Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: cachefiles: Fixed a slab-out-of-bounds issue in cachefilessetvolumexattr. The actual length of volume coherence data should be used when setting the xattr value to avoid the following KASAN report. BUG: KASAN: Slab-out-of-boun...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: cachefiles: The exposure of the anonymous file descriptor is deferred until after copytouser succeeds. After installing the anonymous file descriptor, we can now see it in userland and close it. However, at this point we may not...

Astra Linux - уязвимость в linux-5.10, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: cachefiles: Added missing lock protection when polling. Added missing lock protection in the poll routine when iterating the xarray. Otherwise, even with the RCU read lock held, only the slot of the radix tree is guaranteed to be...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: cachefiles: The issue of incorrect dentry refcount in cachefilescull has been fixed. The patch mentioned below changed cachefilesburyobject to expect 2 references to the ‘rep’ dentry. Three of the caller functions were changed to...

Astra Linux - уязвимость в linux, linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: cachefiles: fixed a memory leak in cachefilesaddcache The following memory leak was reported after unbinding /dev/cachefiles: ================================================================== Unreferenced object...

Linux Distros Unpatched Vulnerability : CVE-2026-43106

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: cachefiles: fix incorrect dentry refcount in cachefilescull The patch mentioned below change...

CVE-2026-43106

A flaw was found in the Linux kernel's cachefiles module, which manages cached files. This vulnerability stems from an error in how the system counts references to certain file system objects, specifically within the cachefilescull function. When a reference is lost, it can lead to system...

EUVD-2026-27622

In the Linux kernel, the following vulnerability has been resolved: cachefiles: fix incorrect dentry refcount in cachefilescull The patch mentioned below changed cachefilesburyobject to expect 2 references to the 'rep' dentry. Three of the callers were changed to use startremovingdentry which tak...

CVE-2026-43106

In the Linux kernel, the following vulnerability has been resolved: cachefiles: fix incorrect dentry refcount in cachefilescull The patch mentioned below changed cachefilesburyobject to expect 2 references to the 'rep' dentry. Three of the callers were changed to use startremovingdentry which tak...

CVE-2026-43106

CVE-2026-43106 concerns the Linux kernel, specifically the cachefiles module. The issue is a faulty dentry reference accounting in cachefiles_cull() that could cause a lost reference, due to one code path not taking the extra reference required by cachefiles_bury_object(). The patch adjusts sever...

CVE-2026-43106

In the Linux kernel, the following vulnerability has been resolved: cachefiles: fix incorrect dentry refcount in cachefilescull The patch mentioned below changed cachefilesburyobject to expect 2 references to the 'rep' dentry. Three of the callers were changed to use startremovingdentry which tak...

CVE-2026-43106 cachefiles: fix incorrect dentry refcount in cachefiles_cull()

In the Linux kernel, the following vulnerability has been resolved: cachefiles: fix incorrect dentry refcount in cachefilescull The patch mentioned below changed cachefilesburyobject to expect 2 references to the 'rep' dentry. Three of the callers were changed to use startremovingdentry which tak...

CVE-2026-43106

In the Linux kernel, the following vulnerability has been resolved: cachefiles: fix incorrect dentry refcount in cachefilescull The patch mentioned below changed cachefilesburyobject to expect 2 references to the 'rep' dentry. Three of the callers were changed to use startremovingdentry which tak...

PT-2026-37416

In the Linux kernel, the following vulnerability has been resolved: cachefiles: fix incorrect dentry refcount in cachefiles cull The patch mentioned below changed cachefiles bury object to expect 2 references to the 'rep' dentry. Three of the callers were changed to use start removing dentry whic...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: cachefiles: Unmarking an inode as in use in error paths If an error occurs, the inode will be marked as “in use”. If the flag indicating that an inode is in use leaks during the cachefilesopenfile function, Cachefiles will report...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: cachefiles: The maximum subrequest size for cache writes has been set to MAXRWCOUNT. The maximum size of a subrequest that writes to cachefiles is now MAXRWCOUNT, ensuring that we do not exceed the maximum number of writes we can...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013863)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013863 advisory. In the Linux kernel, the following vulnerability has been resolved: cachefiles: add missing lock protection when polling Add missing lock protection in poll routine...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-005430)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005430 advisory. In the Linux kernel, the following vulnerability has been resolved: cachefiles: add missing lock protection when polling Add missing lock protection in poll routine...

Azure Linux 3.0 Security Update: kernel (CVE-2024-41057)

"The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-41057 advisory. - In the Linux kernel, the following vulnerability has been resolved: cachefiles: fix slab-use-after-free in...

Azure Linux 3.0 Security Update: kernel (CVE-2024-49870)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-49870 advisory. - In the Linux kernel, the following vulnerability has been resolved: cachefiles: fix dentry leak in...