-52933 Tenable has extracted the preceding description block directly from the AlmaLin...

SUSE SLES15 Security Update : kernel (Live Patch 55 for SLE 15 SP3) (SUSE-SU-2025:01958-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:01958-1 advisory. This update for the Linux Kernel 5.3.18-15030059198 fixes several issues. The following security issues were fixed: - CVE-2024-57996: netsched...

Low: kernel

Issue Overview: No CVE associated with this advisory Affected Packages: kernel Note: This advisory is applicable to Amazon Linux 2 - Kernel-5.15 Extra. Visit this page to learn more about Amazon Linux 2 AL2 Extras and this FAQ section for the difference between AL2 Core and AL2 Extras advisories...

PT-2025-25795

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to the fixed version Description A vulnerability in the Linux kernel has been resolved. The issue is related to MACsec offload for uplink representor profiles. MACsec offload is not supported in switchdev mode for...

AlmaLinux 9 : kernel (ALSA-2025:8142)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:8142 advisory. kernel: cifs: Fix integer overflow while processing acregmax mount option CVE-2025-21964 Tenable has extracted the preceding description block directly from the...

CVE-2021-30735

A malicious application may be able to execute arbitrary code with kernel privileges. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-003 Catalina, Security Update 2021-004 Mojave. An out-of-bounds write issue was addressed with improved bounds checking...

CVE-2021-30676

A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-003 Catalina, Security Update 2021-004 Mojave. A local user may be able to cause unexpected system termination or read kernel memory...

Advisory ROSA-SA-2025-2861

Software: kernel 4.18.0 OS: ROSA Virtualization 3.0 packageevrstring: kernel-4.18.0-553.40.1.el810 CVE-ID: CVE-2019-13631 BDU-ID: 2019-03626 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the parsehidreportdescriptor function of the Linux operating system kernel is related to writing outside buffer...

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: btrfs: do not clean up repair bio if submit fails CVE-2022-49168 In the Linux kernel, the following vulnerability has been resolved: bfq: Update cgroup information before merging bio CVE-2022-49413 In the Linux...