Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: - Block: Fixed the issue where queues could freeze, compared to the lock order in sysfs store methods. The queueattrstore function always freezes the device queue before calling the attribute store operation. For attributes th...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: The block: mark GFPNOIO around sysfs-store has been fixed. sysfs-store is called with the queue frozen. Meanwhile, there are several -store callbacks such as updatenrrequests, wbt, scheduler that use GFPKERNEL to allocate memory...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: ublk: Make sure that ubq-canceling is set when the queue is frozen. Now, the ublk driver relies on ubq-canceling to determine whether a request can be dispatched via uringcmd and iouringcmdcompleteintask. Once ubq-canceling is se...

SUSE CVE-2025-40146

In the Linux kernel, the following vulnerability has been resolved: blk-mq: fix potential deadlock while nrrequests grown Allocate and free schedtags while queue is freezed can deadlock1, this is a long term problem, hence allocate memory before freezing queue and free memory after queue is...

Linux Distros Unpatched Vulnerability : CVE-2025-40146

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - blk-mq: fix potential deadlock while nrrequests grown Allocate and free schedtags while queue is freezed can deadlock1, this is a long term problem, hence...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990227)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990227 advisory. In the Linux kernel, the following vulnerability has been resolved: virtio-blk: don't keep queue frozen during system suspend Commit 4ce6e2db00de virtio-blk: Ensure ...

EUVD-2024-53849

Malicious code in bioql PyPI...

EUVD-2025-5993

Malicious code in bioql PyPI...

EUVD-2025-28922

Malicious code in bioql PyPI...

kernel: ublk: make sure ubq->canceling is set when queue is frozen

In the Linux kernel, the following vulnerability has been resolved: ublk: make sure ubq-canceling is set when queue is frozen Now ublk driver depends on ubq-canceling for deciding if the request can be dispatched via uringcmd & iouringcmdcompleteintask. Once ubq-canceling is set, the uringcmd can...

UBUNTU-CVE-2025-39791

In the Linux kernel, the following vulnerability has been resolved: dm: dm-crypt: Do not partially accept write BIOs with zoned targets Read and write operations issued to a dm-crypt target may be split according to the dm-crypt internal limits defined by the maxreadsize and maxwritesize module...

PT-2025-46621

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s blk-mq subsystem related to memory allocation. Specifically, allocating and freeing sched tags while a queue is frozen can lead to a deadlock. The iss...

DEBIAN-CVE-2025-38302

In the Linux kernel, the following vulnerability has been resolved: block: don't use submitbionoacctnocheck in blkzonewplugbiowork Bios queued up in the zone write plug have already gone through all all preparation in the submitbio path, including the freeze protection. Submitting them through...

UBUNTU-CVE-2025-38302

In the Linux kernel, the following vulnerability has been resolved: block: don't use submitbionoacctnocheck in blkzonewplugbiowork Bios queued up in the zone write plug have already gone through all all preparation in the submitbio path, including the freeze protection. Submitting them through...

Amazon Linux 2023 : bpftool, kernel6.12, kernel6.12-modules-extra (ALAS2023-2025-994)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-994 advisory. In the Linux kernel, the following vulnerability has been resolved: btrfs: do proper folio cleanup when cowfilerange failed CVE-2024-57976 In the Linux kernel, the following vulnerability has...

SUSE CVE-2025-22068

In the Linux kernel, the following vulnerability has been resolved: ublk: make sure ubq-canceling is set when queue is frozen Now ublk driver depends on ubq-canceling for deciding if the request can be dispatched via uringcmd & iouringcmdcompleteintask. Once ubq-canceling is set, the uringcmd can...

CVE-2025-22068 ublk: make sure ubq->canceling is set when queue is frozen

In the Linux kernel, the following vulnerability has been resolved: ublk: make sure ubq-canceling is set when queue is frozen Now ublk driver depends on ubq-canceling for deciding if the request can be dispatched via uringcmd & iouringcmdcompleteintask. Once ubq-canceling is set, the uringcmd can...

SUSE CVE-2025-21807

In the Linux kernel, the following vulnerability has been resolved: block: fix queue freeze vs limits lock order in sysfs store methods queueattrstore always freezes a device queue before calling the attribute store operation. For attributes that control queue limits, the store operation will als...

SUSE CVE-2025-21817

In the Linux kernel, the following vulnerability has been resolved: block: mark GFPNOIO around sysfs -store sysfs -store is called with queue freezed, meantime we have several -store callbacksupdatenrrequests, wbt, scheduler to allocate memory with GFPKERNEL which may run into direct reclaim code...

DEBIAN-CVE-2025-21807

In the Linux kernel, the following vulnerability has been resolved: block: fix queue freeze vs limits lock order in sysfs store methods queueattrstore always freezes a device queue before calling the attribute store operation. For attributes that control queue limits, the store operation will als...