Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: mailbox: zynq-ipi: fixed error handling when deviceregister fails When deviceregister fails, there are two issues: 1. The name allocated by devsetname is leaked. 2. The parent of the device is not NULL; deviceunregister is...

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: ALSA: ac97 – a possible memory leak has been fixed in sndac97devregister. If devregister fails in sndac97devregister, it should call putdevice to release the reference, otherwise the name allocated by devsetname may be leaked...

Astra Linux – Vulnerability in Linux, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: phy: mdio: fix memory leak Syzbot reported a memory leak in the MDIO bus interface. The problem was due to incorrect state logic. The MDIOBUSALLOCATED state indicates two possible statuses: 1. The bus is only allocated. 2. The bu...

Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: media: solo6x10: fix possible memory leak in solosysfsinit If deviceregister returns an error in solosysfsinit, the name allocated by devsetname needs to be freed. As noted in the comments for deviceregister, it should use...

CVE-2026-46221

In the Linux kernel, the following vulnerability has been resolved: EDAC/versalnet: Fix device name memory leak The device name allocated via kzalloc in initonemc is assigned to dev-initname but never freed on the normal removal path. deviceregister copies initname and then sets dev-initname to...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-011082)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011082 advisory. In the Linux kernel, the following vulnerability has been resolved: rapidio: rio: fix possible name leak in rioregistermport If deviceregister returns error, the nam...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-010905)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010905 advisory. In the Linux kernel, the following vulnerability has been resolved: mailbox: zynq-ipi: fix error handling while deviceregister fails If deviceregister fails, it has...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-006921)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006921 advisory. In the Linux kernel, the following vulnerability has been resolved: media: solo6x10: fix possible memory leak in solosysfsinit If deviceregister returns error in...

CVE-2022-50857

The CVE-2022-50857 entry concerns the Linux kernel code path for rapidio rio: rio_register_mport. The issue arises when device_register() fails after an mport name has been allocated with dev_set_name(); the allocated name must be released, and the reference should be dropped with put_device() so...

CVE-2023-54017

In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries: fix possible memory leak in ibmebusbusinit If deviceregister returns error in ibmebusbusinit, name of kobject which is allocated in devsetname called in deviceadd is leaked. As comment of deviceadd says, it shoul...

CVE-2023-54017 powerpc/pseries: fix possible memory leak in ibmebus_bus_init()

In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries: fix possible memory leak in ibmebusbusinit If deviceregister returns error in ibmebusbusinit, name of kobject which is allocated in devsetname called in deviceadd is leaked. As comment of deviceadd says, it shoul...

CVE-2023-54017 powerpc/pseries: fix possible memory leak in ibmebus_bus_init()

In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries: fix possible memory leak in ibmebusbusinit If deviceregister returns error in ibmebusbusinit, name of kobject which is allocated in devsetname called in deviceadd is leaked. As comment of deviceadd says, it shoul...

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-991172)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991172 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: target: tcmloop: Fix possible name leak in tcmloopsetuphbabus If deviceregister fails in...

DEBIAN-CVE-2022-50672

In the Linux kernel, the following vulnerability has been resolved: mailbox: zynq-ipi: fix error handling while deviceregister fails If deviceregister fails, it has two issues: 1. The name allocated by devsetname is leaked. 2. The parent of device is not NULL, deviceunregister is called in...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988951)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988951 advisory. In the Linux kernel, the following vulnerability has been resolved: phy: mdio: fix memory leak Syzbot reported memory leak in MDIO bus interface, the problem was in...

CVE-2022-50547

In the Linux kernel, the following vulnerability has been resolved: media: solo6x10: fix possible memory leak in solosysfsinit If deviceregister returns error in solosysfsinit, the name allocated by devsetname need be freed. As comment of deviceregister says, it should use putdevice to give up th...

EUVD-2025-12945

Malicious code in bioql PyPI...

EUVD-2025-9387

Malicious code in bioql PyPI...

CVE-2022-50352

In the Linux kernel, the following vulnerability has been resolved: net: hns: fix possible memory leak in hnaeaeregister Inject fault while probing module, if deviceregister fails, but the refcount of kobject is not decreased to 0, the name allocated in devsetname is leaked. Fix this by calling...

DEBIAN-CVE-2022-50352

In the Linux kernel, the following vulnerability has been resolved: net: hns: fix possible memory leak in hnaeaeregister Inject fault while probing module, if deviceregister fails, but the refcount of kobject is not decreased to 0, the name allocated in devsetname is leaked. Fix this by calling...