Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: scsi: sg: Avoid sg device teardown race The function sgremovesfpusercontext must not use sgdeviceDestroy after calling scsidevicePut. sgdeviceDestroy accesses the parent scsidevice request queue, which will already be set to NULL...

SUSE CVE-2026-46170

In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: ADDADDR rtx: free sk if last When an ADDADDR is retransmitted, the sk is held in skresettimer, and released at the end. If at that moment, it was the last reference being held, the sk would not be freed. sockput should...

CVE-2026-46170

CVE-2026-46170 affects the Linux kernel MPTCP implementation. When ADD_ADDR is retransmitted, the socket reference counting can fail to free the sk, which may trigger indefinite waiting in timer synchronization and cause a DoS. The root cause is improper timer handling during sk_free that could c...

ROS-20260324-73-0025

A vulnerability in the fbtft component of the Linux operating system kernel is related to improper memory freeing before deleting the last reference. Exploitation of the vulnerability allows an attacker to cause a denial of service...

ROS-20260121-73-0049

A vulnerability in the spufs component of the Linux operating system kernel is related to improper memory freeing before deleting the last reference. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

ROS-20260120-73-0006

A vulnerability in the hsm component of the Linux operating system kernel is related to improper memory freeing before deleting the last reference. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

ROS-20260119-7367

A vulnerability in the ax25setsockopt function of the net/ax25/afax25.c component of the Linux operating system kernel is related to improper memory freeing before deleting the last reference. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

EUVD-2025-150371

In the Linux kernel, the following vulnerability has been resolved: listmount: don't call pathput under namespace semaphore Massage listmount and make sure we don't call pathput under the namespace semaphore. If we put the last reference we're fscked...

DEBIAN-CVE-2025-40203

In the Linux kernel, the following vulnerability has been resolved: listmount: don't call pathput under namespace semaphore Massage listmount and make sure we don't call pathput under the namespace semaphore. If we put the last reference we're fscked...

UBUNTU-CVE-2025-40203

In the Linux kernel, the following vulnerability has been resolved: listmount: don't call pathput under namespace semaphore Massage listmount and make sure we don't call pathput under the namespace semaphore. If we put the last reference we're fscked...

PT-2025-46760

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue within the listmount function. The problem arises from calling path put while under the namespace semaphore, which can lead to issues if it's the last...

The vulnerability in the intel/iaa/iaa_crypto_main.c component of the Linux operating system allows a hacker to exploit it, thereby causing a service failure.

The vulnerability in the intel/iaa/iaacryptomain.c component of the Linux operating system’s kernel is related to improper memory release before deleting the last reference. Exploiting this vulnerability can allow an attacker to cause service failures...

The vulnerabilities in the components inode.c, ioctl.c, root-tree.c, and root-tree.h of the Linux operating system’s kernel allow a hacker to cause a service failure.

The vulnerability in the components inode.c, ioctl.c, root-tree.c, and root-tree.h of the Linux operating system is related to improper memory release before deleting the last reference. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the exfat_load_bitmap() function in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the exfatloadbitmap function in the Linux operating system’s kernel is related to improper memory release before deleting the last reference. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the ceph_direct_read_write() function in the file.c component of the Linux kernel allows a hacker to cause a service failure.

The vulnerability of the cephdirectreadwrite function in the file.c component of the Linux kernel’s driver is related to improper memory release before deleting the last reference. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability in the driver/gpu/drm/xe/xe_exec.c component of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability in the drivers/gpu/drm/xe/xeexec.c kernel module of the Linux operating system is related to improper memory release before deleting the last reference. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the drivers/infiniband/hw/bnxt_re component of the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the drivers/infiniband/hw/bnxtre component of the Linux operating system is related to improper memory release before deleting the last reference. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the drivers/net/wireless/ath/ath10k component of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the drivers/net/wireless/ath/ath10k component in the Linux operating system is related to improper memory release before deleting the last reference. Exploiting this vulnerability can allow an attacker to cause a service failure...

Vulnerability of the fec_enet_init() function in the drivers/net/ethernet/freescale/fec_main.c module – The driver for supporting Ethernet adapter devices in the Freescale Linux operating system, which allows an attacker to gain access to protected information.

Vulnerability of the fecenetinit function in the drivers/net/ethernet/freescale/fecmain.c module – The driver for supporting Ethernet adapter devices in the Freescale Linux operating system is vulnerable due to improper memory release before deleting the last reference memory leak. Exploiting thi...

The vulnerability of the caif_device_notify() function in the net/caif/caif_dev.c module, which is part of the Linux kernel’s networking functions, allows a hacker to gain access to protected information.

The vulnerability of the caifdevicenotify function in the net/caif/caifdev.c module, which is part of the Linux kernel’s networking functions, stems from improper memory release before deleting the last reference to memory memory leak. Exploiting this vulnerability could allow an attacker to gain...