Astra Linux - уязвимость в linux-5.10, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: PCI: s390: Fixed a use-after-free of PCI resources when per-function hot-plugging occurs. On the s390 architecture, PCI functions may be hot-plugged individually, even when they belong to a multi-functional device. Specifically, ...

AMD多款产品 安全漏洞

The AMD Instinct MI210, among others, are GPU acceleration cards produced by American semiconductor company AMD. Several AMD products have security vulnerabilities. These vulnerabilities stem from improper cleanup of shared register resources, which may allow attackers with administrator privileg...

CVE-2026-43459 ASoC: soc-core: flush delayed work before removing DAIs and widgets

In the Linux kernel, the following vulnerability has been resolved: ASoC: soc-core: flush delayed work before removing DAIs and widgets When a sound card is unbound while a PCM stream is open, a use-after-free can occur in sndsocdapmstreamevent, called from the closedelayedwork workqueue handler...

PT-2026-39120

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free issue exists in the ALSA System on Chip ASoC core. When a sound card is unbound while a PCM stream is open, the close delayed work workqueue handler calls snd soc dapm...

SUSE SLES15 Security Update : kernel (SUSE-SU-2025:3725-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:3725-1 advisory. The SUSE Linux Enterprise 15 SP7 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: -...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a failure to clean up DMA resources in the wrong path, which could lead to a permanent memory leak...

CVE-2025-38624

A flaw was found in the pnv-php module in the Linux kernel. When the root of a nested PCIe bridge configuration is unplugged, the driver fails to properly clean up and deallocate the IRQ resources for the child bridges' hotplug event notifications, resulting in a kernel panic and denial of servic...

CVE-2025-38624 PCI: pnv_php: Clean up allocated IRQs on unplug

In the Linux kernel, the following vulnerability has been resolved: PCI: pnvphp: Clean up allocated IRQs on unplug When the root of a nested PCIe bridge configuration is unplugged, the pnvphp driver leaked the allocated IRQ resources for the child bridges' hotplug event notifications, resulting i...

The vulnerability of the CharxControllerAgent service in the microprogramming software for modular controllers for AC charging stations and wall-mounted charging devices from Phoenix Contact, CHARX SEC-3100, allows a intruder to execute arbitrary code.

The vulnerability of the CharxControllerAgent service in the microprogramming software for modular control devices for AC charging stations and wall-mounted charging devices from Phoenix Contact, the CHARX SEC-3100, is related to incomplete cleaning of temporary or auxiliary resources. Exploiting...

DEBIAN-CVE-2024-46842

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Handle mailbox timeouts in lpfcgetsfpinfo The MBXTIMEOUT return code is not handled in lpfcgetsfpinfo and the routine unconditionally frees submitted mailbox commands regardless of return status. The issue is that for...

The vulnerability of AMD’s microprogrammed security processor BIOS systems, related to improper cleaning or release of resources, allows a perpetrator to trigger a service failure.

The vulnerability of AMD’s microprogrammed security processor BIOS systems is related to improper cleaning or release of resources. Exploiting this vulnerability can allow a malicious actor to cause service failures...