56 matches found
Astra Linux – Vulnerability found in Linux 6.12, Linux 6.1
In the Linux kernel, the following vulnerabilities have been resolved: NFSD: fixed a race condition between nfsd registration and exportsproc Currently, nfsd calls createprocexportsentry at the beginning of initnfsd, and cleanup is performed by removeprocentry at the end of exitnfsd. This can lea...
CVE-2026-46317 KVM: arm64: Reassign nested_mmus array behind mmu_lock
In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Reassign nestedmmus array behind mmulock kvm-arch.nestedmmus is walked under kvm-mmulock, including from the MMU notifier path kvmunmapgfnrange - kvmnesteds2unmap, which can run at any time. kvmvcpuinitnested...
CVE-2026-46147
CVE-2026-46147 concerns the Linux kernel KVM on ARM64, where two bugs in vCPU initialisation can leak pin references to host vCPU/SVE pages and allow observation of a partially initialised vCPU object. The fixes extract a helper for vCPU registration, ensure proper unpinning on error, and enforce...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: KVM: arm64: Fixed a shift-out-of-bounds bug Fixed a shift-out-of-bounds bug reported by UBSAN when running VMs with MTE enabled on host kernels. UBSAN: Shift-out-of-bounds in arch/arm64/kvm/sys regs.c:1988:14 The shift exponen...
Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: arm64: Set exceptionirqentry with irqentry as a default. filterirqstacks is supposed to remove entries that are related to irq entries from its call stack. And inirqentrytext, which is called by filterirqstacks, uses...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: arm64/fpsimd: ptrace: Fixed SVE writes on !SME systems When SVE is supported but SME is not supported, a ptrace write to NTARMSVE regset can place the tracee into an invalid state. In this state, non-streaming SVE register data i...
Linux Distros Unpatched Vulnerability : CVE-2026-31648
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mm: filemap: fix nrpages calculation overflow in filemapmappages When running stress-ng on my Arm64 machine with v7.0-rc3 kernel, I encountered some very stran...
CVE-2026-31600
In the Linux kernel, the following vulnerability has been resolved: arm64: mm: Handle invalid large leaf mappings correctly It has been possible for a long time to mark ptes in the linear map as invalid. This is done for secretmem, kfence, realm dma memory un/share, and others, by simply clearing...
EUVD-2026-25541
In the Linux kernel, the following vulnerability has been resolved: mm: filemap: fix nrpages calculation overflow in filemapmappages When running stress-ng on my Arm64 machine with v7.0-rc3 kernel, I encountered some very strange crash issues showing up as "Bad page state": " 734.496287 BUG: Bad...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013669)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013669 advisory. In the Linux kernel, the following vulnerability has been resolved: misc: pciendpointtest: Fix pciendpointtestcopy,write,read panic The dmamapsingle doesn't permit...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-010689)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010689 advisory. In the Linux kernel, the following vulnerability has been resolved: arch/arm64: Fix topology initialization for core scheduling Arm64 systems rely on storecputopolog...
CVE-2026-23425 KVM: arm64: Fix ID register initialization for non-protected pKVM guests
In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Fix ID register initialization for non-protected pKVM guests In protected mode, the hypervisor maintains a separate instance of the kvm structure for each VM. For non-protected VMs, this structure is initialized from...
EUVD-2026-5440
In the Linux kernel, the following vulnerability has been resolved: arm64/fpsimd: signal: Fix restoration of SVE context When SME is supported, Restoring SVE signal context can go wrong in a few ways, including placing the task into an invalid state where the kernel may read from out-of-bounds...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: arm64: Errata: Add missing sentinel entries to Spectre-BHB MIDR arrays The commit a5951389e58d arm64: errata: Add newer ARM cores to the spectrebhbloopaffected lists added some additional CPUs to the Spectre-BHB workaround. This...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: arm64/fpsimd: Discarding stale CPU state when handling SME traps The logic for handling SME traps improperly manipulates the saved FPSIMD/SVE/SME state. A race condition can occur when the SME trap handler is preempted before and...
kernel: KVM: arm64: Tear down vGIC on failed vCPU creation
A use-after-free flaw was found in KVM for arm64 in the Linux Kernel, if the kvmarchvcpucreate fails to share the vCPU page with the hypervisor. This vulnerability could even lead to a kernel information leak problem...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000675)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000675 advisory. arch/arm64/kernel/sys.c in the Linux kernel before 4.0 allows local users to bypass the strict page permissions protection mechanism and modify the system-call table...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000705)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000705 advisory. arch/arm64/kernel/perfevent.c in the Linux kernel before 4.1 on arm64 platforms allows local users to gain privileges or cause a denial of service invalid pointer...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002044)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002044 advisory. arch/arm64/kernel/perfevent.c in the Linux kernel before 4.1 on arm64 platforms allows local users to gain privileges or cause a denial of service invalid pointer...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001889)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001889 advisory. arch/arm64/kernel/perfevent.c in the Linux kernel before 4.1 on arm64 platforms allows local users to gain privileges or cause a denial of service invalid pointer...