Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerability has been resolved: net/iucv: Avoid explicit allocation of the cpumask variable on the stack. For the CONFIGCPUMASKOFFSTACK=y kernel, explicit allocation of the cpumask variable on the stack is not recommended, as it may cause a potential stack...

Astra Linux – Vulnerability in Linux 5.10, Linux, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: net/iucv: Fixed the size of interrupt data iucvirqdata needs to be 4 bytes larger. These bytes are not used by the iucv module, but are written by the z/VM hypervisor in case a CPU is deconfigured. Reported as: BUG...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005115)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005115 advisory. In the Linux kernel, the following vulnerability has been resolved: net/iucv: fix use after free in iucvsockclose iucvseverpath is called from process context and fr...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002373)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002373 advisory. The iucvsockrecvmsg function in net/iucv/afiucv.c in the Linux kernel before 3.9-rc7 does not initialize a certain length variable, which allows local users to obtai...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002019)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002019 advisory. The iucvsockrecvmsg function in net/iucv/afiucv.c in the Linux kernel before 3.9-rc7 does not initialize a certain length variable, which allows local users to obtai...

ROS-20260113-7392

A vulnerability in the iucvsockdestruct function of the net/iucv/afiucv.c component of the Linux operating system kernel is related to improper memory freeing before deleting the last link. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993238)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993238 advisory. In the Linux kernel, the following vulnerability has been resolved: net/iucv: Fix size of interrupt data iucvirqdata needs to be 4 bytes larger. These bytes are not...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-992683)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992683 advisory. In the Linux kernel, the following vulnerability has been resolved: net/iucv: Fix size of interrupt data iucvirqdata needs to be 4 bytes larger. These bytes are not...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990810)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990810 advisory. In the Linux kernel, the following vulnerability has been resolved: net/iucv: Fix size of interrupt data iucvirqdata needs to be 4 bytes larger. These bytes are not...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990500)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990500 advisory. In the Linux kernel, the following vulnerability has been resolved: net/iucv: Avoid explicit cpumask var allocation on stack For CONFIGCPUMASKOFFSTACK=y kernel,...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989893)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989893 advisory. In the Linux kernel, the following vulnerability has been resolved: net/iucv: Avoid explicit cpumask var allocation on stack For CONFIGCPUMASKOFFSTACK=y kernel,...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986595)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986595 advisory. In the Linux kernel, the following vulnerability has been resolved: net/iucv: Avoid explicit cpumask var allocation on stack For CONFIGCPUMASKOFFSTACK=y kernel,...

EUVD-2025-13157

Malicious code in bioql PyPI...

kernel: net/iucv: Avoid explicit cpumask var allocation on stack

In the Linux kernel, the following vulnerability has been resolved: net/iucv: Avoid explicit cpumask var allocation on stack For CONFIGCPUMASKOFFSTACK=y kernel, explicit allocation of cpumask variable on stack is not recommended since it can cause potential stack overflow. Instead, kernel code...

RHEL 9 : kernel (RHSA-2025:15668)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:15668 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: net/iucv: Avoid explicit...

Linux Distros Unpatched Vulnerability : CVE-2023-53108

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net/iucv: Fix size of interrupt data iucvirqdata needs to be 4 bytes larger. These bytes are not used by the iucv module, but written by the z/VM hypervisor in...

The vulnerability of the iucv_sock_destruct() function in the net/iucv/af_iucv.c component of the Linux kernel allows a hacker to cause a service failure.

The vulnerability of the iucvsockdestruct function in the net/iucv/afiucv.c component of the Linux kernel is related to improper memory release before deleting the last pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

kernel: net/iucv: Avoid explicit cpumask var allocation on stack

In the Linux kernel, the following vulnerability has been resolved: net/iucv: Avoid explicit cpumask var allocation on stack For CONFIGCPUMASKOFFSTACK=y kernel, explicit allocation of cpumask variable on stack is not recommended since it can cause potential stack overflow. Instead, kernel code...

CVE-2023-53108

In the Linux kernel, the following vulnerability has been resolved: net/iucv: Fix size of interrupt data iucvirqdata needs to be 4 bytes larger. These bytes are not used by the iucv module, but written by the z/VM hypervisor in case a CPU is deconfigured. Reported as: BUG dma-kmalloc-64 Not...

SUSE CVE-2023-53108

In the Linux kernel, the following vulnerability has been resolved: net/iucv: Fix size of interrupt data iucvirqdata needs to be 4 bytes larger. These bytes are not used by the iucv module, but written by the z/VM hypervisor in case a CPU is deconfigured. Reported as: BUG dma-kmalloc-64 Not...