113 matches found
Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12
In the Linux kernel, the following vulnerability has been resolved: power: supply: bq256xx: Fixed a use-after-free in powersupplychanged. Using the devm variant for requesting IRQs before using the devm variant for allocating/registering the powersupply handle means that the powersupply handle wi...
Linux Distros Unpatched Vulnerability : CVE-2026-46297
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: libwx: use requestirq for VF misc interrupt Currently, requestthreadedirq is used with a primary handler but a NULL threaded handler, while also setting th...
CVE-2026-46031
In the Linux kernel, the following vulnerability has been resolved: net: ks8851: Reinstate disabling of BHs around IRQ handler If the driver executes ks8851irq AND a TX packet has been sent, then the driver enables TX queue via netifwakequeue which schedules TX softirq to queue packets for this...
PT-2026-43898
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A deadlock occurs in the ks8851 driver when the ks8851 irq function is executed. If a TX packet has been sent, the driver enables the TX queue via netif wake queue, which schedules a TX...
Linux Distros Unpatched Vulnerability : CVE-2026-46031
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: ks8851: Reinstate disabling of BHs around IRQ handler If the driver executes ks8851irq AND a TX packet has been sent, then the driver enables TX queue via...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: drm/bridge: synopsys: dw-dp: fixed error paths in dwdpBind. Several issues in error handling for dwdpBind have been fixed: 1. A missing return statement after a failure in drmbridgeattach – the function continued execution...
Astra Linux – Vulnerability in Linux, Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: isdn: mISDN: netjet: Fixed a crash in njprobe: The ‘njsetup’ function in netjet.c might fail with -EIO. In this case, ‘card-irq’ is initialized and is greater than zero. A subsequent call to ‘njrelease’ will release the irq th...
CVE-2026-43311
In the Linux kernel, the following vulnerability has been resolved: soc/tegra: pmc: Fix unsafe generichandleirq call Currently, when resuming from system suspend on Tegra platforms, the following warning is observed: WARNING: CPU: 0 PID: 14459 at kernel/irq/irqdesc.c:666 Call trace:...
PT-2026-37603
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A null pointer dereference can occur in the wave5 chips-media component when multiple instances are created and destroyed, leading to frequent interrupts and the removal of decoder...
EUVD-2026-25456
In the Linux kernel, the following vulnerability has been resolved: net: macb: Use devconsumeskbany to free TX SKBs The napiconsumeskb function is not intended to be called in an IRQ disabled context. However, after commit 6bc8a5098bf4 "net: macb: Fix txptrlock locking", the freeing of TX SKBs is...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007258)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007258 advisory. In the Linux kernel, the following vulnerability has been resolved: vfio/platform: Create persistent IRQ handlers The vfio-platform SETIRQS ioctl currently allows...
CVE-2026-23470
CVE-2026-23470 concerns the Linux kernel’s DRM/imagination path where the soft reset sequence can deadlock because it runs in a threaded IRQ handler and cannot call disable_irq() (which would wait on IRQ handlers). The fix is to use disable_irq_nosync() during the soft reset to avoid waiting on t...
CVE-2026-23132
In the Linux kernel, the following vulnerability has been resolved: drm/bridge: synopsys: dw-dp: fix error paths of dwdpbind Fix several issues in dwdpbind error handling: 1. Missing return after drmbridgeattach failure - the function continued execution instead of returning an error. 2. Resource...
CVE-2026-23132
In the Linux kernel, the following vulnerability has been resolved: drm/bridge: synopsys: dw-dp: fix error paths of dwdpbind Fix several issues in dwdpbind error handling: 1. Missing return after drmbridgeattach failure - the function continued execution instead of returning an error. 2. Resource...
CVE-2026-23132 drm/bridge: synopsys: dw-dp: fix error paths of dw_dp_bind
In the Linux kernel, the following vulnerability has been resolved: drm/bridge: synopsys: dw-dp: fix error paths of dwdpbind Fix several issues in dwdpbind error handling: 1. Missing return after drmbridgeattach failure - the function continued execution instead of returning an error. 2. Resource...
CVE-2026-23013
In the Linux kernel, the following vulnerability has been resolved: net: octeonepvf: fix freeirq devid mismatch in IRQ rollback octepvfrequestirqs requests MSI-X queue IRQs with devid set to ioqvector. If requestirq fails part-way, the rollback loop calls freeirq with devid set to 'oct', which do...
Azure Linux 3.0 Security Update: kernel (CVE-2024-57916)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-57916 advisory. - In the Linux kernel, the following vulnerability has been resolved: misc: microchip: pci1xxxx: Resolve kerne...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002195)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002195 advisory. Buffer overflow in virt/kvm/irqcomm.c in the KVM subsystem in the Linux kernel before 3.2.24 allows local users to cause a denial of service crash and possibly execu...
CVE-2022-50882
CVE-2022-50882 affects the Linux kernel's media: uvcvideo component. The root cause was a memory/resource leak where the unit buffer was allocated before validating the privacy GPIO IRQ. The fix postpones allocating the unit buffer until after the IRQ check, preventing leaks. Impact is described ...
SUSE CVE-2025-68202
In the Linux kernel, the following vulnerability has been resolved: schedext: Fix unsafe locking in the scxdumpstate For built with CONFIGPREEMPTRT=y kernels, the dumplock will be converted sleepable spinlock and not disable-irq, so the following scenarios occur: inconsistent IN-HARDIRQ-W -...