152 matches found
CVE-2026-43423
Concrete details show a Linux kernel issue in the usb gadget f_ncm driver: the ncm_set_alt function held a mutex to guard configfs races and invoked may_sleep in an atomic context, enabling a potential sleep path. The fix removes a struct net_device pointer from f_ncm_opts and introduces a new bo...
Oracle Linux 10 : kernel (ELSA-2026-6632)
The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-6632 advisory. - net/mlx5: Fix ECVF vports unload on shutdown flow CKI Backport Bot RHEL-154540 CVE-2025-38109 - mm/damon/sysfs: cleanup attrs subdirs on context dir...
Important: kernel-livepatch-6.1.147-172.266
Issue Overview: In the Linux kernel, the following vulnerability has been resolved: net/sched: Fix backlog accounting in qdiscdequeueinternal CVE-2025-39677 In the Linux kernel, the following vulnerability has been resolved: fs/buffer: fix use-after-free when call bhread helper CVE-2025-39691 In...
EUVD-2024-53301
Malicious code in bioql PyPI...
EUVD-2023-59746
Malicious code in bioql PyPI...
EUVD-2023-59699
Malicious code in bioql PyPI...
EUVD-2022-54803
Malicious code in bioql PyPI...
EUVD-2025-9398
Malicious code in bioql PyPI...
EUVD-2022-54870
Malicious code in bioql PyPI...
EUVD-2025-5235
Malicious code in bioql PyPI...
EUVD-2022-54852
Malicious code in bioql PyPI...
EUVD-2022-54813
Malicious code in bioql PyPI...
CVE-2025-38211
In the Linux kernel, the following vulnerability has been resolved: RDMA/iwcm: Fix use-after-free of work objects after cmid destruction The commit 59c68ac31e15 "iwcm: free cmid resources on the last deref" simplified cmid resource management by freeing cmid once all references to the cmid were...
CVE-2025-38212
In the Linux kernel, the following vulnerability has been resolved: ipc: fix to protect IPCS lookups using RCU syzbot reported that it discovered a use-after-free vulnerability, 0 0: https://lore.kernel.org/all/[email protected]/ idrforeach is protected by rwsem, but thi...
CVE-2025-38161
In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix error flow upon firmware failure for RQ destruction Upon RQ destruction if the firmware command fails which is the last resource to be destroyed some SW resources were already cleaned regardless of the failure. Now...
pam security update
1.5.1-25.0.1 - pamlimits: fix use after free in pamsmopensession Orabug: 36406534 1.5.1-25 - pamnamespace: fix potential privilege escalation. Resolves: CVE-2025-6020 and RHEL-96729...
CVE-2025-38019
In the Linux kernel, the following vulnerability has been resolved: mlxsw: spectrumrouter: Fix use-after-free when deleting GRE net devices The driver only offloads neighbors that are constructed on top of net devices registered by it or their uppers which are all Ethernet. The device supports GR...
CVE-2022-50220 usbnet: Fix linkwatch use-after-free on disconnect
In the Linux kernel, the following vulnerability has been resolved: usbnet: Fix linkwatch use-after-free on disconnect usbnet uses the work usbnetdeferredkevent to perform tasks which may sleep. On disconnect, completion of the work was originally awaited in -ndostop. But in 2003, that was moved ...
CVE-2022-50213
CVE-2022-50213 is a Linux kernel nf_tables/use-after-free vulnerability. When looking up NFT sets by ID within a batch, a set from a different table could be returned, and after the table was freed, a dangling reference could be exploited. The issue is in the cross-table handling of SET_ID and is...
CVE-2022-50212 netfilter: nf_tables: do not allow CHAIN_ID to refer to another table
In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: do not allow CHAINID to refer to another table When doing lookups for chains on the same batch by using its ID, a chain from a different table can be used. If a rule is added to a table but refers to a chain ...