Количество 39
Количество 39
CVE-2022-50367
In the Linux kernel, the following vulnerability has been resolved: f ...
ELSA-2025-19930
ELSA-2025-19930: kernel security update (MODERATE)
GHSA-hjrq-8p9v-7m4p
In the Linux kernel, the following vulnerability has been resolved: mm: fix zswap writeback race condition The zswap writeback mechanism can cause a race condition resulting in memory corruption, where a swapped out page gets swapped in with data that was written to a different page. The race unfolds like this: 1. a page with data A and swap offset X is stored in zswap 2. page A is removed off the LRU by zpool driver for writeback in zswap-shrink work, data for A is mapped by zpool driver 3. user space program faults and invalidates page entry A, offset X is considered free 4. kswapd stores page B at offset X in zswap (zswap could also be full, if so, page B would then be IOed to X, then skip step 5.) 5. entry A is replaced by B in tree->rbroot, this doesn't affect the local reference held by zswap-shrink work 6. zswap-shrink work writes back A at X, and frees zswap entry A 7. swapin of slot X brings A in memory instead of B The fix: Once the swap page cache has been...
GHSA-4hcm-79j9-x472
In the Linux kernel, the following vulnerability has been resolved: fs: fix UAF/GPF bug in nilfs_mdt_destroy In alloc_inode, inode_init_always() could return -ENOMEM if security_inode_alloc() fails, which causes inode->i_private uninitialized. Then nilfs_is_metadata_file_inode() returns true and nilfs_free_inode() wrongly calls nilfs_mdt_destroy(), which frees the uninitialized inode->i_private and leads to crashes(e.g., UAF/GPF). Fix this by moving security_inode_alloc just prior to this_cpu_inc(nr_inodes)
ELSA-2025-21118
ELSA-2025-21118: kernel security update (MODERATE)
ELSA-2025-19409
ELSA-2025-19409: kernel security update (MODERATE)
SUSE-SU-2025:03626-1
Security update for the Linux Kernel
SUSE-SU-2025:03614-1
Security update for the Linux Kernel
SUSE-SU-2025:03628-1
Security update for the Linux Kernel
SUSE-SU-2025:03615-1
Security update for the Linux Kernel
SUSE-SU-2025:3725-1
Security update for the Linux Kernel
SUSE-SU-2025:03601-1
Security update for the Linux Kernel
SUSE-SU-2025:03633-1
Security update for the Linux Kernel
SUSE-SU-2025:3751-1
Security update for the Linux Kernel
SUSE-SU-2025:03600-1
Security update for the Linux Kernel
SUSE-SU-2025:03634-1
Security update for the Linux Kernel
SUSE-SU-2025:4189-1
Security update for the Linux Kernel
openSUSE-SU-2025:20081-1
Security update for the Linux Kernel
openSUSE-SU-2025-20011-1
Security update for the Linux Kernel
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
| CVE-2022-50367 In the Linux kernel, the following vulnerability has been resolved: f ... | CVSS3: 7.8 | 0% Низкий | 3 месяца назад |
| ELSA-2025-19930 ELSA-2025-19930: kernel security update (MODERATE) | около 1 месяца назад | ||
| GHSA-hjrq-8p9v-7m4p In the Linux kernel, the following vulnerability has been resolved: mm: fix zswap writeback race condition The zswap writeback mechanism can cause a race condition resulting in memory corruption, where a swapped out page gets swapped in with data that was written to a different page. The race unfolds like this: 1. a page with data A and swap offset X is stored in zswap 2. page A is removed off the LRU by zpool driver for writeback in zswap-shrink work, data for A is mapped by zpool driver 3. user space program faults and invalidates page entry A, offset X is considered free 4. kswapd stores page B at offset X in zswap (zswap could also be full, if so, page B would then be IOed to X, then skip step 5.) 5. entry A is replaced by B in tree->rbroot, this doesn't affect the local reference held by zswap-shrink work 6. zswap-shrink work writes back A at X, and frees zswap entry A 7. swapin of slot X brings A in memory instead of B The fix: Once the swap page cache has been... | CVSS3: 4.7 | 0% Низкий | 3 месяца назад |
| GHSA-4hcm-79j9-x472 In the Linux kernel, the following vulnerability has been resolved: fs: fix UAF/GPF bug in nilfs_mdt_destroy In alloc_inode, inode_init_always() could return -ENOMEM if security_inode_alloc() fails, which causes inode->i_private uninitialized. Then nilfs_is_metadata_file_inode() returns true and nilfs_free_inode() wrongly calls nilfs_mdt_destroy(), which frees the uninitialized inode->i_private and leads to crashes(e.g., UAF/GPF). Fix this by moving security_inode_alloc just prior to this_cpu_inc(nr_inodes) | CVSS3: 7.8 | 0% Низкий | 3 месяца назад |
| ELSA-2025-21118 ELSA-2025-21118: kernel security update (MODERATE) | 17 дней назад | ||
| ELSA-2025-19409 ELSA-2025-19409: kernel security update (MODERATE) | около 2 месяцев назад | ||
 | SUSE-SU-2025:03626-1 Security update for the Linux Kernel | 2 месяца назад | ||
| SUSE-SU-2025:03614-1 Security update for the Linux Kernel | 2 месяца назад | ||
| SUSE-SU-2025:03628-1 Security update for the Linux Kernel | 2 месяца назад | ||
| SUSE-SU-2025:03615-1 Security update for the Linux Kernel | 2 месяца назад | ||
| SUSE-SU-2025:3725-1 Security update for the Linux Kernel | около 2 месяцев назад | ||
| SUSE-SU-2025:03601-1 Security update for the Linux Kernel | 2 месяца назад | ||
| SUSE-SU-2025:03633-1 Security update for the Linux Kernel | 2 месяца назад | ||
| SUSE-SU-2025:3751-1 Security update for the Linux Kernel | около 2 месяцев назад | ||
| SUSE-SU-2025:03600-1 Security update for the Linux Kernel | 2 месяца назад | ||
| SUSE-SU-2025:03634-1 Security update for the Linux Kernel | 2 месяца назад | ||
| SUSE-SU-2025:4189-1 Security update for the Linux Kernel | 25 дней назад | ||
| openSUSE-SU-2025:20081-1 Security update for the Linux Kernel | 24 дня назад | ||
| openSUSE-SU-2025-20011-1 Security update for the Linux Kernel | около 1 месяца назад |
Уязвимостей на страницу