Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: The dvbdev: device driver adopts a mechanism called refcnt to avoid Use-After-Free errors. It is known that the function dvbunregisterdevice is prone to use-after-free issues. In other words, the cleanup performed by...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: Media: edia: dvbdev: fixed a use-after-free issue. In dvbregisterdevice, pdvbdev is set to equal dvbdev, which is freed in several error-handling paths. However, pdvbdev is not set to NULL after dvbdev’s deallocation, resulting i...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: media: dvbdev: The risk of out-of-memory access has been prevented. The dvbdev module contains a static variable used to store dvb minors. Its behavior depends on whether CONFIGDVBDYNAMICMINORS is set or not. When it is not set,...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-021529)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-021529 advisory. In the Linux kernel, the following vulnerability has been resolved: media: dvb-core: Fix double free in dvbregisterdevice In function dvbregisterdevice -...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: media: cxusb: no longer judge rbuf when the write fails syzbot reported a uninit-value in cxusbi2cxfer. 1 Only when the write operation of usbbulkmsg in dvbusbgenericrw succeeds and rlen is greater than 0, the read operation of...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000748)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000748 advisory. The dovideosetspupalette function in fs/compatioctl.c in the Linux kernel before 3.6.5 on unspecified architectures lacks a certain error check, which might allow...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002091)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002091 advisory. The dovideosetspupalette function in fs/compatioctl.c in the Linux kernel before 3.6.5 on unspecified architectures lacks a certain error check, which might allow...

PT-2026-2551

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the Linux kernel related to out-of-bounds access within the dtv5100 i2c msg function. The rlen value, which is controlled by the user, is not properly validated before...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992936)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992936 advisory. In the Linux kernel, the following vulnerability has been resolved: media: dvbdev: adopts refcnt to avoid UAF dvbunregisterdevice is known that prone to...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992205)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992205 advisory. In the Linux kernel, the following vulnerability has been resolved: media: dvbdev: adopts refcnt to avoid UAF dvbunregisterdevice is known that prone to...

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-429739)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-429739 advisory. In the Linux kernel, the following vulnerability has been resolved: media: dvbdev: prevent the risk of out of memory access The dvbdev contains a static variable use...

EUVD-2022-55581

Malicious code in bioql PyPI...

DEBIAN-CVE-2022-50274

In the Linux kernel, the following vulnerability has been resolved: media: dvbdev: adopts refcnt to avoid UAF dvbunregisterdevice is known that prone to use-after-free. That is, the cleanup from dvbunregisterdevice releases the dvbdevice even if there are pointers stored in file-privatedata still...

UBUNTU-CVE-2022-50274

In the Linux kernel, the following vulnerability has been resolved: media: dvbdev: adopts refcnt to avoid UAF dvbunregisterdevice is known that prone to use-after-free. That is, the cleanup from dvbunregisterdevice releases the dvbdevice even if there are pointers stored in file-privatedata still...

CVE-2022-50274 media: dvbdev: adopts refcnt to avoid UAF

In the Linux kernel, the following vulnerability has been resolved: media: dvbdev: adopts refcnt to avoid UAF dvbunregisterdevice is known that prone to use-after-free. That is, the cleanup from dvbunregisterdevice releases the dvbdevice even if there are pointers stored in file-privatedata still...

CVE-2022-50274 media: dvbdev: adopts refcnt to avoid UAF

In the Linux kernel, the following vulnerability has been resolved: media: dvbdev: adopts refcnt to avoid UAF dvbunregisterdevice is known that prone to use-after-free. That is, the cleanup from dvbunregisterdevice releases the dvbdevice even if there are pointers stored in file-privatedata still...

PT-2025-37576

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a use-after-free issue within the dvbdev module. The dvb unregister device function can release the dvb device structure while pointers in file-private data...

CLSA-2025-1736778412 kernel: Fix of 17 CVEs

tracing: Free buffers when a used dynamic event is removed CVE-2022-49006 - ASoC: ops: Check bounds for second channel in sndsocputvolswsx CVE-2022-48951 - ext4: fix slab-use-after-free in ext4splitextentat CVE-2024-49884 - ext4: fix bug on in ext4escacheextent as ext4splitextentat failed...

CLSA-2025-1736783731 kernel: Fix of 10 CVEs

media: edia: dvbdev: fix a use-after-free CVE-2024-27043 - vsock/virtio: Initialization of the dangling pointer occurring in vsk-trans CVE-2024-50264 - net/sched: stop qdisctreereducebacklog on TCHROOT CVE-2024-53057 - bpf: Fix out-of-bounds write in triegetnextkey CVE-2024-50262 - KVM: nSVM:...

kernel: media: edia: dvbdev: fix a use-after-free

In the Linux kernel, the following vulnerability has been resolved: media: edia: dvbdev: fix a use-after-free In dvbregisterdevice, pdvbdev is set equal to dvbdev, which is freed in several error-handling paths. However, pdvbdev is not set to NULL after dvbdev's deallocation, causing...