527 matches found
OSEC-2026-09 Albatross-console memory exhaustion
Albatross-console doesn't properly terminate when looping over the ringbuffer. This leads to denial of service and memory exhaustion. Scenario A user that has access to albatross-console either via the unix domain socket requires root:albatross by default or via albatross-tls-endpoint requires a...
PT-2026-44233
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A NULL pointer dereference can occur in the stmmac driver when RX memory is exhausted. The driver uses a shared ring array of DMA descriptors to coordinate between the CPU and MAC. The...
Astra Linux - уязвимость в linux-5.10, linux
In the Linux kernel, the following vulnerability has been resolved: Tracing: Free buffers when a used dynamic event is removed After 65536 dynamic events have been added and removed, the “type” field of the event uses the first available type number which is not currently used by other events. A...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: Ring-buffer: Validates the persistent meta-data subbuf array The meta-data for a mapped ring buffer contains an array of indexes to all subbuffers. The first entry represents the “reader page,” and the remaining entries specify t...
Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15
In the Linux kernel, the following vulnerability has been resolved: Ring Buffer: Do not swap the cpubuffer during the resize process When the ringbufferswapcpu function is called during the resize process, the cpubuffer is swapped in the middle, resulting in an incorrect state. Continuing to run ...
Astra Linux - уязвимость в linux-5.10, linux-5.15, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: BPF: Fixed an issue where reservations were advanced beyond their limit in the ringbuf structure. The BPF ring buffer is internally implemented as a circular buffer of a power-of-2 size. It contains two logical counters that are...
Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15
In the Linux kernel, the following vulnerability has been resolved: uiohvgeneric: Let userspace handle the interrupt mask. The logic for setting the interrupt mask by default in uiohvgeneric driver has been removed. The interrupt mask value should be completely controlled by the user space. If th...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerabilities have been resolved: perf/core: Fixed the refcount bug and potential UAF in perfmmap. Syzkaller reported a refcountt: addition on 0; use-after-free warning in perfmmap. The issue is caused by a race condition between a failing mmap setup and a...
Astra Linux - уязвимость в linux
In the Linux kernel, the following vulnerability has been resolved: tracing: Restructure traceclockglobal to never block. It was reported that a fix to the ring buffer recursion detection would cause a hung machine when performing suspend/resume testing. The following backtrace was extracted from...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: Ring-buffer: Fixed the possibility of dereferencing an uninitialized pointer. There is a pointer called headpage in the function rbmetavalidateevents. This pointer is not initialized at the beginning of the function. This pointer...
Astra Linux - уязвимость в linux-5.10, linux-5.15, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: r8169: Fixed potential ring buffer corruption due to fragmented Tx packets. An issue was identified on the RTL8125b when transmitting small, fragmented packets. Invalid entries were inserted into the transmit ring buffer, resulti...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Do not issue a warning in ringbuffermapgetreader when the reader catches up. The function ringbuffermapgetreader is more stringent than other functions that retrieve readers. Except for certain situations,...
Astra Linux - уязвимость в linux-6.1, linux-5.15, linux
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Reset the IH OVERFLOWCLEAR bit. This also allows us to detect subsequent IH ring buffer overflows...
Astra Linux - уязвимость в linux, linux-5.15, linux-5.10
In the Linux kernel, the following vulnerability has been resolved: Ring-Buffer: Sync-IRQ works before the buffer is destroyed If something was written to the buffer just before its destruction, it may be possible—although not in a real system—to destroy the ringbuffer before the IRQ-related...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: Tracing: Do not allow mmap of persistent ring buffers. When attempting to mmap a trace instance buffer that is attached to reservemem, it would cause a crash: BUG: Unable to handle a page fault for address: ffffe97bd00025c8 - PF:...
Astra Linux - уязвимость в linux-5.10, linux-5.15
In the Linux kernel, the following vulnerability has been resolved: Ring-buffer: Handled race conditions between rbmovetail and rbcheckpages. It appears there is a data race between writing to the ringbuffer and performing integrity checks. Specifically, the RBFLAG of headpage is being updated,...
Astra Linux - уязвимость в linux-5.10, linux
In the Linux kernel, the following vulnerability has been resolved: perf/core: Fixed a data race between perfeventsetoutput and perfmmapclose. Yang Jihing reported a race between perfeventsetoutput and perfmmapclose: CPU1 CPU2 perfmmapclosee2 if atomicdecandtest&e2-rb-mmapcount // 1 - 0 detachres...
Astra Linux - уязвимость в linux-5.10, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: bpf: Sync pending IRQ work before freeing the ring buffer A race condition exists where irqwork can be queued in bpfringbufcommit, but the ring buffer is freed before the work executes. In the syzbot reproducer, a BPF program...
Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1
In the Linux kernel, the following vulnerabilities have been resolved: Ring-Buffer: Fixed a deadloop issue when reading tracepipe. A soft lockup occurs when reading the file ‘tracepipe’: - Watchdog: BUG: Soft lockup – CPU6 stuck for 22 seconds! cat:4488 - ... - RIP: 0010:...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: Ring-Buffer: Do not trigger WARNON due to a commitoverrun. When reading a memory-mapped buffer, the reader page is simply swapped out with the last page written to the write buffer. If the reader page is the same as the commit...