570 matches found
Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1
In the Linux kernel, the following vulnerability has been resolved: Net: Bridge – Use DEVSTATSINC The syzbot/KCSAN reported a data race in the brhandleframefinish function 1. This function can be executed on multiple CPUs without mutual exclusion. It is recommended to use the SMP-safe DEVSTATSINC...
Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1
In the Linux kernel, the following vulnerability has been resolved: Audit: Fixed a possible soft lockup in audit inode child. Tracefs or debugfs might cause hundreds to thousands of PATH records. Too many PATH records might lead to a soft lockup. For example: 1. CONFIGKASAN=y && CONFIGPREEMPTION=...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: btrfs: Fixed an information leak in btrfsioctllogicaltoino. Syzbot reported the following information leaks related to btrfsioctllogicaltoino: - BUG: KMSAN: A kernel-infoleak exists in instrumentcopytouser from...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: MIPS: KVM: Fix for NULL pointer dereferencing After committing change 45c7e8af4a5e3f0bea4ac209 “MIPS: Remove KVMTE support”, we encountered a NULL pointer dereferencing issue when creating a KVM guest: 146.243409 Starting KVM wit...
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: media: rc: The bpf attach/detach operation requires write permission. source-iocs-preserved const=CAPNETADMIN...
Astra Linux – Vulnerabilities in Linux-6.1, Linux-5.15, Linux-5.10
In the Linux kernel, the following vulnerability has been resolved: drm/nouveau: The WARNON message in nouveaufencecontextkill has been fixed. Nouveau is designed in such a way that it is expected that fences are only signaled through nouveaufencesignal. However, at least in one other place,...
Astra Linux – Vulnerability in Linux 5.10
There is a vulnerability related to time-of-check to time-of-use issues in the iouringsubsystem’s IORINGOPCLOSE operation in the Linux kernel versions 5.6 to 5.11 inclusive. This vulnerability allows a local user to elevate their privileges to root. Introduced in the version...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate command request size In commit 2b9b8f3b68ed “ksmbd: validate command payload size”, except for the SMB2OPLOCKBREAKHE command, the request size of other commands is not checked—this is not expected. This issue was...
CVE-2026-31698 affecting package kernel for versions less than 6.6.137.1-2
CVE-2026-31698 affecting package kernel for versions less than 6.6.137.1-2. An upgraded version of the package is available that resolves this issue...
CVE-2026-43243 affecting package kernel for versions less than 6.6.137.1-2
CVE-2026-43243 affecting package kernel for versions less than 6.6.137.1-2. An upgraded version of the package is available that resolves this issue...
CVE-2026-31525 affecting package kernel for versions less than 6.6.134.1-2
CVE-2026-31525 affecting package kernel for versions less than 6.6.134.1-2. An upgraded version of the package is available that resolves this issue...
CVE-2025-71269 affecting package kernel for versions less than 6.6.134.1-2
CVE-2025-71269 affecting package kernel for versions less than 6.6.134.1-2. An upgraded version of the package is available that resolves this issue...
CVE-2026-31427 affecting package kernel for versions less than 6.6.134.1-2
CVE-2026-31427 affecting package kernel for versions less than 6.6.134.1-2. An upgraded version of the package is available that resolves this issue...
CVE-2026-31593 affecting package kernel for versions less than 6.6.134.1-2
CVE-2026-31593 affecting package kernel for versions less than 6.6.134.1-2. An upgraded version of the package is available that resolves this issue...
CVE-2026-31504 affecting package kernel for versions less than 6.6.134.1-2
CVE-2026-31504 affecting package kernel for versions less than 6.6.134.1-2. An upgraded version of the package is available that resolves this issue...
CVE-2026-23313 affecting package kernel for versions less than 6.6.137.1-1
CVE-2026-23313 affecting package kernel for versions less than 6.6.137.1-1. An upgraded version of the package is available that resolves this issue...
CVE-2026-31682 affecting package kernel for versions less than 6.6.134.1-2
CVE-2026-31682 affecting package kernel for versions less than 6.6.134.1-2. An upgraded version of the package is available that resolves this issue...
CVE-2026-31430 affecting package kernel for versions less than 6.6.137.1-1
CVE-2026-31430 affecting package kernel for versions less than 6.6.137.1-1. An upgraded version of the package is available that resolves this issue...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013450)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013450 advisory. An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.18 before 5.18.18. fs/ksmbd/smb2pdu.c lacks length validation in the non-padding case in smb2writ...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013416)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013416 advisory. An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. fs/ksmbd/smb2pdu.c has a use-after-free and OOPS for SMB2TREEDISCONNECT. Tenabl...