Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: amd/amdkfd: enhanced checking of kfd processes during switch partitions. Currently, the switch partition only checks whether kfdprocessestable is empty. The entry in kfdprocessestable is deleted in kfdprocessnotifierrelease, b...

CLSA-2026-1777305243 Fix CVE(s): CVE-2024-38286

SECURITY UPDATE: Denial of Service caused by unbounded TLS handshake wrap queue in SecureNio2Channel / SecureNioChannel. Backport upstream fix from 9.0.x commit 76c5cce6f0bcef14b0c21c38910371ca7d322d13. - debian/patches/CVE-2024-38286.patch: cap the handshake wrap queue at...

UBUNTU-CVE-2023-54302

In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Fix data race on CQP completion stats CQP completion statistics is read lockesly in irdmawaitevent and irdmacheckcqpprogress while it can be updated in the completion thread irdmascccqgetcqeinfo on another CPU as KCSA...

SUSE CVE-2025-68174

In the Linux kernel, the following vulnerability has been resolved: amd/amdkfd: enhance kfd process check in switch partition current switch partition only check if kfdprocessestable is empty. kfdprcessestable entry is deleted in kfdprocessnotifierrelease, but kfdprocess tear down is in...

EUVD-2025-203722

In the Linux kernel, the following vulnerability has been resolved: amd/amdkfd: enhance kfd process check in switch partition current switch partition only check if kfdprocessestable is empty. kfdprcessestable entry is deleted in kfdprocessnotifierrelease, but kfdprocess tear down is in...

AZL-72479 CVE-2025-68174 affecting package kernel 6.6.126.1-1

In the Linux kernel, the following vulnerability has been resolved: amd/amdkfd: enhance kfd process check in switch partition current switch partition only check if kfdprocessestable is empty. kfdprcessestable entry is deleted in kfdprocessnotifierrelease, but kfdprocess tear down is in...

UBUNTU-CVE-2025-68174

In the Linux kernel, the following vulnerability has been resolved: amd/amdkfd: enhance kfd process check in switch partition current switch partition only check if kfdprocessestable is empty. kfdprcessestable entry is deleted in kfdprocessnotifierrelease, but kfdprocess tear down is in...

CVE-2025-68174

Concrete details confirm CVE-2025-68174 affects the Linux kernel component amd/amdkfd (KFD) with a race between kfd_process_wq_release and device teardown during partition switching. The fix introduces an atomic kfd_processes_count to track active KFD processes, incremented on creation and decrem...

CVE-2025-68174 amd/amdkfd: enhance kfd process check in switch partition

In the Linux kernel, the following vulnerability has been resolved: amd/amdkfd: enhance kfd process check in switch partition current switch partition only check if kfdprocessestable is empty. kfdprcessestable entry is deleted in kfdprocessnotifierrelease, but kfdprocess tear down is in...

PT-2025-51587

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the amd/amdkfd subsystem related to process management during partition switching. Specifically, the check for available processes in the switch...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: poppler (UTSA-2025-988628)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988628 advisory. Poppler is a PDF rendering library. Versions prior to 25.06.0 use std::atomicint for reference counting. Because std::atomicint is only 32 bits, it is possible to...

PT-2026-2504

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.17.0 Description The Linux kernel contains a flaw within the f2fs file system related to handling compression contexts during writeback operations. A race condition can occur when a file is being fsynced, its...

CVE-2024-42239

In the Linux kernel, the following vulnerability has been resolved: bpf: Fail bpftimercancel when callback is being cancelled Given a schedule: timer1 cb timer2 cb bpftimercanceltimer2; bpftimercanceltimer1; Both bpftimercancel calls would wait for the other callback to finish executing,...

CVE-2024-42239

CVE-2024-42239 affects the Linux kernel BPF timer cancellation path. The fix adds an atomic counter (cancelling) in bpf_hrtimer to track in-flight cancellation requests and prevents deadlocks when two callbacks attempt to cancel each other in parallel. The patch ensures that if a cancellation is ...

PT-2024-7371

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the BPF timer functionality in the Linux kernel. When two or more timer callbacks are executed in parallel and attempt to cancel each other, it can lead to a...

UBUNTU-CVE-2024-26583

In the Linux kernel, the following vulnerability has been resolved: tls: fix race between async notify and socket close The submitting thread one which called recvmsg/sendmsg may exit as soon as the async crypto handler calls complete so any code past that point risks touching already freed data...

CVE-2024-26583

CVE-2024-26583 affects the Linux kernel TLS path. The issue is a race between async crypto notify completion and socket close, where the submitting thread could exit before the crypto handler finishes, risking touching data after it has been freed. The fix routes around this by reducing complex l...