Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: The issue related to comedi: a race between polling and detaching the device has been fixed. The syzbot report indicates a use-after-free in the comedi module. This occurs because comedi happily removes the allocated async area,...

EUVD-2025-26782

Malicious code in bioql PyPI...

CVE-2025-38687

In the Linux kernel, the following vulnerability has been resolved: comedi: fix race between polling and detaching syzbot reports a use-after-free in comedi in the below link, which is due to comedi gladly removing the allocated async area even though poll requests are still active on the...

CVE-2025-38687

CVE-2025-38687 involves a race in the Linux kernel’s comedi subsystem where detaching a device can free the wait_queue_head before active poll entries are finished, causing a use-after-free. The fix adds synchronization in COMEDI_DEVCONFIG by unblocking in the detach path and applying a write loc...

CVE-2025-38687 comedi: fix race between polling and detaching

In the Linux kernel, the following vulnerability has been resolved: comedi: fix race between polling and detaching syzbot reports a use-after-free in comedi in the below link, which is due to comedi gladly removing the allocated async area even though poll requests are still active on the...