EUVD-2026-32781

In the Linux kernel, the following vulnerability has been resolved: schedext: Read scxroot under scxcgroupopsrwsem in cgroup setters scxgroupsetweight,idle,bandwidth cache scxroot before acquiring scxcgroupopsrwsem, so the pointer can be stale by the time the op runs. If the loaded scheduler is...

Astra Linux - уязвимость в linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: btrfs: Zoned – Fix for use-after-free due to race condition with dev replace When loading the information of a zone during the creation of a block group, we may encounter a race condition with the device replace operation. This c...

Astra Linux - уязвимость в linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: f2fs: compress: fixed an issue that covered the reserve,releasecompressblocks function with the cprwsem lock. This fix is necessary to avoid race conditions with the checkpoint mechanism. Otherwise, filesystem metadata, including...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: Bluetooth: hcildisc,serdev: failure in checking percpuinitrwsem. syzbot reports a NULL pointer dereferencing at hciuartttyclose. The rcusyncenter function is called without rcusyncinit, due to hciuartttyopen ignoring the...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: cgroup: Added the missing cpusreadlock function to cgroupattachtaskall. The syzbot tool encounters a warning regarding percpurwsemassertheld&cpuhotpluglock during the call of cpusetattach 1. This issue was missed because...

Astra Linux - уязвимость в linux-5.10, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: ceph: Do not leak snaprwsem when handlecapgrant is called on an IMPORT operation. When handlecapgrant is called on an IMPORT operation, the snaprwsem resource is held, and the function is expected to release it before returning...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005179)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005179 advisory. In the Linux kernel, the following vulnerability has been resolved: iouring/rw: fix missing NOWAIT check for ODIRECT start write When iouring starts a write, it'll...

Azure Linux 3.0 Security Update: kernel (CVE-2024-48875)

"The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-48875 advisory. - In the Linux kernel, the following vulnerability has been resolved: btrfs: don't take devreplace rwsem on...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004090)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004090 advisory. In the Linux kernel 5.3.11, mounting a crafted btrfs image twice can cause an rwsemdownwriteslowpath use-after-free because in rwsemcanspinonowner in...

PT-2026-6167

Name of the Vulnerable Software and Affected Versions Linux Kernel affected versions not specified Description The Linux kernel contains a deadlock issue related to lock ordering within hugetlb file folios during page migration. Specifically, a deadlock can occur when one task holds a folio lock...

Unity Linux 20.1060a Security Update: kernel (UTSA-2025-993151)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993151 advisory. In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcildisc,serdev: check percpuinitrwsem failure syzbot is reporting NULL pointer...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992875)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992875 advisory. In the Linux kernel, the following vulnerability has been resolved: ceph: don't leak snaprwsem in handlecapgrant When handlecapgrant is called on an IMPORT op, then...

EUVD-2023-60429

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

CVE-2023-54212

...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992252)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992252 advisory. In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcildisc,serdev: check percpuinitrwsem failure syzbot is reporting NULL pointer...

PT-2025-54041

In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: Move rwsem lock inside snd ctl elem read to prevent UAF Note: this is a fix that works around the bug equivalently as the two upstream commits: 1fa4445f9adf "ALSA: control - introduce snd ctl notify one helper"...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992465)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992465 advisory. In the Linux kernel, the following vulnerability has been resolved: ceph: don't leak snaprwsem in handlecapgrant When handlecapgrant is called on an IMPORT op, then...

EUVD-2019-8941

Malware in sbrugna...

EUVD-2022-55330

Malicious code in bioql PyPI...

DEBIAN-CVE-2022-50374

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcildisc,serdev: check percpuinitrwsem failure syzbot is reporting NULL pointer dereference at hciuartttyclose 1, for rcusyncenter is called without rcusyncinit due to hciuartttyopen ignoring percpuinitrwsem failure...