Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: net: hns3: Fix kernel crash when uninstalling the driver When the driver is uninstalled and the VFs are disabled concurrently, a kernel crash occurs. The reason is that both actions call the function pcidisablesriov. The value of...

Astra Linux - уязвимость в qemu

A issue was discovered in QEMU versions 7.1.0 through 8.2.1. In hw/pci/pciesriov.c, the registervfs function does not set NumVFs to PCISRIOVTOTALVF, resulting in improper interaction with hw/nvme/ctrl.c...

Astra Linux - уязвимость в linux-5.10, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: iavf: fixed the hang upon reboot with Ice When a system with E810 and existing VFs is rebooted, the following hang may occur. PID 1 hangs in iavfremove, which is part of a network driver: PID: 1 TASK: ffff965400e5a340 CPU: 24...

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerabilities have been resolved: ixgbe: Added locking to prevent panic when setting sriovnumvfs to zero. It is possible to disable VFs while the PF driver is processing requests from the VF driver. This can result in a panic. BUG: Unable to handle kernel pagi...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: drm/xe/vf: Do not expose sysfs attributes that are not applicable to VFs. VFs cannot read the BMGPCIECAP0x138340 register, nor can they access the PCODE which is already guarded by the info.skippcode flag. Therefore, we should...

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: sfc: Fix for kernel panic when creating VFs. When creating VFs, a kernel panic can occur when calling efxef10tryupdatenicstatsvf. When releasing a DMA coherent buffer, under certain circumstances, it is necessary to unmap the...

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix for bridge mode operations when there are no VFs Currently, attempting to set the bridge mode attribute when numvfs=0 leads to a crash: bridge link set dev eth2 hwmode vepa 168.967392 BUG: kernel NULL pointer...

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: PCI: Fixed pcideviceispresent for VFs by checking PF. Previously, pcideviceispresent did not work for VFs because it read the Vendor and Device IDs, which are 0xffff for VFs, implying that these devices are not present. Instead, ...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: drm/xe/vf: Performing early GT MMIO initialization to read the GMDID. VFs need to communicate with the GuC to obtain the GMDID value. Existing GuC functions that use this information assume that the GT has already set up its MMIO...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: drm/xe/pf: Clearing all LMTT pages upon allocation. Our LMEM buffer objects are not cleared by default upon allocation. During VF provisioning, we only set up LMTT PTEs for the actually provisioned LMEM range. However, beyond tha...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: benet: Fixed a bug when creating VFs. The benet function crashes as soon as SRIOV VFs are created. Kernel bug at mm/vmalloc.c:3457: Oops: Invalid opcode: 0000 1. SMP KASAN: NOPTI. CPU: 4; UID: 0; PID: 7408; Comm: test.sh; Kdum...

Astra Linux - уязвимость в linux-5.15

In the Linux kernel, the following vulnerability has been resolved: PCI/IOV: Fixed a race condition between enabling/disabling SR-IOV and hot-plug events. The commit 05703271c3cd “PCI/IOV: Added locking for PCI rescan and removal when enabling/disabling SR-IOV” attempted to address a race conditi...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013810)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013810 advisory. In the Linux kernel, the following vulnerability has been resolved: PCI: Fix pcideviceispresent for VFs by checking PF pcideviceispresent previously didn't work for...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013761)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013761 advisory. In the Linux kernel, the following vulnerability has been resolved: PCI/IOV: Fix race between SR-IOV enable/disable and hotplug Commit 05703271c3cd PCI/IOV: Add PCI...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-011326)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011326 advisory. In the Linux kernel, the following vulnerability has been resolved: PCI: Fix pcideviceispresent for VFs by checking PF pcideviceispresent previously didn't work for...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006627)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006627 advisory. In the Linux kernel, the following vulnerability has been resolved: ixgbe: Add locking to prevent panic when setting sriovnumvfs to zero It is possible to disable VF...

Azure Linux 3.0 Security Update: kernel (CVE-2024-46857)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46857 advisory. - In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix bridge mode operations whe...

benet: fix BUG when creating VFs

...

SUSE CVE-2023-54070

In the Linux kernel, the following vulnerability has been resolved: igb: clean up in all error paths when enabling SR-IOV After commit 50f303496d92 "igb: Enable SR-IOV after reinit", removing the igb module could hang or crash depending on the machine when the module has been loaded with the maxv...

Linux Distros Unpatched Vulnerability : CVE-2023-54070

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - igb: clean up in all error paths when enabling SR-IOV After commit 50f303496d92 igb: Enable SR-IOV after reinit, removing the igb module could hang or crash...