Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: wifi: mac80211: Fixed corruption due to changed flags in MBSS on 32-bit systems. On 32-bit systems, the size of an unsigned long is 4 bytes, while a u64 is 8 bytes. Therefore, when using oreachsetbitbit, &bits, sizeofchanged...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-004848)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004848 advisory. In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: Fix UAF in ieee80211scanrx ieee80211scanrx tries to access scanreq-flags after a...

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2022-50116: kernel: tty: ngsm: fix deadlock and link starvation in outgoing data path bsc1244824. CVE-2024-53177: smb: prevent use-after-free due to opencacheddir...

SUSE SLES12 Security Update : kernel (Live Patch 71 for SLE 12 SP5) (SUSE-SU-2025:3703-1)

The remote SUSE Linux SLES12 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:3703-1 advisory. This update for the Linux Kernel 4.12.14-122269 fixes several issues. The following security issues were fixed: - CVE-2022-50386: Bluetooth:...

EUVD-2024-54039

Malicious code in bioql PyPI...

CVE-2022-49942 wifi: mac80211: Don't finalize CSA in IBSS mode if state is disconnected

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: Don't finalize CSA in IBSS mode if state is disconnected When we are not connected to a channel, sending channel "switch" announcement doesn't make any sense. The BSS list is empty in that case. This causes the fo...

CVE-2022-49934

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: Fix UAF in ieee80211scanrx ieee80211scanrx tries to access scanreq-flags after a null check, but a UAF is observed when the scan is completed and ieee80211scancompleted executes, which then calls cfg80211scandone...

CVE-2025-38013 wifi: mac80211: Set n_channels after allocating struct cfg80211_scan_request

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: Set nchannels after allocating struct cfg80211scanrequest Make sure that nchannels is set after allocating the struct cfg80211registereddevice::intscanreq member. Seen with syzkaller: UBSAN:...

Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2021-47659: drm/plane: Move range check for formatcount earlier bsc1237839. CVE-2022-49044: dm integrity: fix memory corruption when tagsize is less than digest si...

CVE-2022-49876

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix general-protection-fault in ieee80211subifstartxmit When device is running and the interface status is changed, the gpf issue is triggered. The problem triggering process is as follows: Thread A: Thread B...

CVE-2025-37795

...

CVE-2025-21828

CVE-2025-21828 relates to the Linux kernel wifi/mac80211 subsystem. The issue arises when a station (STA) has not been uploaded to the driver (e.g., STA state pre-moved to AUTHORIZED in IBSS scenarios) and a failed insertion leads to a premature STA free, causing the driver to attempt flushing an...

CVE-2022-49416 wifi: mac80211: fix use-after-free in chanctx code

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix use-after-free in chanctx code In ieee80211vifusereservedcontext, when we have an old context and the new context's replacestate is set to IEEE80211CHANCTXREPLACENONE, we free the old context in...

CVE-2024-43911 wifi: mac80211: fix NULL dereference at band check in starting tx ba session

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix NULL dereference at band check in starting tx ba session In MLD connection, linkdata/linkconf are dynamically allocated. They don't point to vif-bssconf. So, there will be no chanreq assigned to vif-bssconf an...

CVE-2022-48876

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix initialization of rx-link and rx-linksta There are some codepaths that do not initialize rx-linksta properly. This causes a crash in places which assume that rx-linksta is valid if rx-sta is valid. One known...

Moderate: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

CVE-2021-47091

In the Linux kernel, the following vulnerability has been resolved: mac80211: fix locking in ieee80211startap error path We need to hold the local-mtx to release the channel context, as even encoded by the lockdepassertheld there. Fix it...

kernel: wifi: mac80211: fix invalid drv_sta_pre_rcu_remove calls for non-uploaded sta

A data corruption issues was observed due to an uninitialized driver private data structures in the Linux kernel's wifi mac80211 subsystem. This could allow a local attacker to crash the system or leak kernel internal information...

Oracle: Security Advisory (ELSA-2015-3015)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2015-3014)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2015-3014 advisory. - kvm: fix excessive pages un-pinning in kvmiommumap error path. Quentin Casasnovas Orabug: 20687314 CVE-2014-3601 CVE-2014-8369 CVE-2014-3601 -...