24 matches found
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: fs/fhandle.c: A race condition in the call to haslockedchildren was fixed. maydecodefh calls haslockedchildren while holding no locks. This is an oopsable race condition. The rest of the callers are safe, as they hold namespacese...
Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15
In the Linux kernel, the following vulnerability has been resolved: legitimizemnt: check for MNTSYNCUMOUNT should be under mountlock ... or we risk stealing final mntput from sync umount - raising mntcount after umount2 has verified that victim is not busy, but before it has set MNTSYNCUMOUNT; in...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013503)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013503 advisory. In the Linux kernel, the following vulnerability has been resolved: legitimizemnt: check for MNTSYNCUMOUNT should be under mountlock ... or we risk stealing final...
Siemens SIMATIC S7-1500 Improper Locking (CVE-2025-38058)
In the Linux kernel, the following vulnerability has been resolved: legitimizemnt: check for MNTSYNCUMOUNT should be under mountlock ... or we risk stealing final mntput from sync umount - raising mntcount after umount2 has verified that victim is not busy, but before it has set MNTSYNCUMOUNT; in...
EUVD-2025-18595
Malicious code in bioql PyPI...
EulerOS 2.0 SP10 : kernel (EulerOS-SA-2025-2100)
According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : KVM: SVM: Don't BUG if userspace injects an interrupt with GIF=0CVE-2022-50228 md: call mdstopwrites in mdstopCVE-2022-49987 iommu/vt-d: avoid...
Linux Distros Unpatched Vulnerability : CVE-2025-38058
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - legitimizemnt: check for MNTSYNCUMOUNT should be under mountlock ... or we risk stealing final mntput from sync umount - raising mntcount after umount2 has...
Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP6 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2019-11135: TSX Asynchronous Abort condition on some CPUs utilizing speculative execution may bsc1139073 CVE-2024-36028: mm/hugetlb: fix DEBUGLOCKSWARNON1 when...
SUSE CVE-2025-38306
In the Linux kernel, the following vulnerability has been resolved: fs/fhandle.c: fix a race in call of haslockedchildren maydecodefh is calling haslockedchildren while holding no locks. That's an oopsable race... The rest of the callers are safe since they are holding namespacesem and are...
DEBIAN-CVE-2025-38306
In the Linux kernel, the following vulnerability has been resolved: fs/fhandle.c: fix a race in call of haslockedchildren maydecodefh is calling haslockedchildren while holding no locks. That's an oopsable race... The rest of the callers are safe since they are holding namespacesem and are...
CVE-2025-38306
CVE-2025-38306 – Linux kernel race in fs/fhandle.c: may_decode_fh() calls has_locked_children() without holding locks, causing an oopsable race. Patch renames has_locked_children() to __has_locked_children(), makes it static, and redirects callers to it; the public wrapper now calls the inner fun...
Important: kernel
Issue Overview: In the Linux kernel, the following vulnerability has been resolved: schhfsc: Fix qlen accounting bug when using peek in hfscenqueue CVE-2025-38000 In the Linux kernel, the following vulnerability has been resolved: netsched: hfsc: Address reentrant enqueue adding class to eltree...
SUSE CVE-2025-38058
In the Linux kernel, the following vulnerability has been resolved: legitimizemnt: check for MNTSYNCUMOUNT should be under mountlock ... or we risk stealing final mntput from sync umount - raising mntcount after umount2 has verified that victim is not busy, but before it has set MNTSYNCUMOUNT; in...
DEBIAN-CVE-2025-38058
In the Linux kernel, the following vulnerability has been resolved: legitimizemnt: check for MNTSYNCUMOUNT should be under mountlock ... or we risk stealing final mntput from sync umount - raising mntcount after umount2 has verified that victim is not busy, but before it has set MNTSYNCUMOUNT; in...
AZL-64013 CVE-2025-38058 affecting package kernel for versions less than 6.6.96.1-1
In the Linux kernel, the following vulnerability has been resolved: legitimizemnt: check for MNTSYNCUMOUNT should be under mountlock ... or we risk stealing final mntput from sync umount - raising mntcount after umount2 has verified that victim is not busy, but before it has set MNTSYNCUMOUNT; in...
UBUNTU-CVE-2025-38058
In the Linux kernel, the following vulnerability has been resolved: legitimizemnt: check for MNTSYNCUMOUNT should be under mountlock ... or we risk stealing final mntput from sync umount - raising mntcount after umount2 has verified that victim is not busy, but before it has set MNTSYNCUMOUNT; in...
CVE-2025-38058
CVE-2025-38058 affects the Linux kernel. The vulnerability exists in __legitimize_mnt(), where a check for MNT_SYNC_UMOUNT must be performed under mount_lock; otherwise, after umount(2) verifies the victim is not busy but before MNT_SYNC_UMOUNT is set, __legitimize_mnt() may not detect safety to ...
CVE-2025-38058 __legitimize_mnt(): check for MNT_SYNC_UMOUNT should be under mount_lock
In the Linux kernel, the following vulnerability has been resolved: legitimizemnt: check for MNTSYNCUMOUNT should be under mountlock ... or we risk stealing final mntput from sync umount - raising mntcount after umount2 has verified that victim is not busy, but before it has set MNTSYNCUMOUNT; in...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from not checking the MNTSYNCUMOUNT flag under mountlock protection...
SUSE CVE-2025-37988
In the Linux kernel, the following vulnerability has been resolved: fix a couple of races in MNTTREEBENEATH handling by domovemount Normally dolockmountpath, is locking a mountpoint pinned by path and at the time when matching unlockmount unlocks that location it is still pinned by the same thing...