Astra Linux – Vulnerabilities in Linux-6.1, Linux-5.15, Linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: ovl: Fixed a UAF Use-After-Free in ovldentryupdatereval by moving the dput function within ovllinkup. The issue arose because dputupper was called before ovldentryupdatereval, while upper-dflags was still accessed in...

Linux Distros Unpatched Vulnerability : CVE-2025-21887

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ovl: fix UAF in ovldentryupdatereval by moving dput in ovllinkup The issue was caused by...

kernel: ovl: fix UAF in ovl_dentry_update_reval by moving dput() in ovl_link_up

A use after free vulnerability exists in the linux kernel such that dputupper is being called before ovldentryupdatereval, while upper-dflags was still accessed in ovldentryremote...

kernel: ovl: fix UAF in ovl_dentry_update_reval by moving dput() in ovl_link_up

A use after free vulnerability exists in the linux kernel such that dputupper is being called before ovldentryupdatereval, while upper-dflags was still accessed in ovldentryremote...

kernel: ovl: fix UAF in ovl_dentry_update_reval by moving dput() in ovl_link_up

A use after free vulnerability exists in the linux kernel such that dputupper is being called before ovldentryupdatereval, while upper-dflags was still accessed in ovldentryremote...

ovl: fix UAF in ovl_dentry_update_reval by moving dput() in ovl_link_up

...

The vulnerability of the `ovl_dentry_update_reval()` function in the `fs/overlayfs/copy_up.c` file of the Linux kernel file system allows a attacker to cause a service failure.

The vulnerability of the ovldentryupdatereval function in the fs/overlayfs/copyup.c file of the Linux kernel file system is related to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker to cause a service failure...

SUSE CVE-2025-21887

In the Linux kernel, the following vulnerability has been resolved: ovl: fix UAF in ovldentryupdatereval by moving dput in ovllinkup The issue was caused by dputupper being called before ovldentryupdatereval, while upper-dflags was still accessed in ovldentryremote. Move dputupper after its last...

DEBIAN-CVE-2025-21887

In the Linux kernel, the following vulnerability has been resolved: ovl: fix UAF in ovldentryupdatereval by moving dput in ovllinkup The issue was caused by dputupper being called before ovldentryupdatereval, while upper-dflags was still accessed in ovldentryremote. Move dputupper after its last...