The vulnerability of the Linux operating system’s Bluetooth kernel component, which allows a hacker to trigger a service failure

The vulnerability of the Linux operating system’s Bluetooth kernel component is related to improper locking mechanisms. Exploiting this vulnerability can allow a hacker to cause a service failure...

The vulnerability of the i2c component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the i2c component in the Linux operating system’s kernel is related to improper locking mechanisms. Exploiting this vulnerability can allow an attacker to cause a service failure...

Vulnerability of components of Linux operating system’s kernel/mlx5, allowing a hacker to cause a service failure

The vulnerability of the net/mlx5 components in the Linux operating system’s kernel is related to improper locking mechanisms. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability in the fs/afs/addr_prefs.c module of Linux operating systems allows a hacker to cause a service failure.

The vulnerability in the fs/afs/addrprefs.c module of Linux operating systems is related to incorrect resource locking. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the Linux operating system’s kernel component allows a hacker to cause a service failure.

The vulnerability of the Linux operating system’s kernel component is related to improper locking mechanisms. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the mlx5 driver (drivers/net/ethernet/mellanox/mlx5/core/en_accel/ipsec.c) in Linux operating systems, which allows a hacker to cause a service failure.

The vulnerability of the mlx5 driver drivers/net/ethernet/mellanox/mlx5/core/enaccel/ipsec.c in Linux operating systems is related to incorrect resource locking. Exploiting this vulnerability can allow an attacker to cause service failures...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: filelock: Fixed the race condition recovery mechanism for fcntl/close operations. When I wrote the commit 3cad1bc01041 “filelock: Remove locks reliably when a fcntl/close race is detected”, I overlooked that there were two versio...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: posix-clock: posix-clock: Fixed unbalanced locking in pcclocksettime. If getclockdesc succeeds, it calls fget for the fd of the clockid. It also acquires a read lock on clk-rwsem. Therefore, the error path should release the lock...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: Media: wl128x – Fix for atomicity violation in fmcsendcmd An atomicity violation occurs when the fmcsendcmd function is executed simultaneously with the modification of the fmdev-respskb value. Consider a scenario where, after...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: iouring: A potential deadlock has been fixed in ioregisteriowqmaxworkers. The ioregisteriowqmaxworkers function calls ioputsqdata, which acquires sqd-lock without releasing the uringlock. Similar to the commit 009ad9f0c6ee...

CVE-2025-21684

In the Linux kernel, the following vulnerability has been resolved: gpio: xilinx: Convert gpiolock to raw spinlock irqchip functions may be called in raw spinlock context. Therefore, we must also use a raw spinlock for our own internal locking. This fixes the following lockdep splat: 5.349336...

The vulnerability of the i40e_xdp_setup() function (drivers/net/ethernet/intel/i40e/i40e_main.c) in the Linux kernel driver for the i40e driver allows a hacker to cause a service failure.

The vulnerability of the i40exdpsetup function drivers/net/ethernet/intel/i40e/i40emain.c in the Linux kernel driver for the i40e chip is related to improper resource locking. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the hci_unregister_dev() function (net/bluetooth/hci_core.c) in the Linux operating system’s Bluetooth kernel driver allows a attacker to cause a service failure.

The vulnerability of the hciunregisterdev function net/bluetooth/hcicore.c in the Linux operating system’s Bluetooth kernel driver is related to improper resource locking. Exploiting this vulnerability could allow an attacker to cause a service failure...

Azure Linux 3.0 Security Update: kernel (CVE-2024-35990)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-35990 advisory. - In the Linux kernel, the following vulnerability has been resolved: dma: xilinxdpdma: Fix locking There are...

DEBIAN-CVE-2025-21684

In the Linux kernel, the following vulnerability has been resolved: gpio: xilinx: Convert gpiolock to raw spinlock irqchip functions may be called in raw spinlock context. Therefore, we must also use a raw spinlock for our own internal locking. This fixes the following lockdep splat: 5.349336...

CVE-2025-21684

CVE-2025-21684 affects the Linux kernel GPIO xilinx driver. Root cause: irq_chip locking used gpio_lock (a normal spinlock) in contexts that may run under raw spinlock requirements. The fix: convert gpio_lock to a raw spinlock and apply it in the xilinx GPIO code path (e.g., xgpio_irq_unmask), ad...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the failure to use raw spinlock for internal locking in the raw spinlock environment where the irqchip...

Cosmos: Unauthorized coins transfer from locking account(s)

The Cosmos SDK was found to have a vulnerability that allowed unauthorized transfer of funds from locking accounts. The issue was specifically identified in the periodic-locking-account, but it was believed to affect other locking account types as well. The vulnerability stemmed from the way the...

CVE-2024-47306

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Ays Pro Secure Copy Content Protection and Content Locking secure-copy-content-protection-subscribe-to-view allows Stored XSS.This issue affects Secure Copy Content Protection and Content Locking:...

Security Bulletin: Multiple security vulnerabilities in RedHat UBI affect IBM Robotic Process Automation for Cloud Pak.

Summary Multiple security vulnerabilities in RedHat UBI affect IBM Robotic Process Automation for Cloud Pak. RedHat UBI images are used by IBM Robotic Process Automation base containers. This bulletin identifies the security fixes to apply to address the vulnerabilities. Vulnerability Details...