Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: net/iucv: Avoid explicit allocation of the cpumask variable on the stack. For the CONFIGCPUMASKOFFSTACK=y kernel configuration, explicit allocation of the cpumask variable on the stack is not recommended, as it may cause a...

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: net/iucv: fixed the issue where use-after-free occurs in iucvsockclose. The iucvpathseverpath function is called from both process context and thread context. iucv-path is used as an indicator to determine whether someone else...

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerability has been resolved: s390/iucv: MSGPEEK causes a memory leak in iucvsockdestruct. Passing the MSGPEEK flag to skbrecvdatagram increments the skb refcount skb-users, while iucvsockrecvmsg does not decrement the skb refcount at exit. This results in a...

Astra Linux - уязвимость в linux-5.10, linux, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: net/iucv: Fix size of interrupt data iucvirqdata needs to be 4 bytes larger. These bytes are not used by the iucv module, but written by the z/VM hypervisor in case a CPU is deconfigured. Reported as: BUG dma-kmalloc-64 Not...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005115)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005115 advisory. In the Linux kernel, the following vulnerability has been resolved: net/iucv: fix use after free in iucvsockclose iucvseverpath is called from process context and fr...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002373)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002373 advisory. The iucvsockrecvmsg function in net/iucv/afiucv.c in the Linux kernel before 3.9-rc7 does not initialize a certain length variable, which allows local users to obtai...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002019)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002019 advisory. The iucvsockrecvmsg function in net/iucv/afiucv.c in the Linux kernel before 3.9-rc7 does not initialize a certain length variable, which allows local users to obtai...

ROS-20260113-7392

A vulnerability in the iucvsockdestruct function of the net/iucv/afiucv.c component of the Linux operating system kernel is related to improper memory freeing before deleting the last link. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993238)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993238 advisory. In the Linux kernel, the following vulnerability has been resolved: net/iucv: Fix size of interrupt data iucvirqdata needs to be 4 bytes larger. These bytes are not...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-992683)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992683 advisory. In the Linux kernel, the following vulnerability has been resolved: net/iucv: Fix size of interrupt data iucvirqdata needs to be 4 bytes larger. These bytes are not...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990810)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990810 advisory. In the Linux kernel, the following vulnerability has been resolved: net/iucv: Fix size of interrupt data iucvirqdata needs to be 4 bytes larger. These bytes are not...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990500)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990500 advisory. In the Linux kernel, the following vulnerability has been resolved: net/iucv: Avoid explicit cpumask var allocation on stack For CONFIGCPUMASKOFFSTACK=y kernel,...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989893)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989893 advisory. In the Linux kernel, the following vulnerability has been resolved: net/iucv: Avoid explicit cpumask var allocation on stack For CONFIGCPUMASKOFFSTACK=y kernel,...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986595)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986595 advisory. In the Linux kernel, the following vulnerability has been resolved: net/iucv: Avoid explicit cpumask var allocation on stack For CONFIGCPUMASKOFFSTACK=y kernel,...

EUVD-2025-13157

Malicious code in bioql PyPI...

kernel: net/iucv: Avoid explicit cpumask var allocation on stack

In the Linux kernel, the following vulnerability has been resolved: net/iucv: Avoid explicit cpumask var allocation on stack For CONFIGCPUMASKOFFSTACK=y kernel, explicit allocation of cpumask variable on stack is not recommended since it can cause potential stack overflow. Instead, kernel code...

RHEL 9 : kernel (RHSA-2025:15668)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:15668 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: net/iucv: Avoid explicit...

Linux Distros Unpatched Vulnerability : CVE-2023-53108

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net/iucv: Fix size of interrupt data iucvirqdata needs to be 4 bytes larger. These bytes are not used by the iucv module, but written by the z/VM hypervisor in...

kernel: net/iucv: Avoid explicit cpumask var allocation on stack

In the Linux kernel, the following vulnerability has been resolved: net/iucv: Avoid explicit cpumask var allocation on stack For CONFIGCPUMASKOFFSTACK=y kernel, explicit allocation of cpumask variable on stack is not recommended since it can cause potential stack overflow. Instead, kernel code...

CVE-2023-53108

In the Linux kernel, the following vulnerability has been resolved: net/iucv: Fix size of interrupt data iucvirqdata needs to be 4 bytes larger. These bytes are not used by the iucv module, but written by the z/VM hypervisor in case a CPU is deconfigured. Reported as: BUG dma-kmalloc-64 Not...