ROS-20260420-73-0047

Vulnerability in incus related to character reference tracking. Exploitation of the vulnerability could allow an attacker to escalate his privileges...

AZL-78428 CVE-2025-71152 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: net: dsa: properly keep track of conduit reference Problem description ------------------- DSA has a mumbo-jumbo of reference handling of the conduit net device and its kobject which, sadly, is just wrong and doesn't make sense...

CVE-2022-49896 cxl/pmem: Fix cxl_pmem_region and cxl_memdev leak

In the Linux kernel, the following vulnerability has been resolved: cxl/pmem: Fix cxlpmemregion and cxlmemdev leak When a cxlnvdimm object goes through a -remove event device physically removed, nvdimm-bridge disabled, or nvdimm device disabled, then any associated regions must also be disabled. ...

CVE-2025-21884

In the Linux kernel, the following vulnerability has been resolved: net: better track kernel sockets lifetime While kernel sockets are dismantled during pernetoperations-exit, their freeing can be delayed by any tx packets still held in qdisc or device queues, due to skbsetownerw prior calls. Thi...

CVE-2025-21884 net: better track kernel sockets lifetime

In the Linux kernel, the following vulnerability has been resolved: net: better track kernel sockets lifetime While kernel sockets are dismantled during pernetoperations-exit, their freeing can be delayed by any tx packets still held in qdisc or device queues, due to skbsetownerw prior calls. Thi...

DEBIAN-CVE-2022-49390

In the Linux kernel, the following vulnerability has been resolved: macsec: fix UAF bug for realdev Create a new macsec device but not get reference to realdev. That can not ensure that realdev is freed after macsec. That will trigger the UAF bug for realdev as following:...

PT-2026-4365

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel has a flaw in the handling of references for DSA Distributed Switch Architecture conduits and their associated kobjects. Specifically, the OF Device Tree path does not...

The vulnerability of the Runc command-line tool for isolated containers, related to the race condition, allows attackers to manipulate the integrity of data. This condition enables tracking of references, enabling attackers to affect the data’s integrity.

The vulnerability of the Runc container launch tool is related to the state of the race, which allows for the tracking of links. Exploiting this vulnerability could enable a hacker to compromise the integrity of data...