Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: rapidio: devices: fixed the issue where putdevice was not called in mportcdevopen. When kfifoalloc fails, the reference count of chdev-dev remains incremented. We should use putdevice&chdev-dev to decrement the reference count of...

Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: Rapidio: fixed a possible UAF Use-after-Allocation when kfifoalloc fails. If kfifoalloc fails in mportcdevopen, it jumps to errfifo and simply frees priv. However, priv is still in chdev-filelist, and traversal of the list may le...

Astra Linux – Vulnerability in Linux 5.10, Linux, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: Wifi: libertas – fixed a memory leak in lbsinitadapter. When kfifoalloc failed in lbsinitadapter, the command buffer was not released. Add freed memory to the processing error path...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007626)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007626 advisory. In the Linux kernel, the following vulnerability has been resolved: rapidio: fix possible UAF when kfifoalloc fails If kfifoalloc fails in mportcdevopen, goto errfif...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004170)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004170 advisory. A memory leak in the cx23888irprobe function in drivers/media/pci/cx23885/cx23888-ir.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of servi...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000221)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000221 advisory. A memory leak in the cx23888irprobe function in drivers/media/pci/cx23885/cx23888-ir.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of servi...

SUSE CVE-2022-50810

In the Linux kernel, the following vulnerability has been resolved: rapidio: devices: fix missing putdevice in mportcdevopen When kfifoalloc fails, the refcount of chdev-dev is left incremental. We should use putdevice&chdev-dev to decrease the ref count of chdev-dev to avoid refcount leak...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992886)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992886 advisory. In the Linux kernel, the following vulnerability has been resolved: rapidio: fix possible UAF when kfifoalloc fails If kfifoalloc fails in mportcdevopen, goto errfif...

CVE-2022-50810 rapidio: devices: fix missing put_device in mport_cdev_open

In the Linux kernel, the following vulnerability has been resolved: rapidio: devices: fix missing putdevice in mportcdevopen When kfifoalloc fails, the refcount of chdev-dev is left incremental. We should use putdevice&chdev-dev to decrease the ref count of chdev-dev to avoid refcount leak...

CVE-2022-50810

CVE-2022-50810 (Linux kernel, rapidio devices) : The issue arises in mport_cdev_open where a missing put_device call leaves the reference count of chdev->dev incremented when kfifo_alloc fails, causing a refcount leak. The vulnerability is limited to the rapidio device code path; no exploitati...

CVE-2022-50810 rapidio: devices: fix missing put_device in mport_cdev_open

In the Linux kernel, the following vulnerability has been resolved: rapidio: devices: fix missing putdevice in mportcdevopen When kfifoalloc fails, the refcount of chdev-dev is left incremental. We should use putdevice&chdev-dev to decrease the ref count of chdev-dev to avoid refcount leak...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992577)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992577 advisory. In the Linux kernel, the following vulnerability has been resolved: rapidio: fix possible UAF when kfifoalloc fails If kfifoalloc fails in mportcdevopen, goto errfif...

CLSA-2025-1760546935 kernel: Fix of 43 CVEs

locking/wwmutex/test: Fix potential workqueue corruption CVE-2023-52836 - netfilter: ipset: Fix suspicious rcudereferenceprotected CVE-2024-40993 - netfilter: ipset: Fix race between namespace cleanup and gc in the list:set type CVE-2024-39503 - netfilter: ipset: Missing gc cancellations fixed...

EUVD-2022-55507

Malicious code in bioql PyPI...

EUVD-2022-55561

Malicious code in bioql PyPI...

gpiolib: cdev: fix uninitialised kfifo

...

Linux Distros Unpatched Vulnerability : CVE-2022-50245

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: rapidio: fix possible UAF when kfifoalloc fails If kfifoalloc fails in mportcdevopen, goto...

Linux Distros Unpatched Vulnerability : CVE-2022-50294

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wifi: libertas: fix memory leak in lbsinitadapter When kfifoalloc failed in lbsinitadapter, cmd buffer is not released. Add free memory to processing error path...

SUSE CVE-2022-50245

In the Linux kernel, the following vulnerability has been resolved: rapidio: fix possible UAF when kfifoalloc fails If kfifoalloc fails in mportcdevopen, goto errfifo and just free priv. But priv is still in the chdev-filelist, then list traversal may cause UAF. This fixes the following smatch...

UBUNTU-CVE-2022-50294

In the Linux kernel, the following vulnerability has been resolved: wifi: libertas: fix memory leak in lbsinitadapter When kfifoalloc failed in lbsinitadapter, cmd buffer is not released. Add free memory to processing error path...