Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: iavf: Fixed an out-of-bounds situation when setting channels during iavfremove. If the channels are set to a value greater than what is actually allocated, it will cause a timeout, and an error will be returned. However, the...

Unity Linux 20.1060a Security Update: kernel (UTSA-2026-014333)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-014333 advisory. In the Linux kernel, the following vulnerability has been resolved: misc: vmwballoon: fix memory leak with using debugfslookup When calling debugfslookup the result...

CVE-2026-41338

OpenClaw before 2026.3.31 contains a time-of-check-time-of-use vulnerability in sandbox file operations that allows attackers to bypass fd-based defenses. Attackers can exploit check-then-act patterns in applypatch, remove, and mkdir operations to manipulate files between validation and execution...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-013317)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013317 advisory. In the Linux kernel, the following vulnerability has been resolved: Revert Bluetooth: btsdio: fix use after free bug in btsdioremove due to unfinished work This...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006780)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006780 advisory. In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: don't fail inserts if duplicate has expired nftables selftests fail:...

Time-of-check Time-of-use (TOCTOU) Race Condition

Overview openclaw is a 🦞 OpenClaw — Personal AI Assistant Affected versions of this package are vulnerable to Time-of-check Time-of-use TOCTOU Race Condition in the applypatch, remove, and mkdir operations within the sandbox workspace process. An attacker can manipulate file system state by...

EUVD-2026-5855

In the Linux kernel, the following vulnerability has been resolved: pmdomain: imx8m-blk-ctrl: fix out-of-range access of bc-domains Fix out-of-range access of bc-domains in imx8mblkctrlremove...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-004877)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004877 advisory. In the Linux kernel, the following vulnerability has been resolved: iio: light: isl29028: Fix the warning in isl29028remove The driver use the non-managed form of th...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the existence of a race condition for open and remove operations that could lead to reuse after release...

SUSE CVE-2025-68213

In the Linux kernel, the following vulnerability has been resolved: idpf: fix possible vportconfig NULL pointer deref in remove Attempting to remove the driver will cause a crash in cases where the vport failed to initialize. Following trace is from an instance where the driver failed during an...

EUVD-2025-203683

In the Linux kernel, the following vulnerability has been resolved: idpf: fix possible vportconfig NULL pointer deref in remove Attempting to remove the driver will cause a crash in cases where the vport failed to initialize. Following trace is from an instance where the driver failed during an...

CVE-2025-68213

In the Linux kernel, the following vulnerability has been resolved: idpf: fix possible vportconfig NULL pointer deref in remove Attempting to remove the driver will cause a crash in cases where the vport failed to initialize. Following trace is from an instance where the driver failed during an...

DataX-Web 访问控制错误漏洞

DataX-Web is a distributed data synchronization tool developed on top of DataX by WeiYe's personal developer. An access control error vulnerability exists in DataX-Web 2.1.2 and earlier versions, which stems from incorrect operation of the function remove/update/pause/start/triggerJob in the...

SUSE CVE-2023-53659

In the Linux kernel, the following vulnerability has been resolved: iavf: Fix out-of-bounds when setting channels on remove If we set channels greater during iavfremove, and waiting reset done would be timeout, then returned with error but changed numactivequeues directly, that will lead to OOB...

CVE-2023-53659

In the Linux kernel, the following vulnerability has been resolved: iavf: Fix out-of-bounds when setting channels on remove If we set channels greater during iavfremove, and waiting reset done would be timeout, then returned with error but changed numactivequeues directly, that will lead to OOB...

CVE-2023-53659

CVE-2023-53659 : Linux kernel iavf driver fix for an out-of-bounds write when setting channels during remove. The issue could cause the number of active queues to exceed allocated tx/rx_rings on iavf_remove(), leading to an OOB condition. Reproduction in the report shows a KASAN slab-out-of-bound...

CVE-2023-53659 iavf: Fix out-of-bounds when setting channels on remove

In the Linux kernel, the following vulnerability has been resolved: iavf: Fix out-of-bounds when setting channels on remove If we set channels greater during iavfremove, and waiting reset done would be timeout, then returned with error but changed numactivequeues directly, that will lead to OOB...

PT-2025-40105

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A resource leak exists in the hpre remove function within the hisilicon/hpre crypto module. Specifically, when the disable operation of qm sriov fails, resources are not properly release...

CVE-2023-53406

In the Linux kernel, the following vulnerability has been resolved: USB: gadget: pxa25xudc: fix memory leak with using debugfslookup When calling debugfslookup the result must have dput called on it, otherwise the memory will leak over time. To make things simpler, just call debugfslookupandremov...

CVE-2023-53413

In the Linux kernel, the following vulnerability has been resolved: USB: isp116x: fix memory leak with using debugfslookup When calling debugfslookup the result must have dput called on it, otherwise the memory will leak over time. To make things simpler, just call debugfslookupandremove instead...