CVE-2025-71313 PCI: endpoint: Add missing NULL check for alloc_workqueue()

In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: Add missing NULL check for allocworkqueue allocworkqueue can return NULL on memory allocation failure. Without proper error checking, this may lead to a NULL pointer dereference when queuework is later called with...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: mm/vmscan: Fixed handling of hwpoisoned large folio entries in shrinkfoliolist. In shrinkfoliolist, the hwpoisoned folio entries might be large folio entries that cannot be handled by unmappoisonedfolio. For THP processors,...

Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: mm/memory-failure: Ensure waiting for page writeback in memoryfailure. Our syzkaller triggers "BUGON!listempty&inode-iwblist" in clearinode: - Kernel bug at fs/inode.c:519: Internal error; Oops – Bug: 0 1 SMP. - Modules linked in...

Astra Linux - уязвимость в linux-5.10, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: mm/memory-failure: fixed a deadlock that occurred when hugetlboptimizevmemmap was enabled. When I performed hard offline tests with hugetlb pages, the following deadlock occurred:...

Astra Linux - уязвимость в linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: mm/hugememory: Do not unpoison hugezerofolio. When I conducted memory failure tests recently, the following panic occurred: Kernel bug at include/linux/mm.h:1135! Invalid opcode: 0000 1 PREEMPT SMP NOPTI CPU: 9 PID: 137 Comm:...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: “mm: memoryfailure: unmap poisoned folio during migrate properly”. The patch series “mm: memoryfailure: unmap poisoned folio during migrate properly”, version 3, fixes two bugs during folio migration if the folio is poisoned. Thi...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: mm/memory-failure: fixed the VMBUGONPAGE issue PagePoisonedpage when unmisting memory. When I performed memory failure tests, the following panic occurred: Page dumped because: VMBUGONPAGEPagePoisonedpage. Kernel bug at...

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: device-dax: The pgoff alignment in daxsetmapping should use ALIGNDOWN instead of ALIGN. Otherwise, vmf-address, which is not aligned with faultsize, will be aligned to the next alignment, which can lead to memory failures due ...

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: mm/hugetlb: fixed DEBUGLOCKSWARNON1 when dissolvefreehugetlbfolio When I conducted memory failure tests recently, the following warning occurred: DEBUGLOCKSWARNON1 WARNING: CPU: 8 PID: 1011 at kernel/locking/lockdep.c:232...

OPENSUSE-SU-2026:20769-1 Security update for mozjs115

This update for mozjs115 fixes the following issues: Changes in mozjs115: - CVE-2026-32776: Fixed a NULL pointer dereference when processing empty external parameter entities inside an entity declaration value bsc1259728 - CVE-2026-32777: Fixed a denial of service due to infinite loop in DTD...

SUSE-SU-2026:1817-1 Security update for mozjs60

This update for mozjs60 fixes the following issues - CVE-2026-32776: libexpat: NULL pointer dereference when processing empty external parameter entities inside an entity declaration value bsc1259728. - CVE-2026-32777: libexpat: denial of service due to infinite loop in DTD content parsing...

CVE-2026-43472

In the Linux kernel, the following vulnerability has been resolved: unshare: fix unsharefs handling There's an unpleasant corner case in unshare2, when we have a CLONENEWNS in flags and current-fs hadn't been shared at all; in that case copymntns gets passed current-fs instead of a private copy,...

Astra Linux - уязвимость в libstb

stbvorbis is a single-file library licensed under the MIT license, designed for processing OGG Vorbis files. A properly crafted file may cause a memory allocation failure in the startdecoder function. In such cases, the function returns early, but some of the pointers in f-commentlist remain...

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerability has been resolved: mm/memory-failure: fix handling of dissolved but not taken off from buddy pages When I did memory failure tests recently, below panic occurs: page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x8cee00 flags:...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: s390/mm: The handling of VMFAULTHWPOISON in doexception has been fixed. There is no support for HWPOISON, MEMORYFAILURE, or ARCHHASCOPYMC on s390. Therefore, we do not expect to see VMFAULTHWPOISON in doexception. However, since...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: x86/mce: Used iscopyfromuser to determine the copy-from-user context. Patch series “mm/hwpoison: Fix regressions in memory failure handling”, v4.1 1. What are we trying to achieve? This patchset resolves two critical regressio...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013067)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013067 advisory. In the Linux kernel, the following vulnerability has been resolved: mm/memory-failure: fix VMBUGONPAGEPagePoisonedpage when unpoison memory When I did memory failure...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006754)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006754 advisory. In the Linux kernel, the following vulnerability has been resolved: mm/memory-failure: fix VMBUGONPAGEPagePoisonedpage when unpoison memory When I did memory failure...

CVE-2026-23375

CVE-2026-23375 (Linux kernel THP for anonymous inodes) – concrete details in connected docs : The issue arises from file_thp_enabled() incorrectly allowing/thp collapse for anonymous inodes created via alloc_file_pseudo() (e.g., guest_memfd, secretmem), enabling khugepaged/MADV_COLLAPSE exploits ...

CVE-2026-23375

In the Linux kernel, the following vulnerability has been resolved: mm: thp: deny THP for files on anonymous inodes filethpenabled incorrectly allows THP for files on anonymous inodes e.g. guestmemfd and secretmem. These files are created via allocfilepseudo, which does not call getwriteaccess an...