Astra Linux – Vulnerability in mdadm

Uncontrolled resource consumption in some IntelR SSD Tools software prior to version mdadm-4.2-rc2 may allow a privileged user to potentially enable denial of service through local access...

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: md/bitmap: Do not set sb values if the sanity check fails. If the bitmap area contains invalid data, the kernel will crash. In this case, mdadm triggers a “Segmentation fault”. This is a bug specific to cluster-md. In non-cluster...

Astra Linux – Vulnerability in mdadm

A buffer overflow in some IntelR SSD Tools software prior to version mdadm-4.2-rc2 may allow a privileged user to potentially enable privilege escalation through local access...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: md: initbioset in mddevinit. IO operations may be required before mdrun, such as updating metadata after writing to sysfs. Without bioset, this triggers a NULL pointer dereference, as shown below: BUG: NULL pointer dereference in...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: md: Do not dereference mddev after exportrdev Except for initial references, mddev-kobject is referenced by rdev-kobject. If the last rdev is freed, there is no guarantee that mddev is still valid. Therefore, mddev should no long...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-012952)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-012952 advisory. In the Linux kernel, the following vulnerability has been resolved: md: fix kmemleak of rdev-serial If kobjectadd is fail in bindrdevtoarray, 'rdev-serial' will be...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-004921)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004921 advisory. In the Linux kernel, the following vulnerability has been resolved: md: Replace snprintf with scnprintf Current code produces a warning as shown below when total...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992782)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992782 advisory. In the Linux kernel, the following vulnerability has been resolved: md: Replace snprintf with scnprintf Current code produces a warning as shown below when total...

CVE-2025-68368

In the Linux kernel, the following vulnerability has been resolved: md: init bioset in mddevinit IO operations may be needed before mdrun, such as updating metadata after writing sysfs. Without bioset, this triggers a NULL pointer dereference as below: BUG: kernel NULL pointer dereference, addres...

Linux Distros Unpatched Vulnerability : CVE-2025-68368

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - md: init bioset in mddevinit IO operations may be needed before mdrun, such as updating metadata after writing sysfs. Without bioset, this triggers a NULL point...

Linux Distros Unpatched Vulnerability : CVE-2023-53791

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - md: fix warning for holder mismatch from exportrdev Commit a1d767191096 md: use mddev-external to select holder in exportrdev fix the problem that 'claimrdev' i...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990604)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990604 advisory. In the Linux kernel, the following vulnerability has been resolved: md/bitmap: don't set sb values if can't pass sanity check If bitmap area contains invalid data,...

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-989927)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989927 advisory. In the Linux kernel, the following vulnerability has been resolved: md/bitmap: don't set sb values if can't pass sanity check If bitmap area contains invalid data,...

EUVD-2022-54704

In the Linux kernel, the following vulnerability has been resolved: md/bitmap: don't set sb values if can't pass sanity check If bitmap area contains invalid data, kernel will crash then mdadm triggers "Segmentation fault". This is cluster-md speical bug. In non-clustered env, mdadm will handle...

CVE-2023-53665

In the Linux kernel, the following vulnerability has been resolved: md: don't dereference mddev after exportrdev Except for initial reference, mddev-kobject is referenced by rdev-kobject, and if the last rdev is freed, there is no guarantee that mddev is still valid. Hence mddev should not be use...

CVE-2023-53665

CVE-2023-53665 : Linux kernel vulnerability in md/mdadm handling where after export_rdev(), mddev may be dereferenced via rdev->kobject; if the last rdev is freed, mddev might be invalid. This is caused by mddev->kobject being referenced by rdev->kobject and using mddev after export_rdev...

EUVD-2014-5118

Malware in sbrugna...

EUVD-2025-11191

Malicious code in bioql PyPI...

UBUNTU-CVE-2022-50299

In the Linux kernel, the following vulnerability has been resolved: md: Replace snprintf with scnprintf Current code produces a warning as shown below when total characters in the constituent block device names plus the slashes exceeds 200. snprintf returns the number of characters generated from...

PT-2025-37601

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.4.0-1085-azure 9018.04.1-Ubuntu Description: The Linux kernel contained an issue where the snprintf function was used instead of scnprintf in the md multiple device module. This could lead to a warning when th...