Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: Bluetooth: Fixed a potential use-after-free when using clear keys. Similar to the commit c5d2b6fa26b5 "Bluetooth: Fixed a use-after-free in hciremoveltk/hciremoveirk". We cannot access the variable k after the kfreercu call...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: drm/connector: Only call HDMIaudiohelperpluggedcb if fn is not null. During driver removal, sound/soc/codecs/hdmicodec.c calls HDMIaudiohelperpluggedcb with NULL as the callback function and codecdev. As seen in its hdmiremove...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: bsg: Set bsgqueue to NULL after removal Currently, this does not cause any issues, but I believe it is necessary to set bsgqueue to NULL after removing it to prevent potential use-after-free UAF access...

Astra Linux - уязвимость в linux-6.12

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Kill timer properly at removal The USB-audio MIDI code initializes the timer, but in a rare case, the driver might be freed without the disconnect call. This leaves the timer in an active state while the assigned...

PT-2025-52951

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contained an issue where an unnecessary warning check could lead to a system panic. The problematic check was related to interrupt allocation and freeing, and its remova...

EUVD-2025-203715

In the Linux kernel, the following vulnerability has been resolved: drm/radeon: Remove calls to drmputdev Since the allocation of the drivers main structure was changed to devmdrmdevalloc drmputdev'ing to trigger it to be free'd should be done by devres. However, drmputdev is still in the probe...

EUVD-2025-150366

In the Linux kernel, the following vulnerability has been resolved: media: iris: fix module removal if firmware download failed Fix remove if firmware failed to load: qcom-iris aa00000.video-codec: Direct firmware load for qcom/vpu/vpu33p4.mbn failed with error -2 qcom-iris aa00000.video-codec:...

CVE-2025-40208 media: iris: fix module removal if firmware download failed

In the Linux kernel, the following vulnerability has been resolved: media: iris: fix module removal if firmware download failed Fix remove if firmware failed to load: qcom-iris aa00000.video-codec: Direct firmware load for qcom/vpu/vpu33p4.mbn failed with error -2 qcom-iris aa00000.video-codec:...

CVE-2025-40208 media: iris: fix module removal if firmware download failed

In the Linux kernel, the following vulnerability has been resolved: media: iris: fix module removal if firmware download failed Fix remove if firmware failed to load: qcom-iris aa00000.video-codec: Direct firmware load for qcom/vpu/vpu33p4.mbn failed with error -2 qcom-iris aa00000.video-codec:...

SUSE-SU-2025:20921-1 Recommended update of flake-pilot

This update for flake-pilot fixes the following issues: Update version to 3.1.22. - Fixes to use flakes as normal user Running a flake is a container based instance provisioning and startup. Some part of this process requires root permissions for example mounting the container instance store for...

EUVD-2025-13001

Malicious code in bioql PyPI...

SUSE CVE-2023-53291

In the Linux kernel, the following vulnerability has been resolved: rcu/rcuscale: Stop kfreescalethread threads after unloading rcuscale Running the 'kfreercutest' test case 1 results in a splat 2. The root cause is the kfreescalethread threads continue running after unloading the rcuscale module...

CVE-2022-50317 drm/bridge: megachips: Fix a null pointer dereference bug

In the Linux kernel, the following vulnerability has been resolved: drm/bridge: megachips: Fix a null pointer dereference bug When removing the module we will get the following warning: 31.911505 i2c-core: driver stdp2690-ge-b850v3-fw unregistered 31.912484 general protection fault, probably for...

Linux Distros Unpatched Vulnerability : CVE-2025-22020

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - memstick: rtsxusbms: Fix slab-use-after-free in rtsxusbmsdrvremove This fixes the following crash:...

PT-2025-37238

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contained an issue where a warning was occasionally triggered due to WARN ON ONCE in flush cache vmap. This issue has been resolved by removing WARN ON ONCE from the...

CVE-2022-49995

The connected sources confirm CVE-2022-49995 is a Linux kernel use-after-free in writeback code when removing a disk. Specifically, wb_inode_writeback_end() could schedule work to access a freed bdi_writeback; the fix switches wb->work_lock to an irqsafe lock and checks that bdi_writeback is a...

SUSE CVE-2025-37744

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: fix memory leak in ath12kpciremove Kmemleak reported this error: unreferenced object 0xffff1c165cec3060 size 32: comm "insmod", pid 560, jiffies 4296964570 age 235.596s backtrace: kmemcacheallocnode+0x1f4/0x2c0...

CVE-2024-58250

The passprompt plugin in pppd in ppp before 2.5.2 mishandles privileges...

CVE-2025-21929 HID: intel-ish-hid: Fix use-after-free issue in hid_ishtp_cl_remove()

In the Linux kernel, the following vulnerability has been resolved: HID: intel-ish-hid: Fix use-after-free issue in hidishtpclremove During the rmmod operation for the intelishtphid driver, a use-after-free issue can occur in the hidishtpclremove function. The function hidishtpcldeinit is called...

CVE-2025-21838 usb: gadget: core: flush gadget workqueue after device removal

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: core: flush gadget workqueue after device removal devicedel can lead to new work being scheduled in gadget-work workqueue. This is observed, for example, with the dwc3 driver with the following call stack: devicedel...