Astra Linux - уязвимость в linux

In the Linux kernel, the following vulnerability has been resolved: perf/core: Fixed the unconditional use of the securitylockeddown function. Currently, the lockdown state is queried unconditionally, even though its result is only used if the PERFSAMPLEREGSINTR bit is set in attr.sampletype. Whi...

SUSE CVE-2023-54173

In the Linux kernel, the following vulnerability has been resolved: bpf: Disable preemption in bpfeventoutput We received report 1 of kernel crash, which is caused by using nesting protection without disabled preemption. The bpfeventoutput can be called by programs executed by bpfprogrunarraycg...

EUVD-2023-60501

In the Linux kernel, the following vulnerability has been resolved: bpf: Disable preemption in bpfperfeventoutput The nesting protection in bpfperfeventoutput relies on disabled preemption, which is guaranteed for kprobes and tracepoints. However bpfperfeventoutput can be also called from uprobes...

CVE-2023-54173

In the Linux kernel, the following vulnerability has been resolved: bpf: Disable preemption in bpfeventoutput We received report 1 of kernel crash, which is caused by using nesting protection without disabled preemption. The bpfeventoutput can be called by programs executed by bpfprogrunarraycg...

UBUNTU-CVE-2023-54173

In the Linux kernel, the following vulnerability has been resolved: bpf: Disable preemption in bpfeventoutput We received report 1 of kernel crash, which is caused by using nesting protection without disabled preemption. The bpfeventoutput can be called by programs executed by bpfprogrunarraycg...

CVE-2023-54173

In the Linux kernel, the following vulnerability has been resolved: bpf: Disable preemption in bpfeventoutput We received report 1 of kernel crash, which is caused by using nesting protection without disabled preemption. The bpfeventoutput can be called by programs executed by bpfprogrunarraycg...

CVE-2023-54303

CVE-2023-54303 : Linux kernel vulnerability in bpf_perf_event_output where preemption is mishandled in uprobes context, risking two tasks sharing a perf_sample_data buffer and potential crash. Affected: kernel code path for BPF perf event output; Root cause: nesting protection relies on disabled ...

CVE-2023-54173

CVE-2023-54173 affects the Linux kernel. A bug in bpf_event_output allowed nesting protection to run with preemption enabled, risking a NULL pointer dereference and kernel crash due to two tasks racing over perf_sample_data. The fix was to disable preemption inside bpf_event_output, preventing co...

CVE-2023-54173 bpf: Disable preemption in bpf_event_output

In the Linux kernel, the following vulnerability has been resolved: bpf: Disable preemption in bpfeventoutput We received report 1 of kernel crash, which is caused by using nesting protection without disabled preemption. The bpfeventoutput can be called by programs executed by bpfprogrunarraycg...

PT-2025-54149

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to preemption handling within the bpf perf event output function. The nesting protection in this function relies on disabled preemption, which i...

PT-2025-54002

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to the bpf event output function. The issue arises from nesting protection being used without preemption being disabled. This can lead to a kern...

CLSA-2025-1757963029 kernel-uek: Fix of 194 CVEs

rds: tcp: block BH in TCP callbacks - kexec: Improve & fix crashexcludememrange to handle overlapping ranges - module: correctly exit modulekallsymsoneachsymbol when fn != 0 - module: potential uninitialized return in modulekallsymsoneachsymbol - module: use RCU to synchronize findmodule -...

OESA-2025-1962 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: perf: Fix sample vs doexit Baisheng Gao reported an ARM64 crash, which Mark decoded as being a synchronous external abort -- most likely due to trying to access...

SUSE CVE-2025-38424

In the Linux kernel, the following vulnerability has been resolved: perf: Fix sample vs doexit Baisheng Gao reported an ARM64 crash, which Mark decoded as being a synchronous external abort -- most likely due to trying to access MMIO in bad ways. The crash further shows perf trying to do a user...

UBUNTU-CVE-2025-38424

In the Linux kernel, the following vulnerability has been resolved: perf: Fix sample vs doexit Baisheng Gao reported an ARM64 crash, which Mark decoded as being a synchronous external abort -- most likely due to trying to access MMIO in bad ways. The crash further shows perf trying to do a user...

CVE-2025-38424

CVE-2025-38424 is a Linux kernel fix. The issue arose when perf sampling could access user-space state while the kernel was tearing down a process, risking a crash on ARM64 during do_exit(). The patch changes the teardown order to stop perf earlier in do_exit() and hardens PERF_SAMPLE_CALLCHAIN a...

kernel: bpf: Disable preemption in bpf_perf_event_output

A flaw was found in the Linux kernel's BPF subsystem. The bpfperfeventoutput function relies on disabled preemption for nesting protection, but when called from uprobes context via bpfprogrunarraysleepable, preemption remains enabled. This allows task preemption during protected sections, leading...

kernel: bpf: Disable preemption in bpf_event_output

A race condition was found in the BPF event output mechanism. When preemption is enabled during bpfeventoutput, two tasks can access the same perfsampledata buffer concurrently, leading to data corruption and kernel crashes...