CVE-2025-71064

CVE-2025-71064 (Linux kernel, net/hns3) : The issue arises from allocating hdev->htqp and kinfo->tqp with kinfo->num_tqps = min(new_tqps, hdev->num_tqps), which can leave some hdev->htqp[i] uninitialized in hclgevf_knic_setup(). The patch fixes the root cause by allocating both hde...

CVE-2025-71064 net: hns3: using the num_tqps in the vf driver to apply for resources

In the Linux kernel, the following vulnerability has been resolved: net: hns3: using the numtqps in the vf driver to apply for resources Currently, hdev-htqp is allocated using hdev-numtqps, and kinfo-tqp is allocated using kinfo-numtqps. However, kinfo-numtqps is set to minnewtqps, hdev-numtqps;...

CVE-2025-71064 net: hns3: using the num_tqps in the vf driver to apply for resources

In the Linux kernel, the following vulnerability has been resolved: net: hns3: using the numtqps in the vf driver to apply for resources Currently, hdev-htqp is allocated using hdev-numtqps, and kinfo-tqp is allocated using kinfo-numtqps. However, kinfo-numtqps is set to minnewtqps, hdev-numtqps;...

CVE-2025-68808

CVE-2025-68808 affects the Linux kernel’s media/vidtv code. In vidtv_channel_si_init(), a temporary list is created and ownership is transferred to PAT/SDT/EIT tables via vidtv_psi_pat_program_assign(), vidtv_psi_sdt_service_assign(), and vidtv_psi_eit_event_assign(). The local pointer used after...

CVE-2025-68808 media: vidtv: initialize local pointers upon transfer of memory ownership

In the Linux kernel, the following vulnerability has been resolved: media: vidtv: initialize local pointers upon transfer of memory ownership vidtvchannelsiinit creates a temporary list program, service, event and ownership of the memory itself is transferred to the PAT/SDT/EIT tables through...

CVE-2025-68807

CVE-2025-68807 concerns a race in the Linux kernel involving wbt_enable_default and IO submission that could lead to a negative inflight writeback counter and hung tasks. According to Red Hat, SUSE, Ubuntu, Debian, and other sources, the fix splits wbt_enable_default() into three functions (__wbt...

CVE-2025-68807 block: fix race between wbt_enable_default and IO submission

In the Linux kernel, the following vulnerability has been resolved: block: fix race between wbtenabledefault and IO submission When wbtenabledefault is moved out of queue freezing in elevatorchange, it can cause the wbt inflight counter to become negative -1, leading to hung tasks in the writebac...

CVE-2025-68807 block: fix race between wbt_enable_default and IO submission

In the Linux kernel, the following vulnerability has been resolved: block: fix race between wbtenabledefault and IO submission When wbtenabledefault is moved out of queue freezing in elevatorchange, it can cause the wbt inflight counter to become negative -1, leading to hung tasks in the writebac...

Jervis has Deterministic AES IV Derivation from Passphrase

Vulnerability https://github.com/samrocketman/jervis/blob/157d2b63ffa5c4bb1d8ee2254950fd2231de2b05/src/main/groovy/net/gleske/jervis/tools/SecurityIO.groovyL866-L874...

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerabilities have been resolved: hwrng: ks-sa – fix division by zero in kssarnginit The issue of division by zero in kssarnginit was caused by missing clock pointer initialization. The clkgetrate function calls are performed on an uninitialized clk pointer,...

Astra Linux – Vulnerability found in Linux 6.12, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: net: usb: asixdevices: The PHY address mask in MDIO bus initialization was corrected. Syzbot reported a shift-out-of-bounds exception during MDIO bus initialization. The PHY address should be masked to 5 bits 0-31. Without this...

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerabilities have been resolved: accel/qaic: Fixed the order of bootlog initialization. As soon as we queue MHI buffers to receive the bootlog from the device, we might be receiving data. Therefore, all resources necessary to process that data must be...

Astra Linux – Vulnerability found in Linux 6.12, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: Media: MediTech; vcodec: Fixed a resource leak related to the scp device during firmware initialization. On MediTech devices with a System Companion Processor SCP, the mtkscp structure must be explicitly removed to avoid a resour...

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: Most: usb: hdmprobe: Fixed the call to putdevice before device initialization. The early error path in hdmprobe can lead to a call to errfreemdev before &mdev-dev has been initialized using deviceinitialize. Calling...

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerabilities have been resolved: regmap: slimbus: Fix the buscontext pointer in regmap init calls The commit 4e65bda8273c “ASoC: wcd934x: Fix error handling in wcd934xCodecParsedata” revealed the issue in the slimbus regmap. This commit causes audio playback ...

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: net: sched: actife: initialize struct tcife to fix KMSAN kernel-infoleak. This issue was fixed by using the syzbot tool to detect and address the KMSAN kernel-infoleak. In tcfifedump, the variable ‘opt’ was partially initialized...

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: net: sched: actconnmark: initialize struct tcife to fix kernel leak In tcfconnmarkdump, the variable ‘opt’ was partially initialized using a specified initializer. As a result, the padding bytes remained uninitialized. The nlaput...

PT-2026-2539

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition exists between wbt enable default and IO submission within the Linux kernel's block subsystem. Moving wbt enable default out of queue freezing can lead to a negative...

PT-2026-2585

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s networking subsystem related to the hns3 driver. The issue stems from inconsistent allocation sizes for hdev-htqp and kinfo-tqp when applying for...

PT-2026-2540

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to memory management within the vidtv driver. Specifically, local pointers are not initialized to NULL after memory ownership is transferred...