Astra Linux - уязвимость в linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: ALSA: hda: intel-sdw-acpi: fixed the usage of devicegetnamedchildnode The documentation for devicegetnamedchildnode mentions this important point: “The caller is responsible for calling fwnodehandleput on the returned fwnode...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: media: i2c: ds90ub9x3: Fix extra fwnodehandleput The ub913 and ub953 drivers call fwnodehandlePUTpriv-sd.fwnode as part of their removal process. If the driver is removed multiple times, it may lead to an “overflow” of the...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: Thermal: int340x: Added a NULL check for adev. Not all devices have an ACPI companion fwnode; therefore, adev may be NULL. This is similar to the commit cd2fd6eab480 “platform/x86: int3472: Check for adev == NULL”. A check should...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: - media: v4l2-core: A potential resource leak was fixed in v4l2fwnodeparselink. - If the fwnodegraphgetremoteendpoint function fails, and ‘fwnode’ is set to NULL, then fwnodehandlePUT is a no-op. Instead, release the reference...

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: coresight: Properly clear the connection field. coresight devices track their connections output connections and hold a reference to the fwnode. When a device goes away, we iterate through the devices on the coresight bus and...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: Device property: Fixed the node refcount leak in fwnodegraphgetnextendpoint. The “parent” returned by fwnodegraphgetportparent has its refcount incremented when ‘prev’ is not NULL. This variable needs to be set after using it...

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: usb: typec: tcpci: fix of node refcount leak in tcpciregisterport I encountered the following issue while performing the device mt6370-tcpc load test with CONFIGOFUNITTEST and CONFIGOFDYNAMIC enabled: ERROR: Memory leak; the...

Astra Linux - уязвимость в linux-6.1, linux-5.15, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v2m: Prevention of use after freeing gicv2mgetfwnode. With ACPI enabled, the gicv2mgetfwnode function is registered with the PCI subsystem as pcimsigetfwnodecb. This function may be called during a PCI host bridge pro...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: media: i2c: hi846: Fix memory leak in hi846parsedt If any of the checks related to the supported link frequencies fail, then the V4L2 fwnode resources don't get released before returning, which leads to a memleak. Fix this by...

Astra Linux - уязвимость в linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: platform/x86: int3472: Check for adev == NULL Not all devices have an ACPI companion fwnode; therefore, adev may be NULL. This can, for example theoretically, occur when a user manually binds one of the int3472 drivers to another...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: media: i2c: ov5648: Free V4L2 fwnode data on unbind The V4L2 fwnode data structure is not freed when it is unbound, resulting in a memory leak...

Astra Linux - уязвимость в linux-5.15

In the Linux kernel, the following vulnerability has been resolved: net: mdio: Fixed an unbalanced fwnode reference count in mdiodevicerelease. There is a warning report regarding a refcount leak when probing the mdio device: OF: Error: Memory leak; the expected refcount was 1 instead of 2. The...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006675)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006675 advisory. In the Linux kernel, the following vulnerability has been resolved: net: mdio: fix unbalanced fwnode reference count in mdiodevicerelease There is warning report abo...

kernel: Linux kernel: irqchip/gic-v2m use-after-free vulnerability

A flaw was found in the Linux kernel's irqchip/gic-v2m component. This vulnerability allows a use-after-free condition via gicv2mgetfwnode being wrongly marked as init, causing it to be freed while still registered with the PCI Peripheral Component Interconnect subsystem during a PCI host bridge...

kernel: Linux kernel: irqchip/gic-v2m use-after-free vulnerability

A flaw was found in the Linux kernel's irqchip/gic-v2m component. This vulnerability allows a use-after-free condition via gicv2mgetfwnode being wrongly marked as init, causing it to be freed while still registered with the PCI Peripheral Component Interconnect subsystem during a PCI host bridge...

kernel: Linux kernel: irqchip/gic-v2m use-after-free vulnerability

A flaw was found in the Linux kernel's irqchip/gic-v2m component. This vulnerability allows a use-after-free condition via gicv2mgetfwnode being wrongly marked as init, causing it to be freed while still registered with the PCI Peripheral Component Interconnect subsystem during a PCI host bridge...

Azure Linux 3.0 Security Update: kernel (CVE-2025-37819)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-37819 advisory. - In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v2m: Prevent use after free ...

Azure Linux 3.0 Security Update: kernel (CVE-2024-58011)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-58011 advisory. - In the Linux kernel, the following vulnerability has been resolved: platform/x86: int3472: Check for adev ==...

Linux Distros Unpatched Vulnerability : CVE-2023-54183

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - media: v4l2-core: Fix a potential resource leak in v4l2fwnodeparselink If fwnodegraphgetremoteendpoint fails, 'fwnode' is known to be NULL, so fwnodehandleput i...

SUSE CVE-2022-50825

In the Linux kernel, the following vulnerability has been resolved: usb: typec: wusb3801: fix fwnode refcount leak in wusb3801probe I got the following report while doing fault injection test: OF: ERROR: memory leak, expected refcount 1 instead of 4, ofnodeget/ofnodeput unbalanced - destroy cset...