CVE-2026-46233

In the Linux kernel, the following vulnerability has been resolved: batman-adv: bla: only purge non-released claims When batadvblapurgeclaims goes through the list of claims, it is only traversing the hash list with an rcureadlock. Due to a potential parallel batadvclaimput, it can happen that it...

CVE-2026-46233

The CVE-2026-46233 issue affects the Linux kernel’s batman-adv subsystem, specifically batadv_bla_purge_claims(): a race under RCU while iterating claims can encounter a claim being released, causing backbone_gw to become NULL before delayed kfree. The fix is to purge only claims with a valid ref...

CVE-2026-46233 batman-adv: bla: only purge non-released claims

In the Linux kernel, the following vulnerability has been resolved: batman-adv: bla: only purge non-released claims When batadvblapurgeclaims goes through the list of claims, it is only traversing the hash list with an rcureadlock. Due to a potential parallel batadvclaimput, it can happen that it...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: fbdev/ep93xx-fb: Do not assign to struct fbinfo.dev. Do not assign the Linux device to struct fbinfo.dev. The call to registerframebuffer initializes the field to the fbdev device. Drivers should not override its value. This fix...

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: net: wwan: t7xx: Fixed the FSM command timeout issue When the driver processes the internal state change command, it uses an asynchronous thread to handle the command operation. If the main thread detects that the task has tim...

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: The dvbdev: device driver adopts a mechanism called refcnt to avoid Use-After-Free errors. It is known that the function dvbunregisterdevice is prone to use-after-free issues. In other words, the cleanup performed by...

Astra Linux - уязвимость в linux-5.10, linux-5.15, linux

In the Linux kernel, the following vulnerability has been resolved: nbd: Fix for the race between nbdallocconfig and module removal When the nbd module is being removed, nbdallocconfig may be called concurrently by nbdgenlconnect. Although trymoduleget will return false, nbdallocconfig does not...

Unity Linux 20.1050e / 20.1070e Security Update: kernel (UTSA-2026-011224)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011224 advisory. In the Linux kernel, the following vulnerability has been resolved: fbdev/ep93xx-fb: Do not assign to struct fbinfo.dev Do not assing the Linux device to struct...

ROS-20260407-73-0022

A vulnerability in the netfilter component of the Linux operating system kernel is related to errors in updating the reference counter. Exploitation of the vulnerability allows an attacker to gain access to sensitive data, compromise its integrity, and cause a denial-of-service condition...

ROS-20260324-73-0004

A vulnerability in the perf/core component of the Linux operating system kernel is related to errors in updating the reference counter. Exploitation of the vulnerability allows an attacker to cause a denial of service...

ROS-20260323-73-0022

A vulnerability in the appletalk component of the Linux operating system kernel is related to errors in updating the reference counter. Exploitation of the vulnerability allows an attacker to compromise data integrity and cause a denial of service...

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005747)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005747 advisory. In the Linux kernel, the following vulnerability has been resolved: fbdev/ep93xx-fb: Do not assign to struct fbinfo.dev Do not assing the Linux device to struct...

ROS-20260203-73-0001

A vulnerability in the Linux operating system kernel is related to errors in updating the reference counter. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

MiracleLinux 7 : kernel-3.10.0-1160.102.1.el7 (AXSA:2023-6501:28)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6501:28 advisory. kernel: net/sched: clsu32 component reference counter leak if tcfchangeindev fails CVE-2023-3609 kernel: netfilter: use-after-free in nftables when...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003900)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003900 advisory. A pivotroot race condition in fs/namespace.c in the Linux kernel 4.4.x before 4.4.221, 4.9.x before 4.9.221, 4.14.x before 4.14.178, 4.19.x before 4.19.119, and 5.x...

Siemens Ruggedcom ROX Use After Free (CVE-2021-47358)

In the Linux kernel, the following vulnerability has been resolved: staging: greybus: uart: fix tty use after free User space can hold a tty open indefinitely and tty drivers must not release the underlying structures until the last user is gone. Switch to using the tty-port reference counter to...

SUSE-SU-2026:0012-1 Security update for xen

This update for xen fixes the following issues: Security issues fixed: - CVE-2025-27466: NULL pointer dereference in the Viridian interface when updating the reference TSC area bsc1248807. - CVE-2025-58142: NULL pointer dereference in the Viridian interface due to assumption that the SIM page is...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992936)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992936 advisory. In the Linux kernel, the following vulnerability has been resolved: media: dvbdev: adopts refcnt to avoid UAF dvbunregisterdevice is known that prone to...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992540)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992540 advisory. In the Linux kernel, the following vulnerability has been resolved: media: dvbdev: adopts refcnt to avoid UAF dvbunregisterdevice is known that prone to...

CVE-2023-54035

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: fix underflow in chain reference counter Set element addition error path decrements reference counter on chains twice: once on element release and again via nftdatarelease. Then, d6b478666ffa "netfilter:...