CVE-2026-45964

CVE-2026-45964 concerns the Linux kernel SUNRPC path. The issue is a kref leak in gss_auth when handling an error path in gss_alloc_msg, where a failure to balance references on kstrdup_const() error path caused the gss_auth structure to remain allocated. The fix adds a forward declaration for gs...

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: fbdev: smscufx: Fixed several use-after-free bugs. Several types of UAFs Use-After-Free errors can occur when physically removing a USB device. The function ufxopsdestroy has been added to the .fbdestroy of the fbops structure...

CVE-2025-68226 smb: client: fix incomplete backport in cfids_invalidation_worker()

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix incomplete backport in cfidsinvalidationworker The previous commit bdb596ceb4b7 "smb: client: fix potential UAF in smb2closecachedfid" was an incomplete backport and missed one krefput call in...

AZL-55229 CVE-2024-56631 affecting package kernel for versions less than 5.15.179.1-1

In the Linux kernel, the following vulnerability has been resolved: scsi: sg: Fix slab-use-after-free read in sgrelease Fix a use-after-free bug in sgrelease, detected by syzbot with KASAN: BUG: KASAN: slab-use-after-free in lockrelease+0x151/0xa30 kernel/locking/lockdep.c:5838...

CVE-2024-49852 scsi: elx: libefc: Fix potential use after free in efc_nport_vport_del()

In the Linux kernel, the following vulnerability has been resolved: scsi: elx: libefc: Fix potential use after free in efcnportvportdel The krefput function will call nport-release if the refcount drops to zero. The nport-release release function is efcnportfree which frees "nport". But then we...

CVE-2023-52741

CVE-2023-52741 affects the Linux kernel CIFS implementation: a use-after-free in rdata->read_into_pages() can occur when the network is unstable during read operations. The issue is caused by improper return-condition sequencing, enabling UAF in readpages_fill_pages (and related paths such as ...

CVE-2024-27043

In the Linux kernel, the following vulnerability has been resolved: media: edia: dvbdev: fix a use-after-free In dvbregisterdevice, pdvbdev is set equal to dvbdev, which is freed in several error-handling paths. However, pdvbdev is not set to NULL after dvbdev's deallocation, causing...

CVE-2024-27043

In CVE-2024-27043, the Linux kernel vulnerability is a use-after-free in DVB convolution: dvb_register_device assigns *pdvbdev to dvbdev and frees dvbdev in error paths without nulling *pdvbdev, enabling UAFs via the dvb device lifecycle. A fix exists (kernel patch) to null the pointer after free...