522 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-46006
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/nouveau: fix u32 overflow in pushbuf reloc bounds check nouveaugempushbufrelocapply validates each relocation with if r-relocbooffset + 4 nvbo-bo.base.size...
PT-2026-43673
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the Linux kernel where the bpf core parse spec function fails to reject negative CO-RE Compile Once - Run Everywhere accessor indices. CO-RE accessor strings use...
CVE-2026-46006
drm/nouveau: fix u32 overflow in pushbuf reloc bounds check...
Linux kernel 安全漏洞
The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the pushbuf relocation boundary check in the nouveau driver. This vulnerability results in an...
Linux kernel 安全漏洞
The Linux kernel is the core used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel. This vulnerability stems from the use of sscanf to parse the CO-RE accessor index in bpfcoreparsespec. When negative value...
PT-2026-43873
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A 32-bit integer overflow exists in the nouveau gem pushbuf reloc apply function within the drm/nouveau component. The issue occurs during the validation of relocations where the additio...
Linux Distros Unpatched Vulnerability : CVE-2026-45839
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bpf: reject negative CO-RE accessor indices in bpfcoreparsespec CO-RE accessor strings are colon- separated indices that describe a path from a root BTF type to...
Astra Linux - уязвимость в binutils
A vulnerability was identified in GNU Binutils 2.45. The affected component is the elfx8664relocatesection function in the file elf64-x86-64.c of the Linker component. This vulnerability causes a heap-based buffer overflow. The attack can only be executed locally. The exploit has been publicly...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: IB/hfi1: Fixed the leak of rcvhdrtaildummykvaddr. This buffer is currently allocated in hfi1init. c if reinit ret = initafterresetdd; else ret = loadtimeinitdd; if ret goto done; / Allocate dummy tail memory for all receive...
Astra Linux - уязвимость в linux-5.10, linux-6.1
In the Linux kernel, the following vulnerabilities have been resolved: btrfs: The page extent mapping was set after the readfolio operation in relocateonepage. One of the CI runs triggered the following panic: Assertion failed: PagePrivatepage && page-private, in fs/btrfs/subpage.c:229 ----------...
Astra Linux - уязвимость в linux-5.15, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: btrfs: Rejects invalid reloc tree root keys with stack dump. BUG Syzbot reported a crash that an ASSERT was triggered inside preparetomerge. This ASSERT ensures that the reloc tree is properly pointed back by its subvolume tree...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: RISCV: Module: Fixed out-of-bounds relocation access. The current code allows relj to access an element that is beyond the end of the relocation section. This issue has been simplified by using numrelocations, which is equivalent...
Astra Linux - уязвимость в linux-5.10, linux-5.15, linux-6.1, linux
In the Linux kernel, the following vulnerabilities have been resolved: btrfs: fixed a NULL pointer dereference when attempting to start a new transaction. BUG Syzbot reported a NULL pointer dereference, accompanied by a crash: FAULTINJECTION: Forcing a failure. starttransaction+0x830/0x1670...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: cfg80211: Fixing management registration locking issues The issue with management registration locking was addressed. The list was locked for each wdev, but the cfg80211mgmtregistrationsupdate function iterated over it without...
Astra Linux - уязвимость в linux-6.1
In the Linux kernel, the following vulnerability has been resolved: KEYS: Prevent NULL pointer dereference in findasymmetrickey. In findasymmetrickey, if all NULL values are passed as arguments to id0,1,2, the kernel will first emit a WARN message, but then there will be an oops because id2 will...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerabilities have been resolved: btrfs: Zoned: Skipping splitting and logical rewriting during pre-alloc write operations. During relocation, there is a possibility that at the time of btrfsrelocclonecsums, there may be no checksum for the corresponding regio...
Astra Linux - уязвимость в linux, linux-5.10
In the Linux kernel, the following vulnerability has been resolved: btrfs: The reloc control parameter is not set if the transaction commit fails in preparetorelocate. In btrfsrelocateblockgroup, the rc parameter is allocated. Then, btrfsrelocateblockgroup calls relocateblockgroup, which calls...
Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: drm/radeon: A problem with uninitialized size values was fixed in radeonvcecsparse. In the unlikely event that the command stream passed from user space via the ioctl call to radeonvcecsParse is somehow maliciously crafted, and t...
Astra Linux - уязвимость в linux, linux-5.10
A vulnerability related to deallocation was discovered in the preparetorelocate function in fs/btrfs/relocation.c within btrfs in the Linux Kernel. This potential flaw can be triggered by calling btrfsioctlbalance before calling btrfsioctldefrag...
Astra Linux - уязвимость в linux-6.1
In the Linux kernel, the following vulnerability has been resolved: BPF: Properly handles malformed BPFCORETYPEIDLOCAL relocation records. In the case of malformed relocation records of the BPFCORETYPEIDLOCAL type that reference a non-existent BTF type, the function bpfcorecalcreloinsn may cause ...