51 matches found
CVE-2026-46147
In CVE-2026-46147, the Linux kernel KVM arm64 vCPU initialization had two bugs: (1) after hyp_pin_shared_mem() succeeds, an early error path could jump to unlock and leak host pin references for vCPU and SVE state pages because unpin_host_vcpu()/unpin_host_sve_state() weren’t called; a fix extrac...
Astra Linux - уязвимость в linux-5.10, linux-5.15
In the Linux kernel, the following vulnerability has been resolved: arm64: Set exceptionirqentry with irqentry as a default. filterirqstacks is supposed to remove entries that are related to irq entries from its call stack. And inirqentrytext, which is called by filterirqstacks, uses...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: arm64/fpsimd: ptrace: Fixed SVE writes on !SME systems When SVE is supported but SME is not supported, a ptrace write to NTARMSVE regset can place the tracee into an invalid state. In this state, non-streaming SVE register data i...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerabilities have been resolved: KVM: arm64: Fixed a shift-out-of-bounds bug Fixed a shift-out-of-bounds bug reported by UBSAN when running a VM with MTE enabled on a host kernel. UBSAN: Shift-out-of-bounds in arch/arm64/kvm/sys regs.c:1988:14. The shift...
Astra Linux - уязвимость в linux-5.10, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: arm64/fpsimd: Discarding stale CPU state when handling SME traps The logic for handling SME traps incorrectly manipulates the saved FPSIMD/SVE/SME state. A race condition can occur where the SME trap handler is preempted before a...
Astra Linux - уязвимость в linux-5.10, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: arm64: errata: Add missing sentinel entries to Spectre-BHB MIDR arrays The commit a5951389e58d “arm64: errata: Add newer ARM cores to the spectrebhbloopaffected lists” added some additional CPUs to the Spectre-BHB workaround. Thi...
Linux Distros Unpatched Vulnerability : CVE-2026-31648
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mm: filemap: fix nrpages calculation overflow in filemapmappages When running stress-ng on my Arm64 machine with v7.0-rc3 kernel, I encountered some very stran...
CVE-2026-31600
In the Linux kernel, the following vulnerability has been resolved: arm64: mm: Handle invalid large leaf mappings correctly It has been possible for a long time to mark ptes in the linear map as invalid. This is done for secretmem, kfence, realm dma memory un/share, and others, by simply clearing...
EUVD-2026-25541
In the Linux kernel, the following vulnerability has been resolved: mm: filemap: fix nrpages calculation overflow in filemapmappages When running stress-ng on my Arm64 machine with v7.0-rc3 kernel, I encountered some very strange crash issues showing up as "Bad page state": " 734.496287 BUG: Bad...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013669)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013669 advisory. In the Linux kernel, the following vulnerability has been resolved: misc: pciendpointtest: Fix pciendpointtestcopy,write,read panic The dmamapsingle doesn't permit...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-010689)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010689 advisory. In the Linux kernel, the following vulnerability has been resolved: arch/arm64: Fix topology initialization for core scheduling Arm64 systems rely on storecputopolog...
EUVD-2026-5440
In the Linux kernel, the following vulnerability has been resolved: arm64/fpsimd: signal: Fix restoration of SVE context When SME is supported, Restoring SVE signal context can go wrong in a few ways, including placing the task into an invalid state where the kernel may read from out-of-bounds...
kernel: KVM: arm64: Tear down vGIC on failed vCPU creation
A use-after-free flaw was found in KVM for arm64 in the Linux Kernel, if the kvmarchvcpucreate fails to share the vCPU page with the hypervisor. This vulnerability could even lead to a kernel information leak problem...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000705)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000705 advisory. arch/arm64/kernel/perfevent.c in the Linux kernel before 4.1 on arm64 platforms allows local users to gain privileges or cause a denial of service invalid pointer...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000675)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000675 advisory. arch/arm64/kernel/sys.c in the Linux kernel before 4.0 allows local users to bypass the strict page permissions protection mechanism and modify the system-call table...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002044)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002044 advisory. arch/arm64/kernel/perfevent.c in the Linux kernel before 4.1 on arm64 platforms allows local users to gain privileges or cause a denial of service invalid pointer...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001889)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001889 advisory. arch/arm64/kernel/perfevent.c in the Linux kernel before 4.1 on arm64 platforms allows local users to gain privileges or cause a denial of service invalid pointer...
Linux Distros Unpatched Vulnerability : CVE-2023-54322
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - arm64: set exceptionirqentry with irqentry as a default filterirqstacks is supposed to cut entries which are related irq entries from its call stack. And...
CVE-2023-53989
CVE-2023-53989 (Linux kernel, arm64) The issue is a faulty VA-range sanity check in mm/create_mapping_noalloc() and mm/update_mapping_prot() that could incorrectly trigger on certain regions. The historical condition ((virt >= PAGE_END) && (virt
Linux Distros Unpatched Vulnerability : CVE-2025-68192
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: usb: qmiwwan: initialize MAC header offset in qmimuxrxfixup Raw IP packets have no MAC header, leaving skb-macheader uninitialized. This can trigger kernel...