Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: drm/msm/dp: fix bridge lifetime Device-managed resources allocated after component binding must be tied to the lifetime of the DRM device. Otherwise, these resources may not be released when binding the DRM device is deferred. Th...

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerability has been resolved: drm/mgag200: Bind I2C lifetime to DRM device Managed cleanup with devmaddactionorreset will release the I2C adapter when the underlying Linux device goes away. But the connector still refers to it, so this cleanup leaves behind a...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: drm/msm/dp: fixed the issue with the lifetime of the aux-bus EP device. Device-managed resources allocated after the component binding process must be tied to the lifetime of the DRM device. Otherwise, these resources may not be...

CVE-2026-23305

The CVE-2026-23305 entry concerns a Linux kernel issue in accel/rocket where unwinding in rocket_probe’s error path was incorrect. If rocket_core_init() fails (e.g., due to EPROBE_DEFER), the kernel must unwind by decrementing the incremented counter and, if it’s the first core failed to probe, c...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-992355)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992355 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Clean dangling pointer on bind error path mtkdrmbind can fail, in which case...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992528)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992528 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Clean dangling pointer on bind error path mtkdrmbind can fail, in which case...

CVE-2025-68170 drm/radeon: Do not kfree() devres managed rdev

In the Linux kernel, the following vulnerability has been resolved: drm/radeon: Do not kfree devres managed rdev Since the allocation of the drivers main structure was changed to devmdrmdevalloc rdev is managed by devres and we shouldn't be calling kfree on it. This fixes things exploding if the...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990741)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990741 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/drv: Fix potential memory leak in drmdevinit drmdevinit will add drmdevinitrelease as a...

EUVD-2024-53186

Malicious code in bioql PyPI...

SUSE CVE-2023-53235

In the Linux kernel, the following vulnerability has been resolved: drm/tests: helpers: Avoid a driver uaf when using drmkunithelperallocdrmdevice the driver may be dereferenced by device-managed resources up until the device is freed, which is typically later than the kunit-managed resource code...

DEBIAN-CVE-2023-53389

In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: dp: Only trigger DRM HPD events if bridge is attached The MediaTek DisplayPort interface bridge driver starts its interrupts as soon as its probed. However when the interrupts trigger the bridge might not have been...

UBUNTU-CVE-2023-53388

In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Clean dangling pointer on bind error path mtkdrmbind can fail, in which case drmdevput is called, destroying the drmdevice object. However a pointer to it was still being held in the private object, and that pointer...

CVE-2023-53389 drm/mediatek: dp: Only trigger DRM HPD events if bridge is attached

In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: dp: Only trigger DRM HPD events if bridge is attached The MediaTek DisplayPort interface bridge driver starts its interrupts as soon as its probed. However when the interrupts trigger the bridge might not have been...

CVE-2023-53388 drm/mediatek: Clean dangling pointer on bind error path

In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Clean dangling pointer on bind error path mtkdrmbind can fail, in which case drmdevput is called, destroying the drmdevice object. However a pointer to it was still being held in the private object, and that pointer...

CVE-2023-53388 drm/mediatek: Clean dangling pointer on bind error path

In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Clean dangling pointer on bind error path mtkdrmbind can fail, in which case drmdevput is called, destroying the drmdevice object. However a pointer to it was still being held in the private object, and that pointer...

UBUNTU-CVE-2022-50360

In the Linux kernel, the following vulnerability has been resolved: drm/msm/dp: fix aux-bus EP lifetime Device-managed resources allocated post component bind must be tied to the lifetime of the aggregate DRM device or they will not necessarily be released when binding of the aggregate device is...

CVE-2022-50360 drm/msm/dp: fix aux-bus EP lifetime

In the Linux kernel, the following vulnerability has been resolved: drm/msm/dp: fix aux-bus EP lifetime Device-managed resources allocated post component bind must be tied to the lifetime of the aggregate DRM device or they will not necessarily be released when binding of the aggregate device is...

PT-2025-38170

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A flaw exists in the Linux kernel’s DRM/MSM/DP subsystem related to the lifetime management of auxiliary bus endpoint EP devices. Device-managed resources allocated after component...

DEBIAN-CVE-2023-53235

In the Linux kernel, the following vulnerability has been resolved: drm/tests: helpers: Avoid a driver uaf when using drmkunithelperallocdrmdevice the driver may be dereferenced by device-managed resources up until the device is freed, which is typically later than the kunit-managed resource code...

UBUNTU-CVE-2022-50292

In the Linux kernel, the following vulnerability has been resolved: drm/msm/dp: fix bridge lifetime Device-managed resources allocated post component bind must be tied to the lifetime of the aggregate DRM device or they will not necessarily be released when binding of the aggregate device is...