Astra Linux - уязвимость в linux

A issue was discovered in the Linux kernel before version 5.8. The lib/nlattr.c file allows attackers to cause a denial of service unbounded recursion through a nested Netlink policy with a back reference...

Astra Linux - уязвимость в linux-5.10, linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: netlink: added nla be16/32 types to the minlen array. BUGs: KMSAN: uninit-value in nlavalidaterangeunsigned, lib/nlattr.c:222 inline. BUGs: KMSAN: uninit-value in nlavalidateintrange, lib/nlattr.c:336 inline. BUGs: KMSAN:...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006588)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006588 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: qla4xxx: Add length check when parsing nlattrs There are three places that qla4xxx parses...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006718)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006718 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: qla4xxx: Add length check when parsing nlattrs There are three places that qla4xxx parses...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000553)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000553 advisory. The 1 BPFSANCNLATTR and 2 BPFSANCNLATTRNEST extension implementations in the skrunfilter function in net/core/filter.c in the Linux kernel through 3.14.3 do not chec...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002105)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002105 advisory. The BPFSANCNLATTRNEST extension implementation in the skrunfilter function in net/core/filter.c in the Linux kernel through 3.14.3 uses the reverse order in a certai...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001802)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001802 advisory. The 1 BPFSANCNLATTR and 2 BPFSANCNLATTRNEST extension implementations in the skrunfilter function in net/core/filter.c in the Linux kernel through 3.14.3 do not chec...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002124)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002124 advisory. The 1 BPFSANCNLATTR and 2 BPFSANCNLATTRNEST extension implementations in the skrunfilter function in net/core/filter.c in the Linux kernel through 3.14.3 do not chec...

CVE-2025-71096

In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Check for the presence of LSNLATYPEDGID correctly The netlink response for RDMANLLSOPIPRESOLVE should always have a LSNLATYPEDGID attribute, it is invalid if it does not. Use the nl parsing logic properly and call...

SUSE CVE-2023-54031

In the Linux kernel, the following vulnerability has been resolved: vdpa: Add queue index attr to vdpanlpolicy for nlattr length check The vdpanlpolicy structure is used to validate the nlattr when parsing the incoming nlmsg. It will ensure the attribute being described produces a valid nlattr...

CVE-2023-54031 vdpa: Add queue index attr to vdpa_nl_policy for nlattr length check

In the Linux kernel, the following vulnerability has been resolved: vdpa: Add queue index attr to vdpanlpolicy for nlattr length check The vdpanlpolicy structure is used to validate the nlattr when parsing the incoming nlmsg. It will ensure the attribute being described produces a valid nlattr...

CVE-2023-54031

The connected Astra Linux advisories describe the CVE-2023-54031 issue in the Linux kernel: a missing nla_policy for the vdpa_nl_policy structure’s queue index attribute can allow parsing of nlattrs to produce an invalid pointer and potentially lead to an out-of-bounds read, similar to CVE-2023-3...

Linux Distros Unpatched Vulnerability : CVE-2023-53652

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: vdpa: Add features attr to vdpanlpolicy for nlattr length check The vdpanlpolicy structure i...

Linux Distros Unpatched Vulnerability : CVE-2023-53543

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: vdpa: Add max vqp attr to vdpanlpolicy for nlattr length check The vdpanlpolicy structure is...

CVE-2023-53652

In the Linux kernel, the following vulnerability has been resolved: vdpa: Add features attr to vdpanlpolicy for nlattr length check The vdpanlpolicy structure is used to validate the nlattr when parsing the incoming nlmsg. It will ensure the attribute being described produces a valid nlattr point...

CVE-2023-53652

CVE-2023-53652 is tied to the Linux kernel vulnerability where the vdpa_nl_policy lacked a proper nla_policy validation for the vdpa features attribute, creating a risk of parsing an invalid nlattr and potential OOB reads as described in related CVEs (e.g., CVE-2023-3773). The connected documents...

CVE-2023-53652

In the Linux kernel, the following vulnerability has been resolved: vdpa: Add features attr to vdpanlpolicy for nlattr length check The vdpanlpolicy structure is used to validate the nlattr when parsing the incoming nlmsg. It will ensure the attribute being described produces a valid nlattr point...

AZL-78264 CVE-2023-53543 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: vdpa: Add max vqp attr to vdpanlpolicy for nlattr length check The vdpanlpolicy structure is used to validate the nlattr when parsing the incoming nlmsg. It will ensure the attribute being described produces a valid nlattr pointe...

UBUNTU-CVE-2023-53543

In the Linux kernel, the following vulnerability has been resolved: vdpa: Add max vqp attr to vdpanlpolicy for nlattr length check The vdpanlpolicy structure is used to validate the nlattr when parsing the incoming nlmsg. It will ensure the attribute being described produces a valid nlattr pointe...

CVE-2023-53543 vdpa: Add max vqp attr to vdpa_nl_policy for nlattr length check

In the Linux kernel, the following vulnerability has been resolved: vdpa: Add max vqp attr to vdpanlpolicy for nlattr length check The vdpanlpolicy structure is used to validate the nlattr when parsing the incoming nlmsg. It will ensure the attribute being described produces a valid nlattr pointe...