Astra Linux – Vulnerability found in Linux 6.1, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: clk: xilinx: vcu: Unregistering pllpost only if registered correctly If the registration of pllpost fails, it will be set to NULL or ERR. Unregistering pllpost will also fail, with the following call trace: “Unable to handle kern...

Astra Linux – Vulnerability found in Linux 6.1, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: can: xilinxcan: xcanwriteframe – Fixed the issue of a use-after-free of the transmitted SKB. canputechoskb takes ownership of the SKB, and it may be freed during or after the call. However, xilinxcan xcanwriteframe continues t...

Astra Linux – Vulnerability in Linux, Linux 5.10

In the drivers/usb/gadget/udc/udc-xilinx.c file within the Linux kernel, before version 5.16.12, the endpoint index was not validated, and it could be manipulated by the host for out-of-array access...

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: gpio: xilinx: Convert gpiolock to a raw spinlock. Functions related to the irqchip may be called in the context of a raw spinlock. Therefore, we must also use a raw spinlock for our own internal locking mechanisms. This fix...

Astra Linux – Vulnerability in Linux, Linux 5.10

In the Linux kernel before version 5.13.3, the drivers/net/ethernet/xilinx/xilinxemaclite.c file made it easier for attackers to bypass the ASLR protection mechanism, as it printed a kernel pointer i.e., the real IOMEM pointer...

remoteproc: xlnx: Only access buffer information if IPI is buffered

...

CVE-2026-46016

In the Linux kernel, the following vulnerability has been resolved: remoteproc: xlnx: Only access buffer information if IPI is buffered In the receive callback check if message is NULL to prevent possibility of crash by NULL pointer dereferencing...

CVE-2026-46016

In the Linux kernel, the following vulnerability has been resolved: remoteproc: xlnx: Only access buffer information if IPI is buffered In the receive callback check if message is NULL to prevent possibility of crash by NULL pointer dereferencing...

CVE-2026-46016 remoteproc: xlnx: Only access buffer information if IPI is buffered

In the Linux kernel, the following vulnerability has been resolved: remoteproc: xlnx: Only access buffer information if IPI is buffered In the receive callback check if message is NULL to prevent possibility of crash by NULL pointer dereferencing...

CVE-2026-46016

remoteproc: xlnx: Only access buffer information if IPI is buffered...

PT-2026-43883

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified openSUSE Tumbleweed versions prior to kernel-devel-7.0.11-1.1 Description A NULL pointer dereference issue exists in the remoteproc xlnx component. The system may crash if the receive callback does...

Astra Linux - уязвимость в linux-5.10, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: Driver: soc: xilinx – Use a safe loop iterator to avoid a use after free. The hashforeachpossible loop dereferences evedata to obtain the next item in the list. However, the loop frees evedata, leading to a use after free. Instea...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: net: xilinx: axienet: Fixed BQL accounting for multi-BD TX packets. When a TX packet spans multiple buffer descriptors scatter-gather, axienetfreetxchain sums the actual length of each BD from the descriptor status into an...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: gpio: gpio-xilinx: Fix integer overflow The current implementation cannot configure more than 32 pins due to an incorrect data type. Therefore, type casting using unsigned long is used to avoid this issue...

SUSE CVE-2026-43031

In the Linux kernel, the following vulnerability has been resolved: net: xilinx: axienet: Fix BQL accounting for multi-BD TX packets When a TX packet spans multiple buffer descriptors scatter-gather, axienetfreetxchain sums the per-BD actual length from descriptor status into a caller-provided...

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: Firmware: Xilinx: Do not perform sleepable memory allocations from an atomic context. The following issue was discovered using lockdep: 6.691371 BUG: A sleeping function is called from an invalid context at...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: drm: xlnx: zynqmpdpsub: Add a NULL check in zynqmpaudioinit. Calls to devmkasprintf may return null pointers in case of failure. However, some return values were not checked in zynqmpaudioinit. Add a NULL check in zynqmpaudioinit...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: dmaengine: xilinx: xdma: Fixed regmap maxregister The maxregister field is assigned the size of the register memory region, rather than the offset of the last register. As a result, reading from the regmap via debugfs can cause a...

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: media: xilinx: vipp: The refcount leak in xvipgraphdmainit has been fixed. The function ofgetchildbyname now returns a node pointer with a refcount incremented. We should use ofnodeput on it when there is no longer a need for it...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: Driver: soc: xilinx: fixed a memory leak in xlnxaddcbfornotifyevent. The kfree function should be called when memory fails to be allocated for cbdata in xlnxaddcbfornotifyevent. Otherwise, a memory leak will occur; therefore,...