Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: enetc: Fixed an illegal access when reading the affinityhint parameter. The irqsetaffinityhit function stores a reference to the cpumaskt parameter in the irq descriptor. This reference can be accessed later from...

EUVD-2023-60513

In the Linux kernel, the following vulnerability has been resolved: vduse: fix NULL pointer dereference vdusevdpasetvqaffinity callback can be called with NULL value as cpumask when deleting the vduse device. This patch resets virtqueue's IRQ affinity mask value to set all CPUs instead of...

CVE-2022-50639

CVE-2022-50639 describes a Linux kernel issue where, during io-wq worker creation, a CPU mask allocation failure could leak memory from the io_wqe structure if not yet added to the wqes array. The available connected sources (Astra Linux, EUVD, OSV, NVD/NIST, etc.) report that this vulnerability ...

CVE-2022-50639 io-wq: Fix memory leak in worker creation

In the Linux kernel, the following vulnerability has been resolved: io-wq: Fix memory leak in worker creation If the CPU mask allocation for a node fails, then the memory allocated for the 'iowqe' struct of the current node doesn't get freed on the error handling path, since it has not yet been...

CVE-2025-58147

This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Some Viridian hypercalls can specify a mask of vCPU IDs as an input, in one of three formats. Xen has boundary checking bugs with all three formats, which can cause...

CVE-2025-39895

CVE-2025-39895: Linux kernel sched_numa_find_nth_cpu() could dereference a null pointer when the CPU mask used by sched_domains_numa_masks does not intersect with the cpus offline. The fix makes the function bail out when bsearch returns NULL instead of dereferencing, preventing a kernel Oops. Af...

PT-2026-2512

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the scheduler/deadline component. A correction ensures that the free cpus bit is only set for online runqueues. A previous commit introduced...

CVE-2025-37830

In the Linux kernel, the following vulnerability has been resolved: cpufreq: scmi: Fix null-ptr-deref in scmicpufreqgetrate cpufreqcpugetraw can return NULL when the target CPU is not present in the policy-cpus mask. scmicpufreqgetrate does not check for this case, which results in a NULL pointer...

SUSE CVE-2022-49540

In the Linux kernel, the following vulnerability has been resolved: rcu-tasks: Fix race in schedule and flush work While booting secondary CPUs, cpusreadlock/unlock is not keeping online cpumask stable. The transient online mask results in below calltrace. 0.324121 CPU1: Booted secondary processo...

kernel: mm: vmalloc: check if a hash-index is in cpu_possible_mask

A vulnerability was found in the Linux kernel that involves improper handling of per-CPU data in systems where cpupossiblemask has gaps between CPUs. This can lead to an index which accesses non-existent or unset CPU areas and potentially causes kernel crashes...

UBUNTU-CVE-2024-41032

In the Linux kernel, the following vulnerability has been resolved: mm: vmalloc: check if a hash-index is in cpupossiblemask The problem is that there are systems where cpupossiblemask has gaps between set CPUs, for example SPARC. In this scenario addrtovbxa hash function can return an index whic...

PT-2024-9025 · Linux +4 · Linux Kernel +4

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The vulnerability is related to the workqueue component in the Linux kernel. It causes a crash when calling arch vcpu is preempted for an offline CPU. The issue arises due to the...

PT-2024-14768

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue occurs when a system has isolated CPUs via the "isolcpus=" command line parameter, and an attempt is made to offline the last housekeeping CPU. This results in a WARN ON when...