CVE-2025-40225

In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Fix kernel panic on partial unmap of a GPU VA region This commit address a kernel panic issue that can happen if Userspace tries to partially unmap a GPU virtual region aka drmgpuva. The VMBIND interface allows parti...

Oracle Linux 10 : kernel (ELSA-2025-21118)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-21118 advisory. - fs/smb: Fix inconsistent refcnt update Paulo Alcantara RHEL-124955 CVE-2025-39819 - tcp: Clear tcpsksk-fastopenrsk in tcpdisconnect. Antoine Tenart...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990491)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990491 advisory. In the Linux kernel, the following vulnerability has been resolved: mm: fix unexpected zeroed page mapping with zram swap Two processes under CLONEVM cloning, user...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989900)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989900 advisory. In the Linux kernel, the following vulnerability has been resolved: bpf: Use VMMAP instead of VMALLOC for ringbuf After commit 2fd3fb0be1d1 kasan, vmalloc: unpoison...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988915)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988915 advisory. In the Linux kernel, the following vulnerability has been resolved: mm: fix unexpected zeroed page mapping with zram swap Two processes under CLONEVM cloning, user...

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-990101)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990101 advisory. In the Linux kernel, the following vulnerability has been resolved: ext4: don't BUG if someone dirty pages without asking ext4 first unpinuserpagesremote is dirtying...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990276)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990276 advisory. In the Linux kernel, the following vulnerability has been resolved: comedi: Flush partial mappings in error case If some remappfnrange calls succeeded before one...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989987)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989987 advisory. In the Linux kernel, the following vulnerability has been resolved: comedi: Flush partial mappings in error case If some remappfnrange calls succeeded before one...

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerabilities have been resolved: drm/nouveau/nvif: Fixed a potential memory leak in nvifvmmctor. When the nvifvmmtype is invalid, an error will be returned directly, without freeing the arguments passed to nvifvmmctor. This could lead to a memory leak. This...

CVE-2025-40069

In the Linux kernel, the following vulnerability has been resolved: drm/msm: Fix obj leak in VMBIND error path If we fail a handle-lookup part way thru, we need to drop the already obtained obj references. Patchwork: https://patchwork.freedesktop.org/patch/669784/...

CVE-2025-40069

CVE-2025-40069 affects the Linux kernel, specifically the DRM MSM driver. The vulnerability arises in the VM_BIND error path where, if a handle-lookup partway through fails, references to already obtained objects may not be dropped, potentially leaking resources. The available connected documents...

CVE-2025-40069

In the Linux kernel, the following vulnerability has been resolved: drm/msm: Fix obj leak in VMBIND error path If we fail a handle-lookup part way thru, we need to drop the already obtained obj references. Patchwork: https://patchwork.freedesktop.org/patch/669784/...

CVE-2025-40040 mm/ksm: fix flag-dropping behavior in ksm_madvise

In the Linux kernel, the following vulnerability has been resolved: mm/ksm: fix flag-dropping behavior in ksmmadvise syzkaller discovered the following crash: kernel BUG 44.607039 ------------ cut here ------------ 44.607422 kernel BUG at mm/userfaultfd.c:2067! 44.608148 Oops: invalid opcode: 000...

Siemens SIMATIC Devices Improper Handling of Structural Elements (CVE-2024-35877)

In the Linux kernel, the following vulnerability has been resolved: x86/mm/pat: fix VMPAT handling in COW mappings PAT handling won't do the right thing in COW mappings: the first PTE or, in fact, all PTEs can be replaced during write faults to point at anon folios. Reliably recovering the correc...

EUVD-2022-55652

In the Linux kernel, the following vulnerability has been resolved: serial: pch: Fix PCI device refcount leak in pchrequestdma As comment of pcigetslot says, it returns a pcidevice with its refcount increased. The caller must decrement the reference count by calling pcidevput. Since 'dmadev' is...

EUVD-2025-34581

In the Linux kernel, the following vulnerability has been resolved: mm: swap: check for stable address space before operating on the VMA It is possible to hit a zero entry while traversing the vmas in unusemm called from swapoff path and accessing it causes the OOPS: Unable to handle kernel NULL...

UBUNTU-CVE-2025-39992

In the Linux kernel, the following vulnerability has been resolved: mm: swap: check for stable address space before operating on the VMA It is possible to hit a zero entry while traversing the vmas in unusemm called from swapoff path and accessing it causes the OOPS: Unable to handle kernel NULL...

CVE-2025-39992 mm: swap: check for stable address space before operating on the VMA

In the Linux kernel, the following vulnerability has been resolved: mm: swap: check for stable address space before operating on the VMA It is possible to hit a zero entry while traversing the vmas in unusemm called from swapoff path and accessing it causes the OOPS: Unable to handle kernel NULL...

CVE-2025-39992

CVE-2025-39992 pertains to a race in the Linux kernel between fork() and swapoff where a partially built mm is exposed, allowing traversal to hit a XA_ZERO_ENTRY and trigger a NULL pointer dereference in unuse_mm(). The public description states the bug arises from a race while duplicating the mm...

CVE-2025-39992 mm: swap: check for stable address space before operating on the VMA

In the Linux kernel, the following vulnerability has been resolved: mm: swap: check for stable address space before operating on the VMA It is possible to hit a zero entry while traversing the vmas in unusemm called from swapoff path and accessing it causes the OOPS: Unable to handle kernel NULL...