Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: dm raid: fixed the KASAN warning in raid5adddisks. There is a KASAN warning in raid5adddisk when running the LVM testsuite. The warning occurs during the test lvconvert-raid-reshape-lineartoraid6-single-type.sh. We fixed this...

PT-2026-48930

Name of the Vulnerable Software and Affected Versions NanaZip versions 3.0.1000.0 through 6.0.1697.0 Description A heap buffer-overflow read exists in the LVM2 physical-volume metadata parser, which is handled via the upstream 7-Zip LvmHandler. This issue occurs when the software opens a speciall...

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: dm raid: Fixing access issues beyond the end of the raid member array When the dm-raid table is loaded using raidctr, dm-raid allocates an array rs-devsrs-raiddisks for the raid device members. rs-raiddisks is determined by the...

CLEANSTART-2026-DM93480 During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions

Multiple security vulnerabilities affect the lvm-driver package. During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions. See references for individual vulnerability details...

CLEANSTART-2026-UO31069 During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions

Multiple security vulnerabilities affect the lvm-driver package. During chain building, the amount of work that is done is not correctly limited when a large number of intermediate certificates are passed in VerifyOptions. See references for individual vulnerability details...

CVE-2026-24817

Out-of-bounds Write vulnerability in praydog UEVR dependencies/lua/src modules. This vulnerability is associated with program files ldebug.C, lvm.C. This issue affects UEVR: before 1.05...

CVE-2026-24817

Out-of-bounds Write vulnerability in praydog UEVR dependencies/lua/src modules. This vulnerability is associated with program files ldebug.C, lvm.C. This issue affects UEVR: before 1.05...

EUVD-2026-4766

Out-of-bounds Write vulnerability in praydog UEVR dependencies/lua/src modules. This vulnerability is associated with program files ldebug.C, lvm.C. This issue affects UEVR: before 1.05...

CVE-2026-24817 A potential heap-buffer overflow in praydog/UEVR

Out-of-bounds Write vulnerability in praydog UEVR dependencies/lua/src modules. This vulnerability is associated with program files ldebug.C, lvm.C. This issue affects UEVR: before 1.05...

CVE-2026-24817

CVE-2026-24817 describes an Out-of-bounds Write in praydog UEVR, affecting before 1.05. It involves dependencies/lua/src modules with files ldebug.C and lvm.C. CVSS 4.0 base 8.7 (HIGH). Network attack vector, no user interaction; impact on availability (HIGH) with negligible confidentiality/integ...

PT-2026-4892

Out-of-bounds Write vulnerability in praydog UEVR dependencies/lua/src modules. This vulnerability is associated with program files ldebug.C, lvm.C. This issue affects UEVR: before 1.05...

UEVR security vulnerabilities

UEVR is a general-purpose VR engine module developed by PrayDog’s individual developer. Versions of UEVR prior to 1.05 contained security vulnerabilities, which were caused by out-of-bound writes in the program files ldebug.C and lvm.C...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-004846)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004846 advisory. In the Linux kernel, the following vulnerability has been resolved: dm raid: fix address sanitizer warning in raidresume There is a KASAN warning in raidresume when...

MiracleLinux 4 : dracut-004-336.AXS4.2 (AXSA:2014-007:01)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2014-007:01 advisory. dracut is a new, event-driven initramfs infrastructure based around udev. Security issues fixed with this release: CVE-2012-4453 dracut.sh in dracut creates...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-993092)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993092 advisory. In the Linux kernel, the following vulnerability has been resolved: md: fix a crash in mempoolfree There's a crash in mempoolfree when running the lvm test...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992721)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992721 advisory. In the Linux kernel, the following vulnerability has been resolved: dm raid: fix address sanitizer warning in raidresume There is a KASAN warning in raidresume when...

Unity Linux 20.1060a Security Update: kernel (UTSA-2025-992905)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992905 advisory. In the Linux kernel, the following vulnerability has been resolved: md: fix a crash in mempoolfree There's a crash in mempoolfree when running the lvm test...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992270)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992270 advisory. In the Linux kernel, the following vulnerability has been resolved: dm raid: fix address sanitizer warning in raidresume There is a KASAN warning in raidresume when...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992505)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992505 advisory. In the Linux kernel, the following vulnerability has been resolved: md: fix a crash in mempoolfree There's a crash in mempoolfree when running the lvm test...

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-991154)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991154 advisory. In the Linux kernel, the following vulnerability has been resolved: dm raid: fix KASAN warning in raid5adddisks There's a KASAN warning in raid5adddisk when running...