398 matches found
Linux Distros Unpatched Vulnerability : CVE-2025-38592
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcidevcddump: fix out-of- bounds via devcoredumpv Currently both devcoredumpv and...
SUSE CVE-2025-38592
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcidevcddump: fix out-of-bounds via devcoredumpv Currently both devcoredumpv and skbputdata in hcidevcddump use hdev-dump.head. However, devcoredumpv can free the buffer. From devcoredumpmtimeout documentation, which i...
CVE-2025-38592
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcidevcddump: fix out-of-bounds via devcoredumpv Currently both devcoredumpv and skbputdata in hcidevcddump use hdev-dump.head. However, devcoredumpv can free the buffer. From devcoredumpmtimeout documentation, which i...
UBUNTU-CVE-2025-38592
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcidevcddump: fix out-of-bounds via devcoredumpv Currently both devcoredumpv and skbputdata in hcidevcddump use hdev-dump.head. However, devcoredumpv can free the buffer. From devcoredumpmtimeout documentation, which i...
CVE-2025-38592
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcidevcddump: fix out-of-bounds via devcoredumpv Currently both devcoredumpv and skbputdata in hcidevcddump use hdev-dump.head. However, devcoredumpv can free the buffer. From devcoredumpmtimeout documentation, which i...
CVE-2025-38592 Bluetooth: hci_devcd_dump: fix out-of-bounds via dev_coredumpv
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcidevcddump: fix out-of-bounds via devcoredumpv Currently both devcoredumpv and skbputdata in hcidevcddump use hdev-dump.head. However, devcoredumpv can free the buffer. From devcoredumpmtimeout documentation, which i...
CVE-2025-38592 Bluetooth: hci_devcd_dump: fix out-of-bounds via dev_coredumpv
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcidevcddump: fix out-of-bounds via devcoredumpv Currently both devcoredumpv and skbputdata in hcidevcddump use hdev-dump.head. However, devcoredumpv can free the buffer. From devcoredumpmtimeout documentation, which i...
PT-2025-33790 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel versions 6.14.0-syzkaller-10892-g4e82c87058f4 Description: A flaw exists in the Bluetooth stack within the Linux kernel related to the handling of device coredumps. Specifically, the hci devcd dump function can experience an...
Linux Distros Unpatched Vulnerability : CVE-2025-38383
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: mm/vmalloc: fix data race in shownumainfo The following data-race was found in shownumainfo:...
Linux Distros Unpatched Vulnerability : CVE-2025-38226
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - media: vivid: Change the siize of the composing syzkaller found a bug: BUG: KASAN: vmalloc-out-of-bounds in tpgfillplanepattern...
Linux Distros Unpatched Vulnerability : CVE-2022-50142
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: intelth: msu: Fix vmalloced buffers After commit f5ff79fddf0e dma-mapping: remove...
Linux Distros Unpatched Vulnerability : CVE-2024-46847
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: mm: vmalloc: ensure vmapblock is initialised before adding to queue Commit 8c61291fd850 mm:...
Linux Distros Unpatched Vulnerability : CVE-2025-21866
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - powerpc/code-patching: Fix KASAN hit by not flagging text patching area as VMALLOC Erhard reported the following KASAN hit while booting his PowerMac G4 with a...
Linux Distros Unpatched Vulnerability : CVE-2025-37898
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: powerpc64/ftrace: fix module loading without patchable function entries getstubssize assumes...
SUSE CVE-2025-38383
In the Linux kernel, the following vulnerability has been resolved: mm/vmalloc: fix data race in shownumainfo The following data-race was found in shownumainfo: ================================================================== BUG: KCSAN: data-race in vmallocinfoshow / vmallocinfoshow read to...
DEBIAN-CVE-2025-38383
In the Linux kernel, the following vulnerability has been resolved: mm/vmalloc: fix data race in shownumainfo The following data-race was found in shownumainfo: ================================================================== BUG: KCSAN: data-race in vmallocinfoshow / vmallocinfoshow read to...
UBUNTU-CVE-2025-38383
In the Linux kernel, the following vulnerability has been resolved: mm/vmalloc: fix data race in shownumainfo The following data-race was found in shownumainfo: ================================================================== BUG: KCSAN: data-race in vmallocinfoshow / vmallocinfoshow read to...
CVE-2025-38383 mm/vmalloc: fix data race in show_numa_info()
In the Linux kernel, the following vulnerability has been resolved: mm/vmalloc: fix data race in shownumainfo The following data-race was found in shownumainfo: ================================================================== BUG: KCSAN: data-race in vmallocinfoshow / vmallocinfoshow read to...
CVE-2025-38383
In the Linux kernel, the following vulnerability has been resolved: mm/vmalloc: fix data race in shownumainfo The following data-race was found in shownumainfo: ================================================================== BUG: KCSAN: data-race in vmallocinfoshow / vmallocinfoshow read to...
CVE-2025-38383
CVE-2025-38383 describes a denial-of-service data-race in Linux kernel vmalloc/NUMA reporting (show_numa_info). The root cause is a read/write race on vmalloc metadata (m->private) accessed by concurrent readers/writers. The fix, as stated in the description, is to stop sharing the heap via pr...