Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: perf: Fixed list corruption in perfcgroupswitch. There is list corruption in cgrpcpuctxlist. This occurs at the following path: perfcgroupswitch: listforeachentrycgrpcpuctxlist cpuctxschedin ctxschedin ctxpinnedschedin...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990605)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990605 advisory. In the Linux kernel, the following vulnerability has been resolved: perf: Fix list corruption in perfcgroupswitch There's list corruption on cgrpcpuctxlist. This...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987541)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987541 advisory. In the Linux kernel, the following vulnerability has been resolved: perf: Fix list corruption in perfcgroupswitch There's list corruption on cgrpcpuctxlist. This...

Linux Distros Unpatched Vulnerability : CVE-2025-22126

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: md: fix mddev uaf while iterating allmddevs list While iterating allmddevs list from...

Linux Distros Unpatched Vulnerability : CVE-2024-27396

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: gtp: Fix Use-After-Free in gtpdellink Since callrcu, which is called in the hlistforeachentryrcu traversal of gtpdellink, is not part of the RCU read...

SUSE CVE-2025-22126

In the Linux kernel, the following vulnerability has been resolved: md: fix mddev uaf while iterating allmddevs list While iterating allmddevs list from mdnotifyreboot and mdexit, listforeachentrysafe is used, and this can race with deletint the next mddev, causing UAF: t1: spinlock...

AZL-55259 CVE-2024-56720 affecting package kernel for versions less than 6.6.64.2-1

In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Several fixes to bpfmsgpopdata Several fixes to bpfmsgpopdata, 1. In skmsgshiftleft, we should putpage 2. if len == 0, return early is better 3. pop the entire skmsg last == msg-sg.size should be supported 4. Fix fo...

SUSE CVE-2024-50024

In the Linux kernel, the following vulnerability has been resolved: net: Fix an unsafe loop on the list The kernel may crash when deleting a genetlink family if there are still listeners for that family: Oops: Kernel access of bad area, sig: 11 1 ... NIP c000000000c080bc...

AZL-51456 CVE-2024-49936 affecting package kernel for versions less than 5.15.173.1-1

In the Linux kernel, the following vulnerability has been resolved: net/xen-netback: prevent UAF in xenvifflushhash During the listforeachentryrcu iteration call of xenvifflushhash, kfreercu does not exist inside the rcu read critical section, so if kfreercu is called when the rcu grace period en...

UBUNTU-CVE-2024-49936

In the Linux kernel, the following vulnerability has been resolved: net/xen-netback: prevent UAF in xenvifflushhash During the listforeachentryrcu iteration call of xenvifflushhash, kfreercu does not exist inside the rcu read critical section, so if kfreercu is called when the rcu grace period en...

DEBIAN-CVE-2022-48799

In the Linux kernel, the following vulnerability has been resolved: perf: Fix list corruption in perfcgroupswitch There's list corruption on cgrpcpuctxlist. This happens on the following path: perfcgroupswitch: listforeachentrycgrpcpuctxlist cpuctxschedin ctxschedin ctxpinnedschedin mergeschedin...

UBUNTU-CVE-2022-48799

In the Linux kernel, the following vulnerability has been resolved: perf: Fix list corruption in perfcgroupswitch There's list corruption on cgrpcpuctxlist. This happens on the following path: perfcgroupswitch: listforeachentrycgrpcpuctxlist cpuctxschedin ctxschedin ctxpinnedschedin mergeschedin...

SUSE CVE-2024-27395

In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: Fix Use-After-Free in ovsctexit Since kfreercu, which is called in the hlistforeachentryrcu traversal of ovsctlimitexit, is not part of the RCU read critical section, it is possible that the RCU grace period wil...

DEBIAN-CVE-2024-27020

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: Fix potential data-race in nftexprtypeget nftunregisterexpr can concurrent with nftexprtypeget, and there is not any protection when iterate over nftablesexpressions list in nftexprtypeget. Therefore, there i...

kernel: Bluetooth: use RCU for hci_conn_params and iterate safely in hci_sync

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: use RCU for hciconnparams and iterate safely in hcisync hciupdateacceptlistsync iterates over hdev-pendleconns and hdev-pendlereports, and waits for controller events in the loop body, without holding hdev lock...

SUSE CVE-2021-47106

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: fix use-after-free in nftsetcatchalldestroy We need to use listforeachentrysafe iterator because we can not access @catchall after kfreercu call. syzbot reported: BUG: KASAN: use-after-free in...