51 matches found
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: In virtio, the virtiodevicerestore function uses virtiodeviceready. After waking up a suspended VM, the kernel prints the following trace for virtio drivers that do not directly call virtiodeviceready in .restore: PM: suspend exi...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: virtiovdpa: Building affinity masks conditionally We were trying to build the affinity mask using createaffinitymasks unconditionally, which could lead to several issues: - The affinity mask is not used for parent processes witho...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013031)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013031 advisory. In the Linux kernel, the following vulnerability has been resolved: um: virtiouml: Fix use-after-free after putdevice in probe When registervirtiodevice fails in...
Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006740)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006740 advisory. In the Linux kernel, the following vulnerability has been resolved: um: virtiouml: Fix use-after-free after putdevice in probe When registervirtiodevice fails in...
UBUNTU-CVE-2026-23046
In the Linux kernel, the following vulnerability has been resolved: virtionet: fix device mismatch in devmkzalloc/devmkfree Initial rsshdr allocation uses virtiodevice-device, but virtnetsetqueues frees using netdevice-device. This device mismatch causing below devres warning 3788.514041...
CVE-2023-54215 virtio-vdpa: Fix cpumask memory leak in virtio_vdpa_find_vqs()
In the Linux kernel, the following vulnerability has been resolved: virtio-vdpa: Fix cpumask memory leak in virtiovdpafindvqs Free the cpumask allocated by createaffinitymasks before returning from the function...
DEBIAN-CVE-2022-50636
In the Linux kernel, the following vulnerability has been resolved: PCI: Fix pcideviceispresent for VFs by checking PF pcideviceispresent previously didn't work for VFs because it reads the Vendor and Device ID, which are 0xffff for VFs, which looks like they aren't present. Check the PF instead...
CVE-2022-50636
The CVE-2022-50636 entry concerns the Linux kernel PCI subsystem and VF handling. The vulnerability stemmed from pci_device_is_present() returning false for virtual functions (VFs) because it relied on Vendor/Device IDs (0xffff for VFs), causing virtio I/O issues during VF removal/unbinding or wh...
CVE-2022-50636 PCI: Fix pci_device_is_present() for VFs by checking PF
In the Linux kernel, the following vulnerability has been resolved: PCI: Fix pcideviceispresent for VFs by checking PF pcideviceispresent previously didn't work for VFs because it reads the Vendor and Device ID, which are 0xffff for VFs, which looks like they aren't present. Check the PF instead...
EUVD-2013-2005
Malware in sbrugna...
EUVD-2021-22776
Malware in sbrugna...
EUVD-2025-32381
In the Linux kernel, the following vulnerability has been resolved: um: virtiouml: Fix use-after-free after putdevice in probe When registervirtiodevice fails in virtioumlprobe, the code sets vudev-registered = 1 even though the device was not successfully registered. This can lead to...
CVE-2025-39951 um: virtio_uml: Fix use-after-free after put_device in probe
In the Linux kernel, the following vulnerability has been resolved: um: virtiouml: Fix use-after-free after putdevice in probe When registervirtiodevice fails in virtioumlprobe, the code sets vudev-registered = 1 even though the device was not successfully registered. This can lead to...
EUVD-2022-15991
Malicious code in bioql PyPI...
virtio-pci: Check if is_avq is NULL
...
Linux Distros Unpatched Vulnerability : CVE-2022-49146
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: virtio: use virtiodeviceready in virtiodevicerestore After waking up a suspended VM, the...
Important: kernel
Issue Overview: In the Linux kernel, the following vulnerability has been resolved: net: tap: NULL pointer derefence in devparseheaderprotocol when skb-dev is null CVE-2022-50073 In the Linux kernel, the following vulnerability has been resolved: KVM: x86/mmu: Treat NX as a valid SPTE bit for NPT...
Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.15-2025-087 (ALASKERNEL-5.15-2025-087)
The version of kernel installed on the remote host is prior to 5.15.189-131.206. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.15-2025-087 advisory. In the Linux kernel, the following vulnerability has been resolved: net: tap: NULL pointer derefence in...
CVE-2025-38064
In the Linux kernel, the following vulnerability has been resolved: virtio: break and reset virtio devices on deviceshutdown Hongyu reported a hang on kexec in a VM. QEMU reported invalid memory accesses during the hang. Invalid read at addr 0x102877002, size 2, region 'null', reason: rejected...
CVE-2025-38064
Vulnerability context: CVE-2025-38064 affects the Linux kernel virtio subsystem, notably virtio-console. Root cause: virtio-console may continue writing to MMIO after the underlying virtio-pci device has been reset during device_shutdown, with IOMMU resets ordering contributing to guest memory ac...