Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: iavf: Fix NULL pointer dereference in iavfgetlinkksettings Fix possible NULL pointer dereference, due to freeing of adapter-vfres in iavfinitgetresources. Previous commit introduced a regression, where receiving...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: iavf: Implement settime64 with -EOPNOTSUPP. ptpclocksettime assumes that every ptpclock has implemented settime64. Implement -EOPNOTSUPP as a stub to prevent NULL dereferencing. The fix is similar to the commit 329d050bbe63 “gve:...

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: iavf: Fixed the handling of dummy receive descriptors. Fixed a memory leak caused by improper handling of dummy receive descriptors. iavfgetrxbuffer now sets the rxbuffer return value for dummy receive descriptors. Without thi...

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: iavf: fixed the hang that occurs upon reboot with ice When a system with E810 and existing VFs is rebooted, the following hang may occur. PID 1 is hung in iavfremove, part of a network driver: PID: 1 TASK: ffff965400e5a340 CPU...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: iavf: fix PTP use-after-free during reset The commit 7c01dbfc8a1c5f “iavf: periodically cache PHC time” introduced a worker that was responsible for caching PHC time. However, this worker failed to stop or disable itself during...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: iavf: Remove the “crit lock” mechanism Removing the “crit lock” mechanism frees us from the error-prone logic of using trylocks. Thanks to netdevlock by Jakub, this is now easier, and in most cases we were already protected by it...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: iavf: Fix for hang during reboot/shutdown The recent commit 974578017fc1 “iavf: Add waiting so that the port is initialized in remove” adds a wait-loop at the beginning of iavfremove, to ensure that port initialization is complet...

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerability has been resolved: iavf: Use internal state to free traffic IRQs If the system attempts to close the netdev while iavfresettask is running, the LINKSTATESTART field will be cleared, and netifrunning will return false in iavfreinitinterruptscheme. A...

Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: iavf: Freeing qvectors before queues in iavfdisablevf. The iavffreequeues function clears adapter-numactivequeues, which iavffreeqvectors relies on. Therefore, the order of these two function calls in iavfdisablevf needs to be...

CVE-2026-43447

A flaw was found in the Linux kernel's iavf driver. A race condition exists where the Precision Time Protocol PTP worker attempts to access adapter resources that have already been freed during a reset or disable operation. This use-after-free vulnerability can lead to a system crash, resulting i...

EUVD-2026-28753

In the Linux kernel, the following vulnerability has been resolved: iavf: fix PTP use-after-free during reset Commit 7c01dbfc8a1c5f "iavf: periodically cache PHC time" introduced a worker to cache PHC time, but failed to stop it during reset or disable. This creates a race condition where...

CVE-2026-43447

In the Linux kernel, the following vulnerability has been resolved: iavf: fix PTP use-after-free during reset Commit 7c01dbfc8a1c5f "iavf: periodically cache PHC time" introduced a worker to cache PHC time, but failed to stop it during reset or disable. This creates a race condition where...

UBUNTU-CVE-2026-43447

In the Linux kernel, the following vulnerability has been resolved: iavf: fix PTP use-after-free during reset Commit 7c01dbfc8a1c5f "iavf: periodically cache PHC time" introduced a worker to cache PHC time, but failed to stop it during reset or disable. This creates a race condition where...

CVE-2026-43447 iavf: fix PTP use-after-free during reset

In the Linux kernel, the following vulnerability has been resolved: iavf: fix PTP use-after-free during reset Commit 7c01dbfc8a1c5f "iavf: periodically cache PHC time" introduced a worker to cache PHC time, but failed to stop it during reset or disable. This creates a race condition where...

CVE-2026-43447

Summary: CVE-2026-43447 affects the Linux kernel iavf driver. A race condition arises when a PTP worker that caches PHC time is not stopped during adapter reset/disable, potentially freeing AQ-backed resources while the worker runs. If the worker calls into ptp commands during teardown, memory/lo...

CVE-2026-43447

In the Linux kernel, the following vulnerability has been resolved: iavf: fix PTP use-after-free during reset Commit 7c01dbfc8a1c5f "iavf: periodically cache PHC time" introduced a worker to cache PHC time, but failed to stop it during reset or disable. This creates a race condition where...

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the issue of releasing and reusing resources during PTP reset operations in iavf, potentially...

PT-2026-39108

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free issue exists in the iavf driver. A worker introduced to cache PHC PTP Hardware Clock time is not stopped during reset or disable operations. This creates a race conditio...

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: iavf: Fixed error handling related to adminq. iavfallocasqbufs/iavfallocarqbufs allocate memory for VF mailbox using dmaalloccoherent. DMA regions for both ASQ and ARQ are freed in case an error occurs during the configuration...

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: iavf: Error handling in iavfinitmodule has been fixed. The iavfinitmodule no longer destroys the workqueue when pciregisterdriver fails. Instead, call destroyworkqueue when pciregisterdriver fails to prevent resource leaks. This...