Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: The comedi module contains a race condition between polling and detaching the device. The syzbot report indicates a use-after-free in comedi. This occurs because comedi happily removes the allocated async area, even though poll...

EUVD-2025-26782

Malicious code in bioql PyPI...

CVE-2025-38687

In the Linux kernel, the following vulnerability has been resolved: comedi: fix race between polling and detaching syzbot reports a use-after-free in comedi in the below link, which is due to comedi gladly removing the allocated async area even though poll requests are still active on the...

CVE-2025-38687 comedi: fix race between polling and detaching

In the Linux kernel, the following vulnerability has been resolved: comedi: fix race between polling and detaching syzbot reports a use-after-free in comedi in the below link, which is due to comedi gladly removing the allocated async area even though poll requests are still active on the...

CVE-2025-38687

CVE-2025-38687 involves a race in the Linux kernel’s comedi subsystem where detaching a device can free the wait_queue_head before active poll entries are finished, causing a use-after-free. The fix adds synchronization in COMEDI_DEVCONFIG by unblocking in the detach path and applying a write loc...