Lucene search
K

147 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: atmel: The issue with reference counting has been fixed in atmelnandcontrollerinit. The reference counting issue occurs in several error handling paths involving an object with a refcount, namely “nc-dmac”. In these...

5.5CVSS6.1AI score0.00247EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: spi: spi-qpic-snand: reallocation of BAM transactions Using the mtdnandbiterrs module to test the driver occasionally results in unexpected behaviors, as shown below. 1. The swiotlb mapping fails with the following message:...

5.5CVSS5.8AI score0.00129EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: fslupm: A bug in the funexecop function was fixed; a “off-by-one” test was corrected. The “op-cs” values are copied into “fun-mchipnumber”, which is used to access the “mchipoffsets” and “rnbgpio” arrays. These arra...

5.7AI score0.00175EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: cadence: A possible null-ptr-deref issue has been fixed in cadencenanddtprobe. This issue could lead to a null-ptr-deref when using ‘res’. If platformgetresource returns NULL, moving using ‘res’ after...

5.5CVSS6.1AI score0.00246EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/05/06 1:42 a.m.17 views

SUSE CVE-2026-31783

In the Linux kernel, the following vulnerability has been resolved: spi: amlogic: spifc-a4: unregister ECC engine on probe failure and remove callback amlsfcprobe registers the on-host NAND ECC engine, but teardown was missing from both probe unwind and remove-time cleanup. Add a devm cleanup...

5.8AI score0.00121EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/05/01 11:53 p.m.7 views

CVE-2026-31783

A flaw was found in the Linux kernel's spi: amlogic: spifc-a4 module. The on-host NAND Error-Correcting Code ECC engine was not properly unregistered when the probe failed or during device removal. This missing cleanup could lead to resource leaks, potentially causing system instability or a deni...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/05 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2026-23434

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mtd: rawnand: serialize lock/unlock against other NAND operations nandlock and nandunlock call into chip-ops.lockarea/unlockarea without holding the NAND device...

7.1CVSS5.8AI score0.00126EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/04/03 11:27 p.m.5 views

SUSE CVE-2026-23434

In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: serialize lock/unlock against other NAND operations nandlock and nandunlock call into chip-ops.lockarea/unlockarea without holding the NAND device lock. On controllers that implement SETFEATURES via multiple low-lev...

6.1CVSS5.7AI score0.00126EPSS
Exploits0References16
RedhatCVE
RedhatCVE
added 2026/04/03 7:17 p.m.5 views

CVE-2026-23434

A flaw was found in the mtd: rawnand subsystem of the Linux kernel. This vulnerability occurs because the nandlock and nandunlock functions do not properly coordinate with other NAND operations. This can lead to a race condition where concurrent Universal Block Image UBI or UBIFS background...

7.1CVSS5.8AI score0.00126EPSS
Exploits0References4
EUVD
EUVD
added 2026/04/03 6:31 p.m.5 views

EUVD-2026-18673

In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: serialize lock/unlock against other NAND operations nandlock and nandunlock call into chip-ops.lockarea/unlockarea without holding the NAND device lock. On controllers that implement SETFEATURES via multiple low-lev...

5.8AI score0.00126EPSS
Exploits0References7
NVD
NVD
added 2026/04/03 4:16 p.m.4 views

CVE-2026-23434

In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: serialize lock/unlock against other NAND operations nandlock and nandunlock call into chip-ops.lockarea/unlockarea without holding the NAND device lock. On controllers that implement SETFEATURES via multiple low-lev...

7.1CVSS0.00126EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2026/04/03 4:16 p.m.2 views

CVE-2026-23434

In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: serialize lock/unlock against other NAND operations nandlock and nandunlock call into chip-ops.lockarea/unlockarea without holding the NAND device lock. On controllers that implement SETFEATURES via multiple low-lev...

7.1CVSS5.8AI score0.00126EPSS
Exploits0References8
OSV
OSV
added 2026/04/03 4:16 p.m.6 views

UBUNTU-CVE-2026-23434

In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: serialize lock/unlock against other NAND operations nandlock and nandunlock call into chip-ops.lockarea/unlockarea without holding the NAND device lock. On controllers that implement SETFEATURES via multiple low-lev...

7.1CVSS5.7AI score0.00126EPSS
Exploits0References9
ATTACKERKB
ATTACKERKB
added 2026/04/03 3:15 p.m.4 views

CVE-2026-23434

In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: serialize lock/unlock against other NAND operations nandlock and nandunlock call into chip-ops.lockarea/unlockarea without holding the NAND device lock. On controllers that implement SETFEATURES via multiple low-lev...

5.7AI score0.00126EPSS
Exploits0References9Affected Software1
Cvelist
Cvelist
added 2026/04/03 3:15 p.m.22 views

CVE-2026-23434 mtd: rawnand: serialize lock/unlock against other NAND operations

In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: serialize lock/unlock against other NAND operations nandlock and nandunlock call into chip-ops.lockarea/unlockarea without holding the NAND device lock. On controllers that implement SETFEATURES via multiple low-lev...

7.1CVSS0.00126EPSS
Exploits0References8
CVE
CVE
added 2026/04/03 3:15 p.m.11 views

CVE-2026-23434

CVE-2026-23434 affects the Linux kernel MTD NAND driver (mtd: rawnand) where nand_lock()/nand_unlock() call into chip->ops.lock_area/unlock_area without holding the NAND device lock. The fix introduces serialisation by wrapping those lock/unlock calls with nand_get_device()/nand_release_device...

7.1CVSS5.8AI score0.00126EPSS
Exploits0References8Affected Software1
CNNVD
CNNVD
added 2026/04/03 12:0 a.m.8 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the lack of holding the device lock during nandlock and nandunlock operations, potentially leadin...

7.1CVSS5.8AI score0.00126EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/04/03 12:0 a.m.7 views

PT-2026-30129

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contained a flaw where nand lock and nand unlock functions did not hold the NAND device lock when calling chip-ops.lock area/unlock area. This could lead to race...

7.1CVSS5.4AI score0.00126EPSS
Exploits0References470
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.5 views

Azure Linux 3.0 Security Update: kernel (CVE-2025-38277)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38277 advisory. - In the Linux kernel, the following vulnerability has been resolved: mtd: nand: ecc-mxic: Fix use of...

5.5CVSS5.3AI score0.00156EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/12/31 12:0 a.m.1 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992968)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992968 advisory. In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: brcmnand: fix PM resume warning Fixed warning on PM resume as shown below caused d...

7.8CVSS6.1AI score0.00265EPSS
Exploits0References4
Rows per page
Query Builder