Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989117)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989117 advisory. In the Linux kernel, the following vulnerability has been resolved: xen/netback: avoid entering xenvifrxnextskb with an empty rx queue xenvifrxnextskb is expecting t...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989175)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989175 advisory. In the Linux kernel, the following vulnerability has been resolved: IB/IPoIB: Fix legacy IPoIB due to wrong number of queues The cited commit creates child PKEY...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988928)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988928 advisory. In the Linux kernel, the following vulnerability has been resolved: sfc: fix considering that all channels have TX queues Normally, all channels have RX and TX queue...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989356)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989356 advisory. In the Linux kernel, the following vulnerability has been resolved: nvme: fix a possible use-after-free in controller reset during load Unlike .queuerq, in...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989524)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989524 advisory. In the Linux kernel, the following vulnerability has been resolved: nvme-pci: fix a NULL pointer dereference in nvmeallocadmintags In nvmeallocadmintags, the adminq...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989687)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989687 advisory. In the Linux kernel, the following vulnerability has been resolved: ice: fix vsi-txqmap sizing The approach of having XDP queue per CPU regardless of user's setting...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988711)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988711 advisory. In the Linux kernel, the following vulnerability has been resolved: batman-adv: Avoid WARNON timing related checks The soft/batadv interface for a queued OGM can be...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989434)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989434 advisory. In the Linux kernel, the following vulnerability has been resolved: block: don't delete queue kobject before its children kobjects aren't supposed to be deleted befo...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989555)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989555 advisory. In the Linux kernel, the following vulnerability has been resolved: s390/qeth: fix NULL deref in qethclearworkingpoollist When qethsetonline calls...

kernel: mptcp: do not queue data on closed subflows

In the Linux kernel, the following vulnerability has been resolved: mptcp: do not queue data on closed subflows Dipanjan reported a syzbot splat at close time: WARNING: CPU: 1 PID: 10818 at net/ipv4/afinet.c:153 inetsockdestruct+0x6d0/0x8e0 net/ipv4/afinet.c:153 Modules linked in: uioivshmemOE ui...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a failure to properly initialize a work queue in the hi311x driver, which could lead to null pointer...

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: tls: Always refresh the queue when reading sock. After recent changes in net-next, TCP compacts skb much more aggressively. This uncovered a bug in TLS, where we might attempt to operate on an old skb when checking whether all sk...

Astra Linux - уязвимость в linux-6.12

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix recv-recv race of completed call If a call receives an event such as incoming data, the call gets placed on the socket's queue and a thread in recvmsg can be awakened to go and process it. Once the thread has picked up...

Astra Linux – Vulnerability found in Linux 6.12, Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: RDMA/mlx5: Fixed error handling when the firmware fails and the RQ is destroyed. When the RQ is destroyed, if the firmware command fails—which is the last resource to be destroyed—some SW resources are already cleaned,...

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Add a check for a null pointer when cleaning up the lpfcvport structure. If a call to lpfcsli4readrev from lpfcsli4hbasetup fails, the resulting cleanup routine lpfcsli4vportdeletefcpxriaborted may occur before the...

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: aoe: The cleandevicerqlist function in aoedevdowndev was corrected. The rqlist of an AOE device contains accepted block requests that are waiting to be transmitted to the AOE target. This queue was added as part of the transition...

Astra Linux - уязвимость в linux-6.12

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix warning when reconnecting channel When reconnecting a channel in smb2reconnectserver, a dummy tcon is passed down to smb2reconnect with -queryinterface uninitialized, so we can't call queuedelayedwork on it. Fix...

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: drm/sched: Increasing the job count before swapping the SPSC queue. There is a minor race condition between spscqueuepush and the run-job worker. In this race condition, spscqueuepush may return not-first, while the run-job worke...

Astra Linux – Vulnerability found in Linux 6.12, Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: afunix: Do not leave consecutive consumed OOB skb’s in the recv queue. Jann Horn reported a use-after-free in the unixstreamreadgeneric function. The following sequences reproduce the issue: $ python3 from socket import s1, s2...

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: media: ti: j721e-csi2rx: fix listdel corruption If ticsi2rxstartdma fails in ticsi2rxdmacallback, the buffer is marked done with VB2BUFSTATEERROR but is not removed from the DMA queue. This causes the same buffer to be retried in...