Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: filelock: Removes locks reliably when a race between fcntl/close operations is detected. When the fcntlsetlk operation races with the close operation, the created lock is removed using dolockfilewait. However, LSMs may allow t...

FastGPT 安全漏洞

FastGPT is an open-source knowledge base question-answering system based on large language models developed by Labring. Versions of FastGPT 4.14.7 and earlier contain security vulnerabilities. These vulnerabilities stem from the protective measures in the Python sandbox, which can be circumvented...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002374)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002374 advisory. Race condition in the ext4filewriteiter function in fs/ext4/file.c in the Linux kernel through 3.17 allows local users to cause a denial of service file unavailabili...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002017)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002017 advisory. arch/arm/kernel/sysoabi-compat.c in the Linux kernel before 4.4 allows local users to gain privileges via a crafted 1 FOFDGETLK, 2 FOFDSETLK, or 3 FOFDSETLKW command...

MiracleLinux 3 : kernel-2.6.18-8.17AXS3 (AXSA:2008-82:04)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2008-82:04 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. CVE-2007-5498: The Xen hypervisor block backend driver for Linux...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990505)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990505 advisory. In the Linux kernel, the following vulnerability has been resolved: filelock: Fix fcntl/close race recovery compat path When I wrote commit 3cad1bc01041 filelock:...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990295)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990295 advisory. In the Linux kernel, the following vulnerability has been resolved: filelock: Fix fcntl/close race recovery compat path When I wrote commit 3cad1bc01041 filelock:...

EUVD-2016-7997

Malware in sbrugna...

EUVD-2005-4726

Malware in sbrugna...

EUVD-2008-1670

Malware in sbrugna...

CVE-2005-4733

NetBSD 2.0 before 20050316 and NetBSD-current before 20050112 allow local users to cause a denial of service infinite loop and system hang by calling the FCLOSEM fcntl with a parameter value of 0...

Linux LSM POSIX Lock Use-After-Free

An LSM can prevent the fcntl/close race cleanup path in fcntlsetlk from working, leading to use-after-free read in lockgetstatus when reading /proc/locks...

kernel: filelock: Fix fcntl/close race recovery compat path

A vulnerability was found in the Linux kernel in the fcntlsetlk64 function where a potential race condition can be triggered when a file descriptor is closed during a fcntl operation's execution. This can lead to system instability or crashes...

kernel: filelock: Remove locks reliably when fcntl/close race is detected

In the Linux kernel, the following vulnerability has been resolved: filelock: Remove locks reliably when fcntl/close race is detected When fcntlsetlk races with close, it removes the created lock with dolockfilewait. However, LSMs can allow the first dolockfilewait that created the lock while...

The vulnerability of the fcntl_setlk() function in the Linux operating system allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the fcntlsetlk function in the fs/locks.c module of the Linux operating system is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: bonding: Fix out-of-bounds read in bondoptionarpiptargetsset CVE-2024-39487 In the Linux kernel, the following vulnerability has been resolved: ima: Avoid blocking in RCU read-side critical section CVE-2024-40947 ...

SUSE CVE-2024-41020

In the Linux kernel, the following vulnerability has been resolved: filelock: Fix fcntl/close race recovery compat path When I wrote commit 3cad1bc01041 "filelock: Remove locks reliably when fcntl/close race is detected", I missed that there are two copies of the code I was patching: The normal...

CVE-2024-41020

In the Linux kernel, the following vulnerability has been resolved: filelock: Fix fcntl/close race recovery compat path When I wrote commit 3cad1bc01041 "filelock: Remove locks reliably when fcntl/close race is detected", I missed that there are two copies of the code I was patching: The normal...

UBUNTU-CVE-2024-41020

In the Linux kernel, the following vulnerability has been resolved: filelock: Fix fcntl/close race recovery compat path When I wrote commit 3cad1bc01041 "filelock: Remove locks reliably when fcntl/close race is detected", I missed that there are two copies of the code I was patching: The normal...

CVE-2024-41020

CVE-2024-41020 (Linux kernel) is addressed in IBM Storage Scale bulletin as part of a broader set of kernel fixes. The entry notes a filelock race involving fcntl/close that was backported to the compat path for 32-bit kernels, mirroring an earlier patch for the normal path. The connected IBM bul...