40 matches found
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: linkwatch: Use devput in the callers to prevent UAF. After linkwatchdodev calls devput to release the linkwatch reference, the device’s refcount may drop to 1. At this point, netdevruntodo can proceed since linkwatchsyncdev sees ...
Astra Linux - уязвимость в linux-5.10, linux
In the Linux kernel, the following vulnerability has been resolved: usbnet: Fixed the issue where linkwatch used-after-free occurred after a disconnection. usbnet uses the function usbnetdeferredkevent to perform tasks that might sleep. After a disconnection, the completion of these tasks was...
SUSE CVE-2026-23192
In the Linux kernel, the following vulnerability has been resolved: linkwatch: use devput in callers to prevent UAF After linkwatchdodev calls devput to release the linkwatch reference, the device refcount may drop to 1. At this point, netdevruntodo can proceed since linkwatchsyncdev sees an empt...
CVE-2026-23192
In the Linux kernel, the following vulnerability has been resolved: linkwatch: use devput in callers to prevent UAF After linkwatchdodev calls devput to release the linkwatch reference, the device refcount may drop to 1. At this point, netdevruntodo can proceed since linkwatchsyncdev sees an empt...
UBUNTU-CVE-2026-23192
In the Linux kernel, the following vulnerability has been resolved: linkwatch: use devput in callers to prevent UAF After linkwatchdodev calls devput to release the linkwatch reference, the device refcount may drop to 1. At this point, netdevruntodo can proceed since linkwatchsyncdev sees an empt...
CVE-2026-23192
In the Linux kernel, the following vulnerability has been resolved: linkwatch: use devput in callers to prevent UAF After linkwatchdodev calls devput to release the linkwatch reference, the device refcount may drop to 1. At this point, netdevruntodo can proceed since linkwatchsyncdev sees an empt...
EUVD-2026-5851
In the Linux kernel, the following vulnerability has been resolved: linkwatch: use devput in callers to prevent UAF After linkwatchdodev calls devput to release the linkwatch reference, the device refcount may drop to 1. At this point, netdevruntodo can proceed since linkwatchsyncdev sees an empt...
CVE-2026-23192
In the Linux kernel, the following vulnerability has been resolved: linkwatch: use devput in callers to prevent UAF After linkwatchdodev calls devput to release the linkwatch reference, the device refcount may drop to 1. At this point, netdevruntodo can proceed since linkwatchsyncdev sees an empt...
CVE-2026-23192
Summary (CVE-2026-23192) : This is a use-after-free in the Linux kernel’s linkwatch subsystem. When a network device is deleted while linkwatch events are pending, the device reference may be freed prematurely (in linkwatch_do_dev), allowing __linkwatch_run_queue to access a freed device. The fix...
CVE-2026-23192 linkwatch: use __dev_put() in callers to prevent UAF
In the Linux kernel, the following vulnerability has been resolved: linkwatch: use devput in callers to prevent UAF After linkwatchdodev calls devput to release the linkwatch reference, the device refcount may drop to 1. At this point, netdevruntodo can proceed since linkwatchsyncdev sees an empt...
CVE-2026-23192
In the Linux kernel, the following vulnerability has been resolved: linkwatch: use devput in callers to prevent UAF After linkwatchdodev calls devput to release the linkwatch reference, the device refcount may drop to 1. At this point, netdevruntodo can proceed since linkwatchsyncdev sees an empt...
CVE-2026-23192 linkwatch: use __dev_put() in callers to prevent UAF
In the Linux kernel, the following vulnerability has been resolved: linkwatch: use devput in callers to prevent UAF After linkwatchdodev calls devput to release the linkwatch reference, the device refcount may drop to 1. At this point, netdevruntodo can proceed since linkwatchsyncdev sees an empt...
PT-2026-8200
In the Linux kernel, the following vulnerability has been resolved: linkwatch: use dev put in callers to prevent UAF After linkwatch do dev calls dev put to release the linkwatch reference, the device refcount may drop to 1. At this point, netdev run todo can proceed since linkwatch sync dev sees...
Linux kernel 安全漏洞
The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the reuse of the linkwatchdodev function after it is released. This vulnerability could potential...
Linux Distros Unpatched Vulnerability : CVE-2026-23192
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - linkwatch: use devput in callers to prevent UAF After linkwatchdodev calls devput to release the linkwatch reference, the device refcount may drop to 1. At this...
Unity Linux 20.1050e Security Update: kernel (UTSA-2026-004859)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004859 advisory. In the Linux kernel, the following vulnerability has been resolved: usbnet: Fix linkwatch use-after-free on disconnect usbnet uses the work usbnetdeferredkevent to...
Azure Linux 3.0 Security Update: kernel (CVE-2025-21652)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-21652 advisory. - In the Linux kernel, the following vulnerability has been resolved: ipvlan: Fix use-after-free in...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992340)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992340 advisory. In the Linux kernel, the following vulnerability has been resolved: usbnet: Fix linkwatch use-after-free on disconnect usbnet uses the work usbnetdeferredkevent to...
kernel: ipvlan: Fix use-after-free in ipvlan_get_iflink().
In the Linux kernel, the following vulnerability has been resolved: ipvlan: Fix use-after-free in ipvlangetiflink. syzbot presented an use-after-free report 0 regarding ipvlan and linkwatch. ipvlan does not hold a refcnt of the lower device unlike vlan and macvlan. If the linkwatch work is...
EUVD-2025-2601
Malicious code in bioql PyPI...