Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: raid10: cleanup of memory leaks in raid10makerequest. When raid10readrequest or raid10writerequest registers a new request, and the REQNOWAIT flag is set, the code does not free the allocated memory from the mempool. Unreferenced...

CVE-2023-53832

CVE-2023-53832 affects the Linux kernel md/raid10 subsystem. The issue was a potential null dereference in raid10_sync_request when recovery could be skipped after an array resync. init_resync() initializes mempool and sets have_replacemnt, but if recovery is skipped, close_sync() may not run, le...

SUSE CVE-2023-53380

In the Linux kernel, the following vulnerability has been resolved: md/raid10: fix null-ptr-deref of mreplace in raid10syncrequest There are two check of 'mreplace' in raid10syncrequest. In the first check, 'needreplace' will be set and 'mreplace' will be used later if no-Faulty 'mreplace' exists...

UBUNTU-CVE-2025-38444

In the Linux kernel, the following vulnerability has been resolved: raid10: cleanup memleak at raid10makerequest If raid10readrequest or raid10writerequest registers a new request and the REQNOWAIT flag is set, the code does not free the malloc from the mempool. unreferenced object...