Количество 88
Количество 88
CVE-2025-38718
sctp: linearize cloned gso packets in sctp_rcv
CVE-2025-38718
In the Linux kernel, the following vulnerability has been resolved: s ...
ELSA-2025-11861
ELSA-2025-11861: kernel security update (MODERATE)
SUSE-SU-2025:02588-1
Security update for the Linux Kernel
GHSA-5x8j-6m8p-fvgx
In the Linux kernel, the following vulnerability has been resolved: firmware: arm_scpi: Ensure scpi_info is not assigned if the probe fails When scpi probe fails, at any point, we need to ensure that the scpi_info is not set and will remain NULL until the probe succeeds. If it is not taken care, then it could result use-after-free as the value is exported via get_scpi_ops() and could refer to a memory allocated via devm_kzalloc() but freed when the probe fails.
GHSA-p9gg-wgfj-48p7
In the Linux kernel, the following vulnerability has been resolved: sctp: linearize cloned gso packets in sctp_rcv A cloned head skb still shares these frag skbs in fraglist with the original head skb. It's not safe to access these frag skbs. syzbot reported two use-of-uninitialized-memory bugs caused by this: BUG: KMSAN: uninit-value in sctp_inq_pop+0x15b7/0x1920 net/sctp/inqueue.c:211 sctp_inq_pop+0x15b7/0x1920 net/sctp/inqueue.c:211 sctp_assoc_bh_rcv+0x1a7/0xc50 net/sctp/associola.c:998 sctp_inq_push+0x2ef/0x380 net/sctp/inqueue.c:88 sctp_backlog_rcv+0x397/0xdb0 net/sctp/input.c:331 sk_backlog_rcv+0x13b/0x420 include/net/sock.h:1122 __release_sock+0x1da/0x330 net/core/sock.c:3106 release_sock+0x6b/0x250 net/core/sock.c:3660 sctp_wait_for_connect+0x487/0x820 net/sctp/socket.c:9360 sctp_sendmsg_to_asoc+0x1ec1/0x1f00 net/sctp/socket.c:1885 sctp_sendmsg+0x32b9/0x4a80 net/sctp/socket.c:2031 inet_sendmsg+0x25a/0x280 net/ipv4/af_inet.c:851 sock_...
SUSE-SU-2025:02848-1
Security update for the Linux Kernel
SUSE-SU-2025:02537-1
Security update for the Linux Kernel
ELSA-2025-20471
ELSA-2025-20471: Unbreakable Enterprise kernel security update (IMPORTANT)
ELSA-2025-16880
ELSA-2025-16880: kernel security update (MODERATE)
SUSE-SU-2025:01972-1
Security update for the Linux Kernel
ELSA-2025-20530
ELSA-2025-20530: Unbreakable Enterprise kernel security update (IMPORTANT)
ELSA-2025-20480
ELSA-2025-20480: Unbreakable Enterprise kernel security update (IMPORTANT)
ELSA-2025-20470
ELSA-2025-20470: Unbreakable Enterprise kernel security update (IMPORTANT)
SUSE-SU-2025:01983-1
Security update for the Linux Kernel
SUSE-SU-2025:02000-1
Security update for the Linux Kernel
SUSE-SU-2025:01965-1
Security update for the Linux Kernel
SUSE-SU-2025:01951-1
Security update for the Linux Kernel
SUSE-SU-2025:01967-1
Security update for the Linux Kernel
SUSE-SU-2025:01964-1
Security update for the Linux Kernel
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-38718 sctp: linearize cloned gso packets in sctp_rcv | CVSS3: 7 | 0% Низкий | 2 месяца назад |
| CVE-2025-38718 In the Linux kernel, the following vulnerability has been resolved: s ... | 0% Низкий | 2 месяца назад | |
| ELSA-2025-11861 ELSA-2025-11861: kernel security update (MODERATE) | 4 месяца назад | ||
 | SUSE-SU-2025:02588-1 Security update for the Linux Kernel | 4 месяца назад | ||
| GHSA-5x8j-6m8p-fvgx In the Linux kernel, the following vulnerability has been resolved: firmware: arm_scpi: Ensure scpi_info is not assigned if the probe fails When scpi probe fails, at any point, we need to ensure that the scpi_info is not set and will remain NULL until the probe succeeds. If it is not taken care, then it could result use-after-free as the value is exported via get_scpi_ops() and could refer to a memory allocated via devm_kzalloc() but freed when the probe fails. | 0% Низкий | 5 месяцев назад | |
| GHSA-p9gg-wgfj-48p7 In the Linux kernel, the following vulnerability has been resolved: sctp: linearize cloned gso packets in sctp_rcv A cloned head skb still shares these frag skbs in fraglist with the original head skb. It's not safe to access these frag skbs. syzbot reported two use-of-uninitialized-memory bugs caused by this: BUG: KMSAN: uninit-value in sctp_inq_pop+0x15b7/0x1920 net/sctp/inqueue.c:211 sctp_inq_pop+0x15b7/0x1920 net/sctp/inqueue.c:211 sctp_assoc_bh_rcv+0x1a7/0xc50 net/sctp/associola.c:998 sctp_inq_push+0x2ef/0x380 net/sctp/inqueue.c:88 sctp_backlog_rcv+0x397/0xdb0 net/sctp/input.c:331 sk_backlog_rcv+0x13b/0x420 include/net/sock.h:1122 __release_sock+0x1da/0x330 net/core/sock.c:3106 release_sock+0x6b/0x250 net/core/sock.c:3660 sctp_wait_for_connect+0x487/0x820 net/sctp/socket.c:9360 sctp_sendmsg_to_asoc+0x1ec1/0x1f00 net/sctp/socket.c:1885 sctp_sendmsg+0x32b9/0x4a80 net/sctp/socket.c:2031 inet_sendmsg+0x25a/0x280 net/ipv4/af_inet.c:851 sock_... | 0% Низкий | 2 месяца назад | |
| SUSE-SU-2025:02848-1 Security update for the Linux Kernel | 3 месяца назад | ||
| SUSE-SU-2025:02537-1 Security update for the Linux Kernel | 4 месяца назад | ||
| ELSA-2025-20471 ELSA-2025-20471: Unbreakable Enterprise kernel security update (IMPORTANT) | 4 месяца назад | ||
| ELSA-2025-16880 ELSA-2025-16880: kernel security update (MODERATE) | около 2 месяцев назад | ||
| SUSE-SU-2025:01972-1 Security update for the Linux Kernel | 5 месяцев назад | ||
| ELSA-2025-20530 ELSA-2025-20530: Unbreakable Enterprise kernel security update (IMPORTANT) | 3 месяца назад | ||
| ELSA-2025-20480 ELSA-2025-20480: Unbreakable Enterprise kernel security update (IMPORTANT) | 4 месяца назад | ||
| ELSA-2025-20470 ELSA-2025-20470: Unbreakable Enterprise kernel security update (IMPORTANT) | 4 месяца назад | ||
| SUSE-SU-2025:01983-1 Security update for the Linux Kernel | 5 месяцев назад | ||
| SUSE-SU-2025:02000-1 Security update for the Linux Kernel | 5 месяцев назад | ||
| SUSE-SU-2025:01965-1 Security update for the Linux Kernel | 5 месяцев назад | ||
| SUSE-SU-2025:01951-1 Security update for the Linux Kernel | 5 месяцев назад | ||
| SUSE-SU-2025:01967-1 Security update for the Linux Kernel | 5 месяцев назад | ||
| SUSE-SU-2025:01964-1 Security update for the Linux Kernel | 5 месяцев назад |
Уязвимостей на страницу