Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: udmabuf: validate ubuf-pagecount Syzbot reported a GPF in sgallocAppendTableFromPages. The problem arose from the condition ubuf-pages == ZEROPTR. ubuf-pagecount is calculated based on arguments passed from the user-space. If the...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989196)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989196 advisory. In the Linux kernel, the following vulnerability has been resolved: udmabuf: validate ubuf-pagecount Syzbot has reported GPF in sgallocappendtablefrompages. The...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987535)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987535 advisory. In the Linux kernel, the following vulnerability has been resolved: udmabuf: validate ubuf-pagecount Syzbot has reported GPF in sgallocappendtablefrompages. The...

The vulnerability of the Windows Ancillary Function Driver for WinSock on Windows operating systems allows attackers to exploit their privileges.

The vulnerability of the Windows Ancillary Function Driver for WinSock operating systems is related to the assignment of a zero pointer. Exploiting this vulnerability can allow an attacker to gain increased privileges...

The vulnerability of embedded software developed by Qualcomm, related to the swapping of the zero pointer, allows a hacker to trigger a service failure.

The vulnerability of embedded software developed for Qualcomm chips relates to the manipulation of the zero pointer. Exploiting this vulnerability can allow attackers to cause system failures...

The vulnerability of the network traffic analysis, network detection, and response tool Palo Alto Networks Cortex XDR Agent, related to the handling of the zero pointer, allows attackers to trigger a service failure.

The vulnerability of the Palo Alto Networks Cortex XDR Agent, which is used for network traffic analysis, network detection, and response, relates to the handling of the zero pointer. Exploiting this vulnerability could allow attackers to trigger service failures...

Vulnerabilities of the functions mlx5e_dim_rx_change() and mlx5e_dim_tx_change() in the Linux operating system, allowing a hacker to cause a service failure

The vulnerability of the mlx5edimrxchange and mlx5edimtxchange functions in the Linux operating system is related to the assignment of zero pointers. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the platform_set_drvdata() function in the perf component of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the platformsetdrvdata function in the Linux operating system’s kernel component is related to the assignment of a zero pointer. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

The vulnerability of the Demon Routing Protocol Daemon (RPD) in Juniper Networks’ Junos OS and Junos OS Evolved operating systems allows a attacker to compromise the availability of the device.

The vulnerability of the Demon Routing Protocol Daemon RPD in Juniper Networks’ Junos OS and Junos OS Evolved operating systems is related to the assignment of the zero pointer. Exploiting this vulnerability can allow a malicious actor to compromise the availability of the device...

The vulnerability of the gf_odf_ac4_cfg_dsi_v1 function in the MP4Box utility of the GPAC multimedia platform allows a hacker to cause a service failure.

The vulnerability of the gfodfac4cfgdsiv1 function in the MP4Box utility of the GPAC multimedia platform is related to the assignment of a zero pointer during the processing of AC4 audio streams. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the gf_ac4parser_bs function in the MP4Box multimedia platform of GPAC allows a hacker to cause a service failure or execute arbitrary code.

The vulnerability of the gfac4parserbs function in the MP4Box utility of the GPAC multimedia platform is related to the assignment of a zero pointer. Exploiting this vulnerability can allow an attacker to cause a service failure or execute arbitrary code...

The vulnerability of the gf_ac4_presentation_ch_mode function in the MP4Box utility of the GPAC multimedia platform allows a perpetrator to cause a service failure.

The vulnerability of the gfac4presentationchmode function in the MP4Box utility of the GPAC multimedia platform is related to the handling of the zero pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of Adobe After Effects’ video and dynamic image editing software relates to the handling of the zero pointer. This allows a malicious actor to trigger a service failure.

The vulnerability of Adobe After Effects video and dynamic image editing software relates to the handling of the zero pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the multimedia platform GPAC, related to the swapping of the zero pointer, allows a perpetrator to trigger a service failure.

The vulnerability of the multimedia platform GPAC is related to the swapping of the zero pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability in the command-line utility BusyBox, related to the assignment of the zero pointer, allows a hacker to trigger a service failure.

The vulnerability of the BusyBox command-line utility set is related to a pointer assignment error. Exploiting this vulnerability could allow an attacker to cause a service failure...

CVE-2022-34666

NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where a local user with basic capabilities can cause a null-pointer dereference, which may lead to denial of service...

The vulnerability of the CommuniGate Pro mail server, related to the swapping of the zero pointer, allows a hacker to disclose protected information.

The vulnerability of the CommuniGate Pro mail server is related to the handling of the zero pointer. Exploiting this vulnerability could allow a malicious actor to disclose the protected information...

The vulnerability of Juniper Networks’ Junos routers of the SRX series, which allows a attacker to cause a service failure.

The vulnerability of Juniper Networks’ Junos router series SRX devices, specifically those related to flow processing on operating systems, is related to the swapping of zero pointers. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

kernel security update

5.14.0-503.40.15.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...

The vulnerability in the Windows 10 22H2 operating system, related to the swapping of the zero pointer, allows a malicious actor to trigger a service failure in the operating system’s kernel.

The vulnerability of the Windows 10 22H2 operating system is related to the assignment of the null pointer. Exploiting this vulnerability can allow an attacker to cause a kernel failure in the operating system...