Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: LoongArch: BPF: No support for struct arguments in trampoline programs The current implementation does not support struct arguments. This causes an oops when running the bpf selftest: $ ./testprogs -a tracingstruct Oops1: CPU -1...

SUSE CVE-2026-31559

In the Linux kernel, the following vulnerability has been resolved: LoongArch: Fix missing NULL checks for kstrdup 1. Replace "offindnodebypath"/"" with "ofroot" to avoid multiple calls to "ofnodeput". 2. Fix a potential kernel oops during early boot when memory allocation fails while parsing CPU...

Linux Distros Unpatched Vulnerability : CVE-2026-31558

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Make kvmgetvcpubycpuid more robust kvmgetvcpubycpuid takes a cpuid parameter...

CVE-2026-31564

A flaw was found in the Linux kernel, specifically within the Kernel-based Virtual Machine KVM component for LoongArch architecture. An incorrect base address calculation in the kvmeiointcregsaccess function, where a u64 type was not properly converted to a void before adding an offset, could lea...

DEBIAN-CVE-2026-31569

In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Handle the case that EIOINTC's coremap is empty EIOINTC's coremap in eiointcupdateswcoremap can be empty, currently we get a cpuid with -1 in this case, but we actually need 0 because it's similar as the case that...

DEBIAN-CVE-2026-31558

In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Make kvmgetvcpubycpuid more robust kvmgetvcpubycpuid takes a cpuid parameter whose type is int, so cpuid can be negative. Let kvmgetvcpubycpuid return NULL for this case so as to make it more robust. This fix an...

CVE-2026-31569

In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Handle the case that EIOINTC's coremap is empty EIOINTC's coremap in eiointcupdateswcoremap can be empty, currently we get a cpuid with -1 in this case, but we actually need 0 because it's similar as the case that...

CVE-2026-31569 LoongArch: KVM: Handle the case that EIOINTC's coremap is empty

In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Handle the case that EIOINTC's coremap is empty EIOINTC's coremap in eiointcupdateswcoremap can be empty, currently we get a cpuid with -1 in this case, but we actually need 0 because it's similar as the case that...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-011369)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011369 advisory. In the Linux kernel, the following vulnerability has been resolved: LoongArch: cpuinfo: Fix a warning for CONFIGCPUMASKOFFSTACK When CONFIGCPUMASKOFFSTACK and...

CVE-2025-71228 LoongArch: Set correct protection_map[] for VM_NONE/VM_SHARED

In the Linux kernel, the following vulnerability has been resolved: LoongArch: Set correct protectionmap for VMNONE/VMSHARED For 32BIT platform PAGEPROTNONE is 0, so set a VMA to be VMNONE or VMSHARED will make pages non-present, then cause Oops with kernel page fault. Fix it by set correct...

CVE-2026-23028

In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Fix kvmdevice leak in kvmipidestroy In kvmioctlcreatedevice, kvmdevice has allocated memory, kvmdevice-destroy seems to be supposed to free its kvmdevice struct, but kvmipidestroy is not currently doing this, that...

CVE-2026-23027

In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Fix kvmdevice leak in kvmpchpicdestroy In kvmioctlcreatedevice, kvmdevice has allocated memory, kvmdevice-destroy seems to be supposed to free its kvmdevice struct, but kvmpchpicdestroy is not currently doing this...

CVE-2026-23027

The provided reports describe a Linux kernel issue for LoongArch KVM: in kvm_ioctl_create_device(), memory is allocated for kvm_device, and the destroy() path (kvm_pch_pic_destroy()) did not free the allocated struct, causing a memory leak. The fix is to ensure kvm_pch_pic_destroy() frees the kvm...

PT-2026-5532

In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Fix kvm device leak in kvm eiointc destroy In kvm ioctl create device, kvm device has allocated memory, kvm device-destroy seems to be supposed to free its kvm device struct, but kvm eiointc destroy is not current...

CVE-2025-40041

CVE-2025-40041 describes a LoongArch-specific Linux kernel fix for BPF: sign-extension of struct ops return values (instead of treating the pointer as a 32-bit value). The issue caused a kernel panic during the ns_bpf_qdisc selftest due to sign-extension being incorrect for LoongArch ABI. Public ...

EUVD-2025-28945

Malicious code in bioql PyPI...

CVE-2023-53361 LoongArch: mm: Add p?d_leaf() definitions

In the Linux kernel, the following vulnerability has been resolved: LoongArch: mm: Add p?dleaf definitions When I do LTP test, LTP test case ksm06 caused panic at breakksmpmdentry - pmdleaf Huge page table but False - ptepresent panic The reason is pmdleaf is not defined, So like commit...

DEBIAN-CVE-2025-39767

In the Linux kernel, the following vulnerability has been resolved: LoongArch: Optimize module load time by optimizing PLT/GOT counting When enabling CONFIGKASAN, CONFIGPREEMPTVOLUNTARYBUILD and CONFIGPREEMPTVOLUNTARY at the same time, there will be soft deadlock, the relevant logs are as follows...

PT-2025-37225

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a flaw related to module loading time optimization. Specifically, the module frob arch sections function utilizes a counting algorithm with On^2 complexity wh...

CVE-2025-39704

In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Fix stack protector issue in sendipidata Function kvmiobusread is called in function sendipidata, buffer size of parameter val should be at least 8 bytes. Since some emulation functions like loongarchipireadl and...