Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: f2fs: Split the initial and dynamic conditions for extentcache. Let’s allocate the extentcache tree without dynamic conditions to avoid a panic caused by a missing condition, as shown below. Create a file with a compressed fla...

Astra Linux - уязвимость в linux, linux-5.15, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: md/raid10: Fixed the null-ptr-deref in raid10syncrequest. initresync now initializes the mempool and sets conf-havereplacemnt to true at the beginning of the sync process. closesync frees the mempool when the sync is completed...

PT-2026-37396

In the Linux kernel, the following vulnerability has been resolved: ipvs: fix NULL deref in ip vs add service error path When ip vs bind scheduler succeeds in ip vs add service, the local variable sched is set to NULL. If ip vs start estimator subsequently fails, the out err cleanup calls ip vs...

Linux Distros Unpatched Vulnerability : CVE-2026-31422

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net/sched: clsflow: fix NULL pointer dereference on shared blocks flowchange calls tcfblockq and dereferences q-handle to derive a default baseclass. Shared...

SUSE-SU-2026:1002-1 Security update for the Linux Kernel (Live Patch 27 for SUSE Linux Enterprise 15 SP5)

This update for the SUSE Linux Enterprise Kernel 5.14.21-150500.55.110 fixes various security issues The following security issues were fixed: - CVE-2022-50697: mrp: introduce active flags to prevent UAF when applicant uninit bsc1255595. - CVE-2023-53257: wifi: mac80211: check S1G action frame si...

CVE-2026-23125

CVE-2026-23125 (Linux kernel SCTP) : A null-pointer dereference in the SCTP transmit path could occur when SCTP-AUTH key initialization fails during INIT_ACK processing. The issue arises because SCTP_CMD_ASSOC_SHKEY is executed after PEER_INIT and can leave asoc->shkey NULL if key setup fails,...

Moderate: Red Hat Security Advisory: kernel-rt security update

An update for kernel-rt is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

SUSE CVE-2026-23064

In the Linux kernel, the following vulnerability has been resolved: net/sched: actife: avoid possible NULL deref tcfifeencode must make sure ifeencode does not return NULL. syzbot reported: Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 1 SMP KASAN NOP...

CVE-2025-68335

In the Linux kernel, the following vulnerability has been resolved: comedi: pcl818: fix null-ptr-deref in pcl818aicancel Syzbot identified an issue 1 in pcl818aicancel, which stems from the fact that in case of early device detach via pcl818detach, subdevice dev-readsubdev may not have initialize...

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-991116)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991116 advisory. In the Linux kernel, the following vulnerability has been resolved: media: dvb-usb: az6027: fix null-ptr-deref in az6027i2cxfer Wei Chen reports a kernel bug as blew...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989197)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989197 advisory. In the Linux kernel, the following vulnerability has been resolved: spi: bcm2835: bcm2835spihandleerr: fix NULL pointer deref for non DMA transfers In case a IRQ bas...

SUSE-SU-2025:3716-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2022-49980: USB: gadget: fix use-after-free read in usbudcuevent bsc1245110. - CVE-2022-50233: Bluetooth: eir: Fix using strlen with hdev-devname,shortname...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986729)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986729 advisory. In the Linux kernel, the following vulnerability has been resolved: ata: libata-core: fix NULL pointer deref in atahostallocpinfo In an unlikely and probably wrong?...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986709)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986709 advisory. In the Linux kernel, the following vulnerability has been resolved: pinctrl: renesas: core: Fix possible null-ptr-deref in shpfcmapresources It will cause...

PT-2025-40132

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.0.0-rc7-02243-gb84a13ff4eda Description A crash can occur in the Bluetooth stack when attempting to connect multiple ISO sockets without using DEFER SETUP. This issue is related to a null-ptr-deref in the hci...

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2022-50116: kernel: tty: ngsm: fix deadlock and link starvation in outgoing data path bsc1244824. CVE-2024-53177: smb: prevent use-after-free due to opencachedd...

SUSE-SU-2025:03344-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2022-49980: USB: gadget: fix use-after-free read in usbudcuevent bsc1245110. - CVE-2022-50116: kernel: tty: ngsm: fix deadlock and link starvation in outgoing da...

Security update for the Linux Kernel (Live Patch 69 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-122261 fixes several issues. The following security issues were fixed: CVE-2025-38181: calipso: Fix null-ptr-deref in calipsoreqset,delattr bsc1246001. CVE-2025-38498: dochangetype: refuse to operate on unmounted/not ours mounts bsc1247499. Patch...

CVE-2023-53336

The CVE-2023-53336 vulnerability in the Linux kernel affects the media: ipu-bridge code. It causes a NULL pointer dereference in ipu_bridge_parse_rotation() or ipu_bridge_parse_orientation() when sensor->adev is not yet set, triggered by dev_warn() warnings about unknown values. The root cause...

DEBIAN-CVE-2023-53250

In the Linux kernel, the following vulnerability has been resolved: firmware: dmi-sysfs: Fix null-ptr-deref in dmisysfsregisterhandle KASAN reported a null-ptr-deref error: KASAN: null-ptr-deref in range 0x0000000000000008-0x000000000000000f CPU: 0 PID: 1373 Comm: modprobe Hardware name: QEMU...