Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: powerpc/paprscm: Do not request stats with a stats buffer of size “0”. Sachin reported 1 that on a POWER-10 lpar, he is encountering a kernel panic when the paprscm probe is called. The panic occurs as follows, and it only occurs...

EUVD-2025-29598

Malicious code in bioql PyPI...

SUSE CVE-2025-39816

In the Linux kernel, the following vulnerability has been resolved: iouring/kbuf: always use READONCE to read ring provided buffer lengths Since the buffers are mapped from userspace, it is prudent to use READONCE to read the value into a local variable, and use that for any other actions taken...

CVE-2025-39816

In the Linux kernel, the following vulnerability has been resolved: iouring/kbuf: always use READONCE to read ring provided buffer lengths Since the buffers are mapped from userspace, it is prudent to use READONCE to read the value into a local variable, and use that for any other actions taken...

UBUNTU-CVE-2025-39816

In the Linux kernel, the following vulnerability has been resolved: iouring/kbuf: always use READONCE to read ring provided buffer lengths Since the buffers are mapped from userspace, it is prudent to use READONCE to read the value into a local variable, and use that for any other actions taken...

CVE-2025-39816 io_uring/kbuf: always use READ_ONCE() to read ring provided buffer lengths

In the Linux kernel, the following vulnerability has been resolved: iouring/kbuf: always use READONCE to read ring provided buffer lengths Since the buffers are mapped from userspace, it is prudent to use READONCE to read the value into a local variable, and use that for any other actions taken...

CVE-2025-39816 io_uring/kbuf: always use READ_ONCE() to read ring provided buffer lengths

In the Linux kernel, the following vulnerability has been resolved: iouring/kbuf: always use READONCE to read ring provided buffer lengths Since the buffers are mapped from userspace, it is prudent to use READONCE to read the value into a local variable, and use that for any other actions taken...

PT-2025-37961

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains an issue in the io uring/kbuf subsystem where buffer lengths are not consistently read. This is due to the use of potentially unstable reads of user-space...

CVE-2022-49353 powerpc/papr_scm: don't requests stats with '0' sized stats buffer

In the Linux kernel, the following vulnerability has been resolved: powerpc/paprscm: don't requests stats with '0' sized stats buffer Sachin reported 1 that on a POWER-10 lpar he is seeing a kernel panic being reported with vPMEM when paprscm probe is being called. The panic is of the form below...

kernel: thermal/int340x_thermal: handle data_vault when the value is ZERO_SIZE_PTR

A flaw was found in the Linux kernel in the thermal/int340xthermal driver. This issue occurs when the Global Device Data Vault GDDV returns a zero-length buffer, causing the kmemdup function to return a ZEROSIZEPTR 0x10, leading to a NULL pointer dereference in datavaultread, potentially causing ...

PT-2022-2040 · Nbd +6 · Nbd +6

Name of the Vulnerable Software and Affected Versions: nbd versions prior to 3.24 Description: The issue is related to an integer overflow in the implementation of network block devices nbd, which can lead to a heap-based buffer overflow. This can be exploited by a remote attacker by sending...