UBUNTU-CVE-2025-45767

jose v6.0.10 was discovered to contain weak encryption. NOTE: this is disputed by a third party because the claim of "do not meet recommended security standards" does not reflect guidance in a final publication...

CVE-2025-45767

jose v6.0.10 was discovered to contain weak encryption. NOTE: this is disputed by a third party because the claim of "do not meet recommended security standards" does not reflect guidance in a final publication...

CVE-2025-45767

CVE-2025-45767: jose v6.0.10 is associated with weak encryption. The Connected IBM bulletins confirm this CVE across IBM Concert/Events/Watsonx contexts and recommend upgrading to newer Jose-bearing releases (e.g., IBM Event Streams 12.1.0; IBM watsonx Cartridges 5.3.0 or later; IBM Concert Softw...

CVE-2025-45767

jose v6.0.10 was discovered to contain weak encryption. NOTE: this is disputed by a third party because the claim of "do not meet recommended security standards" does not reflect guidance in a final publication...

GSD-2022-1007762 sctp: clear out_curr if all frag chunks of current msg are pruned

sctp: clear outcurr if all frag chunks of current msg are pruned This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.10 by commit...

GSD-2022-1007761 bpf: Fix memory leaks in __check_func_call

bpf: Fix memory leaks in checkfunccall This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.10 by commit 83946d772e756734a900ef99dbe0aeda506adf3...

GSD-2022-1007760 io_uring: calculate CQEs from the user visible value

iouring: calculate CQEs from the user visible value This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.10 by commit...

GSD-2022-1007758 siox: fix possible memory leak in siox_device_add()

siox: fix possible memory leak in sioxdeviceadd This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.10 by commit...

GSD-2022-1007751 drm/scheduler: fix fence ref counting

drm/scheduler: fix fence ref counting This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.10 by commit e5f4b38362df93594cb426b04979d8834122f159...

GSD-2022-1007749 drm: Fix potential null-ptr-deref in drm_vblank_destroy_worker()

drm: Fix potential null-ptr-deref in drmvblankdestroyworker This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.10 by commit...

GSD-2022-1007738 xen/pcpu: fix possible memory leak in register_pcpu()

xen/pcpu: fix possible memory leak in registerpcpu This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.10 by commit...

GSD-2022-1007731 net/x25: Fix skb leak in x25_lapb_receive_frame()

net/x25: Fix skb leak in x25lapbreceiveframe This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.10 by commit...

GSD-2022-1007730 net: dsa: don't leak tagger-owned storage on switch driver unbind

net: dsa: don't leak tagger-owned storage on switch driver unbind This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.10 by commit...

GSD-2022-1007727 net: lan966x: Fix potential null-ptr-deref in lan966x_stats_init()

net: lan966x: Fix potential null-ptr-deref in lan966xstatsinit This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.10 by commit...

GSD-2022-1007721 tracing: Fix memory leak in test_gen_synth_cmd() and test_empty_synth_event()

tracing: Fix memory leak in testgensynthcmd and testemptysynthevent This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.10 by commit...

GSD-2022-1007716 rethook: fix a potential memleak in rethook_alloc()

rethook: fix a potential memleak in rethookalloc This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.10 by commit...

GSD-2022-1007711 Input: iforce - invert valid length check when fetching device IDs

Input: iforce - invert valid length check when fetching device IDs This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.10 by commit...

GSD-2022-1007710 scsi: zfcp: Fix double free of FSF request when qdio send fails

scsi: zfcp: Fix double free of FSF request when qdio send fails This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.10 by commit...

GSD-2022-1007708 mmc: sdhci-pci: Fix possible memory leak caused by missing pci_dev_put()

mmc: sdhci-pci: Fix possible memory leak caused by missing pcidevput This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.10 by commit...

GSD-2022-1007703 perf: Improve missing SIGTRAP checking

perf: Improve missing SIGTRAP checking This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.10 by commit b09221f1b4944d2866d06ac35e59d7a6f8916c9...