Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerabilities have been resolved: kcm: An annotation was added for the data-race around kcm-rxwait. kcm-rxpsock can be accessed without a read lock in kcmrfree. Annotations were added for the read and write operations accordingly. syzbot reported the following...

Astra Linux - уязвимость в linux-5.10, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: netlink: Annotate lockless accesses to nlk-maxrecvmsglen. syzbot reported a data race in netlinkrecvmsg 1. Indeed, netlinkrecvmsg can be executed concurrently, and netlinkdump also requires protection. 1 Bug: KCSAN: Data race ...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fixed a potential data race in rxrpcwaittobeconnected. Inside the loop in rxrpcwaittobeconnected, it checks call-error to see if it should exit the loop without first checking the call state. This is probably safe, as if...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: ip: Issues related to data races around sysctlipfwdupdatepriority have been fixed. When reading sysctlipfwdupdatepriority, it is possible for it to be changed concurrently. Therefore, we need to add READONCE to its readers...

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: TCP: Fixed data races related to sysctltcpslowstartafteridle. When reading sysctltcpslowstartafteridle, it is possible for the data to be changed concurrently. Therefore, we need to add READONCE to its readers...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: RDMA/irdma: Fixed a data race in CQP completion statistics. CQP completion statistics is locked when used in irdmawaitevent and irdmacheckcqpprogress. However, it can also be updated in the completion thread irdmascccqgetcqein...

Astra Linux - уязвимость в chromium

In Google Chrome, a data race in the audio processing mechanism prior to version 89.0.4389.72 allowed a remote attacker to potentially exploit heap corruption through a crafted HTML page...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: bpf: Address the issue reported by KCSAN regarding bpflrulist. KCSAN reported a data-race when accessing node-ref. Although node-ref doesn’t need to be accurate, take this opportunity to use a more common READONCE and WRITEONC...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: ICMP: Fixed data races related to sysctlicmpechoenableprobe. When reading sysctlicmpechoenableprobe, it is possible for the value to be changed concurrently. Therefore, we need to add READONCE to its readers...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: KVM: Fixed a data race on lastboostedvcpu in kvmvcpuonspin. Used READ, WRITEONCE to access kvm-lastboostedvcpu to ensure that reads and writes are atomic. In the extremely unlikely scenario where the compiler introduces errors in...

Astra Linux - уязвимость в ffmpeg5

FFmpeg n7.0 has a race condition vulnerability in the VP9 decoder. This could lead to a data race if video encoding parameters are being exported, as the side data would be attached in the decoder thread while being read in the output thread...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: ALSA: hda: fixed a possible null-pointer dereference due to a data race in sndhdacregmapsync. The variable codec-regmap is often protected by the codec-regmaplock when accessed. However, it is accessed without holding the lock wh...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: Packet: Annotate data-races around ignoreoutgoing The function ignoreoutgoing is executed without a read lock, from devqueuexmitnit and packetgetsockopt. Add appropriate READONCE/WRITEONCE annotations. Bug reported by syzbot: BUG...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: afunix: Fixed a data race around user-unixinflight. user-unixinflight is updated under spinlockunixgclock, but toomanyunixfds accesses it without locking it. We need to annotate the write/read accesses to user-unixinflight. BU...

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: TCP: Fixed a data race around the sysctltcpprobeinterval function. When reading sysctltcpprobeinterval, it can be changed concurrently. Therefore, we need to add READONCE to its reader...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: sysctl: Data races have been fixed in procdou8vecminmax. A sysctl variable is accessed concurrently, and there is always a risk of data races. Therefore, both readers and writers require some basic protection to avoid load/store...

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: TCP: Fixed a data race around sysctltcpmtuprobefloor. While reading sysctltcpmtuprobefloor, it can be changed concurrently. Therefore, we need to add READONCE to its reader...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: ipv6: Annotated data-race in ndiscrouterdiscovery The syzbot found that ndiscrouterdiscovery could read and write in6dev-ramtu without holding a lock 1 This seems fine, as long as IFLAINET6RAMTU is implemented with best effort. A...

CLSA-2026-1778756832 kernel: Fix of 40 CVEs

fix: "vsock: Ignore signal/timeout on connect if already established CVE-2025-40248" - gfs2: Fix possible data races in gfs2showoptions CVE-2023-53622 - ALSA: 6fire: fix use-after-free on disconnect CVE-2026-31581 - nfnetlinkosf: validate individual option lengths in fingerprints CVE-2026-23397 -...

CLSA-2026-1778759582 kernel: Fix of 40 CVEs

fix: "vsock: Ignore signal/timeout on connect if already established CVE-2025-40248" - gfs2: Fix possible data races in gfs2showoptions CVE-2023-53622 - ALSA: 6fire: fix use-after-free on disconnect CVE-2026-31581 - nfnetlinkosf: validate individual option lengths in fingerprints CVE-2026-23397 -...