635 matches found
CVE-2023-53831
CVE-2023-53831: In the Linux kernel, the issue concerns reading sk->sk_family multiple times in sk_mc_loop(), which syzbot has used to trigger a WARN_ON_ONCE(1) in net/core/sock.c. The vulnerability is described as resolved in the initial document, but no concrete patch details (such as fixed ...
CVE-2023-53831 net: read sk->sk_family once in sk_mc_loop()
In the Linux kernel, the following vulnerability has been resolved: net: read sk-skfamily once in skmcloop syzbot is playing with IPV6ADDRFORM quite a lot these days, and managed to hit the WARNONONCE1 in skmcloop We have many more similar issues to fix. WARNING: CPU: 1 PID: 1593 at...
CVE-2023-53831
In the Linux kernel, the following vulnerability has been resolved: net: read sk-skfamily once in skmcloop syzbot is playing with IPV6ADDRFORM quite a lot these days, and managed to hit the WARNONONCE1 in skmcloop We have many more similar issues to fix. WARNING: CPU: 1 PID: 1593 at...
CVE-2022-50661
In the Linux kernel, the following vulnerability has been resolved: seccomp: Move copyseccomp to no failure path. Our syzbot instance reported memory leaks in doseccomp 0, similar to the report 1. It shows that we miss freeing struct seccompfilter and some objects included in it. We can reproduce...
PT-2025-49722
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.1.40-syzkaller Description The Linux kernel contains an issue where the sk family is read only once in the sk mc loop function. This was discovered by syzbot while testing with IPV6 ADDRFORM. The issue occurs...
Linux Distros Unpatched Vulnerability : CVE-2023-53841
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - devlink: report devlinkporttypewarn source device devlinkporttypewarn is scheduled for port devlink and warning when the port type is not set. But from this...
PT-2025-49692
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contained a flaw in the seccomp implementation where memory leaks occurred in the do seccomp function. A syzbot instance identified unreferenced objects, including secco...
SUSE CVE-2025-40165
In the Linux kernel, the following vulnerability has been resolved: media: nxp: imx8-isi: m2m: Fix streaming cleanup on release If streamon/streamoff calls are imbalanced, such as when exiting an application with Ctrl+C when streaming, the m2m usagecount will never reach zero and the ISI channel...
CVE-2025-40165
In the Linux kernel, the following vulnerability has been resolved: media: nxp: imx8-isi: m2m: Fix streaming cleanup on release If streamon/streamoff calls are imbalanced, such as when exiting an application with Ctrl+C when streaming, the m2m usagecount will never reach zero and the ISI channel...
EUVD-2025-175723
Malicious code in view-warn-bash-rain-old npm...
Malicious code in route-easy-function-moon-warn (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b12fc0d9fb8eece445504291184c9dc3512207749c7db6267ab9885b474b3887 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
EUVD-2025-176211
Malicious code in static-view-warn-cluster-catch npm...
EUVD-2025-175693
Malicious code in void-uglify-warn-export-zero npm...
EUVD-2025-175666
Malicious code in warn-array-container-grid-stub npm...
EUVD-2025-175665
Malicious code in warn-bash-grep-array-test npm...
EUVD-2025-175663
Malicious code in warn-function-assert-report-thread npm...
EUVD-2025-175662
Malicious code in warn-pi-visualize-catch-slow npm...
EUVD-2025-175659
Malicious code in warn-spy-grep-compress-load npm...
EUVD-2025-175485
Malicious code in xi-grid-module-sed-warn npm...
EUVD-2025-177469
Malicious code in omega-string-view-double-warn npm...