15 matches found
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: rcv: process: Fixed kernel gp leakage childregs represents the registers that are active for the new thread in the user context. For a kernel thread, childregs-gp is never used, as the kernel’s gp value is not touched by the...
CVE-2026-22978
The CVE-2026-22978 issue lies in the Linux kernel wifi code where struct iw_point exposes a 32‑bit hole on 64‑bit arches, enabling kernel-infoleak to user space. The fix is to zero the iw_point structure before user-space access. This remediation is present in upstream kernel fixes (noted with ke...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002773)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002773 advisory. An issue was discovered in the Linux kernel through 4.17.3. An Integer Overflow in kernel/time/posix- timers.c in the POSIX timer code is caused by the way the overr...
Linux Distros Unpatched Vulnerability : CVE-2023-53684
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - xfrm: Zero padding when dumping algos and encap When copying data to user-space we should ensure that only valid data is copied over. Padding in structures may ...
EUVD-2018-13395
Malware in sbrugna...
AZL-70117 CVE-2022-49932 affecting package kernel 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: KVM: VMX: Do all initialization before exposing /dev/kvm to userspace Call kvminit only after all setup is complete, as kvminit exposes /dev/kvm to userspace and thus allows userspace to create VMs and call other ioctls. E.g. KVM...
kernel: xfrm: fix one more kernel-infoleak in algo dumping
A vulnerability was found in the xfrm module in the Linux Kernel. This issue was discovered during fuzz testing, where uninitialized memory containing potentially sensitive data was inadvertently copied to user-space. This issue occurs when dumping IPsec algorithm data structures, exposing random...
kernel: xfrm: fix one more kernel-infoleak in algo dumping
A vulnerability was found in the xfrm module in the Linux Kernel. This issue was discovered during fuzz testing, where uninitialized memory containing potentially sensitive data was inadvertently copied to user-space. This issue occurs when dumping IPsec algorithm data structures, exposing random...
SUSE CVE-2024-35871
In the Linux kernel, the following vulnerability has been resolved: riscv: process: Fix kernel gp leakage childregs represents the registers which are active for the new thread in user context. For a kernel thread, childregs-gp is never used since the kernel gp is not touched by switchto. For a...
Google Android 安全漏洞
Google Android is a Linux-based open source operating system from Google Inc. in the United States. Google Android suffers from a security vulnerability that stems from allowing uninitialized kernel memory to be returned to user space...
CVE-2021-26371
A compromised or malicious ABL or UApp could send a SHA256 system call to the bootloader, which may result in exposure of ASP memory to userspace, potentially leading to information disclosure...
CVE-2022-45126
Kernel subsystem within OpenHarmony-v3.1.4 and prior versions in kernelliteosa has a kernel stack overflow vulnerability when call SysClockGettime. 4 bytes padding data from kernel stack are copied to user space incorrectly and leaked...
PT-2021-13714 · Qualcomm · Qualcomm Gpu Driver
Name of the Vulnerable Software and Affected Versions: Qualcomm npu driver affected versions not specified Description: The issue is related to improper validation of kernel buffer address while copying information back to user buffer, which can lead to kernel memory information exposure to user...
SAMSUNG Mobile devices 安全漏洞
Samsung SMR is a system firmware from Samsung South Korea. It provides storage for system applications. A security vulnerability exists in SMR MAR-2021 Release 1, which stems from an improper access control vulnerability that exposes sensitive kernel information to user space. No detailed...
DEBIAN-CVE-2015-2830
arch/x86/kernel/entry64.S in the Linux kernel before 3.19.2 does not prevent the TSCOMPAT flag from reaching a user-mode task, which might allow local users to bypass the seccomp or audit protection mechanism via a crafted application that uses the 1 fork or 2 close system call, as demonstrated b...