Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v3-its: Do not enable interrupts in itsirqsetvcpuaffinity. The following call-chain results in the enabling of interrupts in a nested interrupt-disabled section: irqsetvcpuaffinity irqgetdesclock rawspinlockirqsave --...

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: irqchip/gic-v3: A refcount leak was fixed in gicpopulateppipartitions. The offindnodebyphandle function returns a node pointer with a refcount incremented. We should use ofnodeput on it when there is no longer a need for it. A...

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v3: Error handling in gicpopulateppipartitions was fixed. The function ofgetchildbyname returns a node pointer with a refcount incremented. We should use ofnodeput on it when it is no longer needed. When kcalloc fails...

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v3-its: Prevent double-free on error. The error handling path in itsvpeirqdomainalloc causes a double-free when itsvpeinit fails after successfully allocating at least one interrupt. This occurs because...

OESA-2026-1470 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: A memory address truncation vulnerability exists in the irqchip/gic-v3-its driver of the Linux kernel. On 32-bit ARM machines with CONFIGARMLPAE enabled, when using larger VMSPLIT configurations, lowmem allocations may be backed ...

OESA-2026-1469 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: A memory address truncation vulnerability exists in the irqchip/gic-v3-its driver of the Linux kernel. On 32-bit ARM machines with CONFIGARMLPAE enabled, when using larger VMSPLIT configurations, lowmem allocations may be backed ...

CVE-2026-23085

In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v3-its: Avoid truncating memory addresses On 32-bit machines with CONFIGARMLPAE, it is possible for lowmem allocations to be backed by addresses physical memory above the 32-bit address limit, as found while...

EUVD-2026-5457

In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v3-its: Avoid truncating memory addresses On 32-bit machines with CONFIGARMLPAE, it is possible for lowmem allocations to be backed by addresses physical memory above the 32-bit address limit, as found while...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992889)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992889 advisory. In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Make ICCSGIEL1 undef in the absence of a vGICv3 On a system with a GICv3, if a guest...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989630)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989630 advisory. In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v3: Fix refcount leak in gicpopulateppipartitions offindnodebyphandle returns a node...

EUVD-2022-55130

In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v3: Fix GICRCTLR.RWP polling It turns out that our polling of RWP is totally wrong when checking for it in the redistributors, as we test the distributor bit index, whereas it is a different bit number in the RDs...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987061)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987061 advisory. In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v3-its: Fix potential VPE leak on error In itsvpeirqdomainalloc, when itsvpeinit...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987073)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987073 advisory. In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v3: Fix error handling in gicpopulateppipartitions ofgetchildbyname returns a node...

EUVD-2021-33609

Malicious code in bioql PyPI...

Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2021-46925: Fixed kernel panic caused by race of smcsock bsc1220466. CVE-2021-47645: media: staging: media: zoran: calculate the right buffer number for...

SUSE CVE-2022-49716

In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v3: Fix error handling in gicpopulateppipartitions ofgetchildbyname returns a node pointer with refcount incremented, we should use ofnodeput on it when not need anymore. When kcalloc fails, it missing ofnodeput and...

SUSE CVE-2022-49715

In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v3: Fix refcount leak in gicpopulateppipartitions offindnodebyphandle returns a node pointer with refcount incremented, we should use ofnodeput on it when not need anymore. Add missing ofnodeput to avoid refcount leak...

DEBIAN-CVE-2022-49716

In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v3: Fix error handling in gicpopulateppipartitions ofgetchildbyname returns a node pointer with refcount incremented, we should use ofnodeput on it when not need anymore. When kcalloc fails, it missing ofnodeput and...

CVE-2022-49715

In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v3: Fix refcount leak in gicpopulateppipartitions offindnodebyphandle returns a node pointer with refcount incremented, we should use ofnodeput on it when not need anymore. Add missing ofnodeput to avoid refcount leak...

UBUNTU-CVE-2022-49715

In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v3: Fix refcount leak in gicpopulateppipartitions offindnodebyphandle returns a node pointer with refcount incremented, we should use ofnodeput on it when not need anymore. Add missing ofnodeput to avoid refcount leak...