Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: erofs: Fixed the issue where xasretry was missing in the fscache mode. The xarray iteration only holds the RCU read lock; therefore, an XARETRYENTRY might be encountered if a process modifies the xarray concurrently. This would...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: fscache: Use waitonbit to wait for the relinquished volume to be freed. The freeing of the relinquished volume will wake up the pending volume acquisition by using wakeupbit. However, this approach conflicts with waitvarevent,...

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerability has been resolved: netfs, fscache: This issue prevents Oops exceptions in fscacheputcache. This function dereferences the “cache” object, and then checks whether it is ISERRORNULL. It checks first, and then derefserences the object...

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerability has been resolved: netfs/fscache: A memory barrier was added for the FSCACHEVOLUME CREATING operation. In the fscachecreatevolume function, there is a missing memory barrier between the bit-clearing operation and the wake-up operation. This may lea...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: erofs: reliably distinguish between block-based and fscache mode When erofskillsb is called in block-dev based mode, sbdev may not have been initialized yet. If CONFIGEROFSFSONDEMAND is enabled, this will cause a mistake in...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: cifs: The “folio lock” is released upon a successful read from fscache. Under the current code, when cifsreadpageworker is called, the contract is that the callee should unlock the page. This is documented in the readfolio sectio...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: netfs: The “copy-to-cache” mechanism has been fixed so that it performs collection using Ceph+FSCache. The “copy-to-cache” mechanism used by Ceph with local caching creates a new request to write data that was just read from the...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: netfs: fix reference leak The commit 20d72b00ca81 “netfs: Fix the request’s work item to not require a ref” modifies netfsallocrequest to initialize the reference counter to 2 instead of 1. The rationale is that the request’s...

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerability has been resolved: fscache: delete fscachecookielrutimer when fscache exits to avoid UAF The fscachecookielrutimer is initialized when the fscache module is inserted, but is not deleted when the fscache module is removed. If timerreduce is called...

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerability has been resolved: netfs: Only call foliostartfscache once for each folio. If a network filesystem using netfs implements a clamplength function, it can set subrequest lengths that are smaller than the page size. When we loop through the folios in...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: fscache: Fix invalidation/lookup race If an NFS file is opened for writing and then closed, the fscacheinvalidate function will be called to invalidate the file. However, if the cookie is in the LOOKINGUP state or the CREATING...

Astra Linux - уязвимость в linux-5.15

In the Linux kernel, the following vulnerability has been resolved: cifs: Fix connections leak when tlink setup failed If the tlink setup failed, lost to put the connections, then the module refcnt leak since the cifsd kthread not exit. Also leak the fscache info, and for next mount with fsc, it...

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerability has been resolved: cachefiles: fix slab-use-after-free in fscachewithdrawvolume We got the following issue in our fault injection stress test: ================================================================== BUG: KASAN: slab-use-after-free in...

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerability has been resolved: cachefiles: fix slab-use-after-free in cachefileswithdrawcookie We got the following issue in our fault injection stress test: ================================================================== BUG: KASAN: slab-use-after-free in...

JLSEC-2026-349

A vulnerability classified as problematic was found in HDF5 1.14.6. This vulnerability affects the function H5FSsinfoserializenodecb of the file src/H5FScache.c. The manipulation leads to heap-based buffer overflow. Local access is required to approach this attack. The exploit has been disclosed ...

Unity Linux 20.1050a Security Update: kernel (UTSA-2026-007002)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007002 advisory. In the Linux kernel, the following vulnerability has been resolved: cifs: Release folio lock on fscache read hit. Under the current code, when cifsreadpageworker is...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-013214)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013214 advisory. In the Linux kernel, the following vulnerability has been resolved: cifs: Release folio lock on fscache read hit. Under the current code, when cifsreadpageworker is...

Azure Linux 3.0 Security Update: kernel (CVE-2024-45000)

"The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-45000 advisory. - In the Linux kernel, the following vulnerability has been resolved: fs/netfs/fscachecookie: add missing...

Azure Linux 3.0 Security Update: kernel (CVE-2024-46786)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46786 advisory. - In the Linux kernel, the following vulnerability has been resolved: fscache: delete fscachecookielrutimer wh...

Azure Linux 3.0 Security Update: kernel (CVE-2024-41058)

"The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-41058 advisory. - In the Linux kernel, the following vulnerability has been resolved: cachefiles: fix slab-use-after-free in...