89 matches found
CVE-2026-53285
A flaw was found in the Linux kernel's drm/amd/display component. When the dcn32enablephantomplane function attempts to allocate memory using kvzalloc within a floating-point unit FPU enabled region where software interrupts softirqs are disabled, it can trigger an error. This can lead to a kerne...
Linux Distros Unpatched Vulnerability : CVE-2026-53085
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bpf: fix mm lifecycle in open-coded taskvma iterator The open-coded taskvma iterator reads task-mm locklessly and acquires mmapreadtrylock but never calls mmget...
CVE-2026-53085
The CVE-2026-53085 issue affects the Linux kernel BPF subsystem where the open-coded task_vma iterator reads task->mm locklessly and uses mmap_read_trylock() without taking an mm reference, risking use-after-free if the task exits concurrently. The patch reads task->mm with a trylock on all...
PT-2026-51979
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free flaw exists in the Berkeley Packet Filter BPF subsystem. The task vma iterator reads task-mm locklessly and acquires mmap read trylock without calling mmget. If a task...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: soc: fsl: qbman: Always disable interrupts when taking cgrlock. smpcallfunctionsingle disables IRQs when executing the callback. To prevent deadlocks, IRQs must be disabled when taking cgrlock elsewhere. This is already done b...
Astra Linux – Vulnerability in Linux 5.10, Linux
In the Linux kernel, the following vulnerability has been resolved: powerpc/imc-pmu: The issue related to the use of mutexes in sections where IRQs are disabled has been fixed. The current imc-pmu code triggers a warning when CONFIGDEBUGATOMICSLEEP and CONFIGPROVELOCKING are enabled, while a...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: net: macb: Use devconsumeskbany to free TX SKBs The napiconsumeskb function is not intended to be called in a disabled IRQ context. However, after commit 6bc8a5098bf4 “net: macb: Fix txptrlock locking”, the freeing of TX SKBs is...
Astra Linux – Vulnerability found in Linux 5.15, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: um: time-travel: fix time corruption In the “basic” time-travel mode without =inf-cpu or =ext, we still encounter timer interrupts. These can occur at arbitrary times, for example, while inside the timerread function, which simpl...
CVE-2026-43253
A flaw was found in the Linux kernel's IOMMU Input/Output Memory Management Unit AMD component. When the system operates under a stressed environment with iommu.strict=1 enabled, a busy-wait operation within the waitonsem function can occur while holding a spinlock with interrupts disabled. This...
CVE-2026-43253
CVE-2026-43253 relates to the Linux kernel IOMMU AMD component. When iommu.strict=1, the wait_on_sem() busy-wait runs inside a spinlock with interrupts disabled, risking soft lockups under load. The fix moves the completion wait out of the spinlock in iommu_completion_wait(), since wait_on_sem() ...
SUSE CVE-2026-31563
In the Linux kernel, the following vulnerability has been resolved: net: macb: Use devconsumeskbany to free TX SKBs The napiconsumeskb function is not intended to be called in an IRQ disabled context. However, after commit 6bc8a5098bf4 "net: macb: Fix txptrlock locking", the freeing of TX SKBs is...
CVE-2026-31563
In the Linux kernel, the following vulnerability has been resolved: net: macb: Use devconsumeskbany to free TX SKBs The napiconsumeskb function is not intended to be called in an IRQ disabled context. However, after commit 6bc8a5098bf4 "net: macb: Fix txptrlock locking", the freeing of TX SKBs is...
UBUNTU-CVE-2026-23271
In the Linux kernel, the following vulnerability has been resolved: perf: Fix perfeventoverflow vs perfremovefromcontext race Make sure that perfeventoverflow runs with IRQs disabled for all possible callchains. Specifically the software events can end up running it with only preemption disabled...
CVE-2026-23271
In the Linux kernel, the following vulnerability has been resolved: perf: Fix perfeventoverflow vs perfremovefromcontext race Make sure that perfeventoverflow runs with IRQs disabled for all possible callchains. Specifically the software events can end up running it with only preemption disabled...
CVE-2026-23271
CVE-2026-23271 affects the Linux kernel perf subsystem. The vulnerability arises from a race between __perf_event_overflow() and perf_remove_from_context() where __perf_event_overflow() may run with only preemption disabled for some callchains, allowing a race against perf_event_exit_event() and ...
CVE-2026-23271 perf: Fix __perf_event_overflow() vs perf_remove_from_context() race
In the Linux kernel, the following vulnerability has been resolved: perf: Fix perfeventoverflow vs perfremovefromcontext race Make sure that perfeventoverflow runs with IRQs disabled for all possible callchains. Specifically the software events can end up running it with only preemption disabled...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: sched/core: Prevent rescheduling when interrupts are disabled David reported a warning observed during loop testing of the kexec jump: Interrupts were enabled after irqrouterresume+0x0/0x50 Warning: CPU: 0 PID: 560 at...
Azure Linux 3.0 Security Update: kernel (CVE-2025-23161)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-23161 advisory. - In the Linux kernel, the following vulnerability has been resolved: PCI: vmd: Make vmddev::cfglock a...
PT-2026-26576
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition exists between the perf event overflow function and perf remove from context. The issue occurs because perf event overflow may run with only preemption disabled instead ...
SUSE CVE-2023-54287
In the Linux kernel, the following vulnerability has been resolved: tty: serial: imx: disable Ageing Timer interrupt request irq There maybe pending USR interrupt before requesting irq, however uartaddoneport has not executed, so there will be kernel panic: 0.795668 Unable to handle kernel NULL...