PT-2026-43771

In the Linux kernel, the following vulnerability has been resolved: powerpc/eeh: fix recursive pci lock rescan remove locking in EEH event handling The recent commit 1010b4c012b0 "powerpc/eeh: Make EEH driver device hotplug safe" restructured the EEH driver to improve synchronization with the PCI...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: PCI: pnvphp: Fixed issue with surprise plug detection and recovery The existing PowerNV hotplug code did not handle surprise plug events correctly, resulting in a complete failure of the hotplug system after a device was...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: drivers: perf: marvellcn10k: Fixed a leak in the hotplug callback in tadpmuinit. The tadpmuinit function does not remove the callback added by cpuhpsetupstatemulti when platformdriverregister fails. The callback must be remove...

Astra Linux - уязвимость в linux

In the file drivers/pci/hotplug/rpadlpar/sysfs.c within the Linux kernel up to version 5.11.8, the RPA PCI Hotplug driver suffers a user-tolerable buffer overflow when writing a new device name to the driver from user space. This allows user space to write data directly to the kernel stack frame...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: timers/migration: Fixed an off-by-one root misconnection issue. Before attaching a new root to the old root, the children counter of the new root was checked to ensure that only the top-level groups of the upcoming CPU were...

Astra Linux - уязвимость в linux-5.10, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: PCI: s390: Fixed a use-after-free of PCI resources when per-function hot-plugging occurs. On the s390 architecture, PCI functions may be hot-plugged individually, even when they belong to a multi-functional device. Specifically, ...

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: hrtimers: Timers queued after CPUHPAPHRTIMERSDYING must be migrated away from the dying CPU to any online target. This is done to avoid delaying bandwidth timer handling tasks related to CPU hotplug progress. However, wakesup...

Astra Linux - уязвимость в linux-5.10, linux, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: hwmon: coretemp Simplified platform device handling Coretemp’s platform driver is unconventional. All the actual processing is performed globally by the initcall and CPU hotplug notifiers. The “driver” essentially just wraps t...

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerability has been resolved: LoongArch: Disable IRQs before initfn for non-boot CPUs. Disable IRQs before initfn for non-boot CPUs during hotplug operations, in order to silence such warnings and also to avoid potential errors due to unexpected interrupts...

Astra Linux - уязвимость в cloud-init

In cloud-init through 25.1.2, the systemd socket unit cloud-init-hotplugd.socket is included, with a default SocketMode of 0666, allowing world-write permissions. This is used for the "/run/cloud-init/hook-hotplug-cmd" FIFO. A non-privileged user can trigger hotplug-hook commands...

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

The brcm80211 component in the Linux kernel, from version 6.5.10 onwards, has a use-after-free issue in the code for disconnecting devices via hotplug i.e., removing the USB connection. For attackers who have physical access and local privileges, “this could be exploited in a real-world scenario....

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: - For cgroup and freezer: The requirement to hold cpuhotpluglock before freezermutex has been removed. - syzbot reports a circular locking dependency between cpuhotpluglock and freezermutex. To address this, the commit...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: sched/scs: Resetting the task stack state in bringupcpu When a CPU is hot-plugged, the idle task on that CPU calls several layers of C code before finally leaving the kernel. When KASAN is in use, a “poisoned” shadow is left behi...

CLSA-2026-1779098063 cloud-init: Fix of CVE-2024-11584

CVE-2024-11584: fix systemd socket unit permission vulnerability to prevent unprivileged user from triggering hotplug-hook commands...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: iommu/s390: Make attach succeed when the device was surprise removed When a PCI device is removed with surprise hotplug, there may still be attempts to attach the device to the default domain as part of tear down via...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: s390/cpumsf: Handling of CPU hotplug removal during sampling The handling of CPU hotplug removal triggers the following function calls: CPUHPAPPERFS390SFONLINE -- s390pmusfofflinecpu ... CPUHPAPPERFONLINE -- perfeventexitcpu The...

Astra Linux - уязвимость в linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: drm/bridge: tc358767 – Ensure the connector is fully initialized before signaling HPD events via IRQ. Make sure the connector is fully initialized before sending any HPD events using drmkmshelperhotplugevent. Otherwise, this may...

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: Wifi: brcmfmac – Fixed a use-after-free bug in brcmfcfg80211detach. This is the candidate patch for CVE-2023-47233: https://nvd.nist.gov/vuln/detail/CVE-2023-47233 In the brcm80211 driver, the process starts with the following...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: hrtimers: Properly handle CPU state during hotplug events. Consider a scenario where a CPU transitions from CPUHPONLINE to CPUHPHRTIMERSPREPARE after a CPU is unplugged, and then back to CPUHPONLINE again. Since the...

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: IB/hfi1: Fix possible panic during hotplug remove During hotplug remove it is possible that the update counters work might be pending, and may run after memory has been freed. Cancel the update counters work before freeing memory...