Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: - For cgroup and freezer: The requirement to hold cpuhotpluglock before freezermutex has been removed. - syzbot reports a circular locking dependency between cpuhotpluglock and freezermutex. To address this, the commit...

SUSE CVE-2026-31565

In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Fix deadlock during netdev reset with active connections Resolve deadlock that occurs when user executes netdev reset while RDMA applications e.g., rping are active. The netdev reset causes ice driver to remove irdma...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002269)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002269 advisory. The epollctl system call in fs/eventpoll.c in the Linux kernel before 3.2.24 does not properly handle ELOOP errors in EPOLLCTLADD operations, which allows local user...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001785)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001785 advisory. The epollctl system call in fs/eventpoll.c in the Linux kernel before 3.2.24 does not properly handle ELOOP errors in EPOLLCTLADD operations, which allows local user...

Malicious code in next-circular-dependency (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bea89df6bfd2c4f68a23ce84ab344f8d0581b90cfbf4c6e0a82570797b5cffc0 The package next-circular-dependency was found to contain malicious code. Source: ghsa-malware...

MAL-2025-190979 Malicious code in next-circular-dependency (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bea89df6bfd2c4f68a23ce84ab344f8d0581b90cfbf4c6e0a82570797b5cffc0 The package next-circular-dependency was found to contain malicious code. Source: ghsa-malware...

EUVD-2025-199064

Malicious code in next-circular-dependency npm...

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. This package contains malicious code associated with the Sha1-hulud supply chain attack, and its content was removed from the official package manager. The malware functions as a self-replicating worm capable of...

EUVD-2012-3348

Malware in sbrugna...

EUVD-2018-18104

Malware in sbrugna...

KVM: arm64: Fix circular locking dependency

...

CLSA-2024-1728936982 kernel: Fix of 86 CVEs

drm/amd/pm: Fix negative array index read CVE-2024-46821 - drm/amd/display: Check gpioid before used as array index CVE-2024-46818 - drm/amd/display: Check linkindex before accessing dc-links CVE-2024-46813 - drm/amd/display: Fix index may exceed array range within fpuupdatebwboundingbox...

CVE-2022-48734

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix deadlock between quota disable and qgroup rescan worker Quota disable ioctl starts a transaction before waiting for the qgroup rescan worker completes. However, this wait can be infinite and results in deadlock because...

CVE-2022-48734 btrfs: fix deadlock between quota disable and qgroup rescan worker

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix deadlock between quota disable and qgroup rescan worker Quota disable ioctl starts a transaction before waiting for the qgroup rescan worker completes. However, this wait can be infinite and results in deadlock because...

SUSE CVE-2024-0443

A flaw was found in the blkgs destruction path in block/blk-cgroup.c in the Linux kernel, leading to a cgroup blkio memory leakage problem. When a cgroup is being destroyed, cgrouprstatflush is only called at cssreleaseworkfn, which is called when the blkcg reference count reaches 0. This circula...

RemoteOwner circular dependency at deployment time

Lines of code Vulnerability details Impact The RemoteOwner.sol contract has a security measure that ensures the sender from the remote/origin chain was the origin chain owner i.e. a RngAuctionRelayerRemoteOwner.sol deployment, and this address is set at deployment time in the constructor. The...

PT-2025-25869 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.19.0-rc7+ Description: A lockdep violation has been resolved in the Linux kernel. The issue was caused by the scope of udc mutex being too large, which led to a possible circular locking dependency. The proble...

SUSE CVE-2012-3375

The epollctl system call in fs/eventpoll.c in the Linux kernel before 3.2.24 does not properly handle ELOOP errors in EPOLLCTLADD operations, which allows local users to cause a denial of service file-descriptor consumption and system crash via a crafted application that attempts to create a...

ca-certificates bug fix and enhancement update

An update is available for ca-certificates. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The ca-certificates package contains a set of Certificate Authority C...

ca-certificates bug fix and enhancement update

The ca-certificates package contains a set of Certificate Authority CA certificates chosen by the Mozilla Foundation for use with the Internet Public Key Infrastructure PKI. Bug Fixes and Enhancements: Annual AlmaLinux 8 ca-certificates update 2020 to nss 3.53 for Firefox 78 BZ1849732 circular...