4274 matches found
CVE-2026-42002
CVE-2026-42002 relates to PowerDNS Authoritative (pdns) and is caused by concurrency and locking defects in GSS-TSIG. The Debian advisory notes these issues could lead to denial of service or information disclosure, and recommends upgrading to pdns 4.9.15-0+deb13u1. Connected sources also referen...
EUVD-2026-31260
Concurrency and locking defects in GSS-TSIG...
PT-2026-42448
Concurrency and locking defects in GSS-TSIG...
PowerDNS Authoritative 安全漏洞
PowerDNS Authoritative is a DNS server software developed by PowerDNS Corporation. PowerDNS Authoritative has security vulnerabilities, which stem from concurrency and locking flaws in GSS-TSIG...
CVE-2026-44608
NLnet Labs Unbound 1.14.0 up to and including version 1.25.0 has a locking inconsistency vulnerability that when certain conditions are met multi-threaded, RPZ XFR reload, RPZ zone with 'rpz-nsip'/'rpz-nsdname' triggers it could result in heap use-after-free and eventual crash. An adversary can...
Astra Linux - уязвимость в linux-5.10, linux
In the Linux kernel, the following vulnerabilities have been resolved: ocfs2: dlmfs: fixed error handling of userdlmdestroylock When userdlmdestroylock failed, it did not clean up the flags it set before exiting. For USERLOCKINTEARDOWN, if this function fails because the lock is still in use, the...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerabilities have been resolved: - rxrpc: Fixed the locking mechanism in rxrpc’s sendmsg function. - Three bugs in the implementation of rxrpc’s sendmsg function have been fixed: 1 The rxrpcnewclientcall function should release the socket lock when returning ...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: Problem description =================== Lockdep reports a possible circular locking dependency AB/BA between &pl-statemutex and &phy-lock, as follows: phylinkresolve // acquires &pl-statemutex - phylinkmajorconfig - phyconfiginba...
Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: s390/dasd: Protecting the device queue against concurrent access. In the dasdprofilestart function, the number of requests on the device queue is counted. Access to the device queue is not protected against concurrent access. Wit...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: btrfs: zoned: fix lock ordering in btrfszoneactivate The btrfs CI reported a lockdep warning as follows when running generic/129. WARNING: possible circular locking dependency detected 6.7.0-rc5+ 1 Not tainted...
Astra Linux - уязвимость в linux-5.10, linux-5.15, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: RDMA/mad: Improved handling of time-out WRs for mad agents. The current timeout handler for mad agents acquires/releases the madagentpriv lock for every time-out WR. This causes heavy locking contention when more than one WR need...
Astra Linux - уязвимость в linux-5.15, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: “Reapply ‘drm/qxl: simplify qxlfencewait’” This change reverts to the commit 07ed11afb68d94eadd4ffc082b97c2331307c5ea. Stephen Rostedt reported: “I tried running my tests on my virtual machines, but the tests failed upon boot-up...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: cxl/port: Fixed the race condition involving the deleteendpoint function and the unregistration of parent ports. The CXL subsystem establishes a lineage of ports struct cxlport objects between an endpoint and the root of a CXL...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerabilities have been resolved: ftrace: Fixed recursive locking of directmutex in ftracemodifydirectcaller Naveen reported recursive locking of directmutex with the sample ftrace-direct-modify.ko file: 74.762406 WARNING: Possible recursive locking detected...
Astra Linux - уязвимость в linux-5.10, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: nfs4setupreaddir: Insufficient locking for -dparent-d inode dereferencing. Theoretically, this could lead to an oops error due to a race condition, but I don’t believe it can actually be exploited on real hardware. It might be...
Astra Linux - уязвимость в linux-5.15
A flaw was discovered in the ksmbd component of the Linux kernel, a high-performance in-kernel SMB server. The specific flaw occurs during the processing of SMB2SESSIONSETUP and SMB2LOGOFF commands. The issue arises due to the lack of proper locking when performing operations on an object. An...
Astra Linux - уязвимость в linux-5.10, linux
In the Linux kernel, the following vulnerabilities have been resolved: USB: core: Prevent nested device-reset calls Automatic kernel fuzzing revealed a recursive locking violation in usb-storage. ============================================ WARNING: Possible recursive locking detected 5.18.0 3 No...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: iouring/fdinfo: The ctx-uringlock lock is acquired around the iouringshowfdinfo function. Not everything requires locking, which is why the haslock variable exists. However, enough cases require locking, making it somewhat unwiel...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: powerpc/pci: Fixed the locking mechanism for getphbnumber The recent change to getphbnumber causes a DEBUGATOMICSLEEP warning on some systems: - Bug: A sleeping function is called from an invalid context at...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: arm: pgtable: Fix for NULL pointer dereference issue. When updatemmucacherange is called by updatemmucache, the vmf parameter is NULL, which can lead to a NULL pointer dereference issue in adjustpte. It is not possible to handle...