Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: virtiopci: Fixed the cleanup of admin vq by using the correct info pointer. The functions vpmodernavqcleanup and vpdelvqs clean up admin vq resources using the virtiopcivqinfo pointer. The info pointer for admin vq is stored i...

CVE-2026-23202

The CVE-2026-23202 issue is in the Linux kernel SPI driver for Tegra210-quad (tegra_qspi_combined_seq_xfer). The root cause is that curr_xfer is read by the IRQ handler without the spinlock, and is cleared without proper synchronization, allowing a race that could yield a NULL pointer dereference...

CVE-2026-23020

In the Linux kernel, the following vulnerability has been resolved: net: 3com: 3c59x: fix possible null dereference in vortexprobe1 pdev can be null and freering: can be called in 1297 with a null pdev...

CVE-2023-54014

CVE-2023-54014 concerns the Linux kernel SCSI qla2xxx path, where fc_bsg_to_rport() could return NULL and be dereferenced. The fixes implement a check for a valid rport before usage, mitigating potential NULL dereference. Connected advisories (SUSE, Astra/Nessus entries) reiterate the kernel-leve...

CVE-2025-39867

CVE-2025-39867 relates to the Linux kernel netfilter nft_set_pipapo: the root cause is a null dereference in the set handling path. The patch fixes the conditional check that guarded the scratch map access (changing from a test of both m and *m->scratch to only the scratch dereference). This i...

CVE-2025-22007 Bluetooth: Fix error code in chan_alloc_skb_cb()

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix error code in chanallocskbcb The chanallocskbcb function is supposed to return error pointers on error. Returning NULL will lead to a NULL dereference...

CVE-2005-3246

Ethereal 0.10.12 and earlier allows remote attackers to cause a denial of service null dereference via unknown vectors in the 1 SCSI, 2 sFlow, or 3 RTnet dissectors...