Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: idpf: fixed the issue where the NULL pointer dereferencing occurred during reboot. When SRIOV is enabled, idpf calls idpfremove twice. First, via idpfshutdown, and then again when idpfremove calls sriovdisable. This is because...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: igc: Fixed a page fault in handling XDP TX timestamps. If an XDP application that requested TX timestamping shuts down while the link of the interface in use is still active, the following kernel errors are reported: 883.80361...

UBUNTU-CVE-2026-45861

In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix slab-use-after-free in qdput Commit a475c5dd16e5 "gfs2: Free quota data objects synchronously" started freeing quota data objects during filesystem shutdown instead of putting them back onto the LRU list, but it failed ...

Linux Distros Unpatched Vulnerability : CVE-2026-23445

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - igc: fix page fault in XDP TX timestamps handling If an XDP application that requested TX timestamping is shutting down while the link of the interface in use i...

SUSE CVE-2026-23445

In the Linux kernel, the following vulnerability has been resolved: igc: fix page fault in XDP TX timestamps handling If an XDP application that requested TX timestamping is shutting down while the link of the interface in use is still up the following kernel splat is reported: 883.803618 T1554...

UBUNTU-CVE-2026-23445

In the Linux kernel, the following vulnerability has been resolved: igc: fix page fault in XDP TX timestamps handling If an XDP application that requested TX timestamping is shutting down while the link of the interface in use is still up the following kernel splat is reported: 883.803618 T1554...

CVE-2026-23445

Summary of CVE-2026-23445 (Linux kernel igc driver) Affected component: igc network driver in the Linux kernel, specifically the XDP TX timestamping path. Root cause: during shutdown of the TX ring, the code leaves behind stale xsk_meta pointers, causing the IRQ handler to touch invalid pointers ...

CVE-2026-23445

In the Linux kernel, the following vulnerability has been resolved: igc: fix page fault in XDP TX timestamps handling If an XDP application that requested TX timestamping is shutting down while the link of the interface in use is still up the following kernel splat is reported: 883.803618 T1554...

SUSE CVE-2025-71141

In the Linux kernel, the following vulnerability has been resolved: drm/tilcdc: Fix removal actions in case of failed probe The drmkmshelperpollfini and drmatomichelpershutdown helpers should only be called when the device has been successfully registered. Currently, these functions are called...

CVE-2025-40018 ipvs: Defer ip_vs_ftp unregister during netns cleanup

In the Linux kernel, the following vulnerability has been resolved: ipvs: Defer ipvsftp unregister during netns cleanup On the netns cleanup path, ipvsftpexit may unregister ipvsftp before connections with valid cp-app pointers are flushed, leading to a use-after-free. Fix this by introducing a...

PT-2025-38020

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A flaw exists in the Linux kernel’s CIFS implementation within the cifs create function. If CIFS shuts down, the transaction ID xid is not freed before returning, leading to an xid lea...

SUSE CVE-2025-38109

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix ECVF vports unload on shutdown flow Fix shutdown flow UAF when a virtual function is created on the embedded chip ECVF of a BlueField device. In such case the vport acl ingress table is not properly destroyed. ECVF...

kernel: Bluetooth: hci_conn: Use disable_delayed_work_sync

A flaw was found in the Bluetooth subsystem of the Linux kernel, in the handling of delayed work within the hciconn Host Controller Interface connection structure. The kernel used canceldelayedworksync when shutting down a connection, which cancels ongoing work but allows rescheduling. This could...

DEBIAN-CVE-2025-22065

In the Linux kernel, the following vulnerability has been resolved: idpf: fix adapter NULL pointer dereference on reboot With SRIOV enabled, idpf ends up calling into idpfremove twice. First via idpfshutdown and then again when idpfremove calls into sriovdisable, because the VF devices use the id...

UBUNTU-CVE-2025-22065

In the Linux kernel, the following vulnerability has been resolved: idpf: fix adapter NULL pointer dereference on reboot With SRIOV enabled, idpf ends up calling into idpfremove twice. First via idpfshutdown and then again when idpfremove calls into sriovdisable, because the VF devices use the id...

CVE-2025-22065 idpf: fix adapter NULL pointer dereference on reboot

In the Linux kernel, the following vulnerability has been resolved: idpf: fix adapter NULL pointer dereference on reboot With SRIOV enabled, idpf ends up calling into idpfremove twice. First via idpfshutdown and then again when idpfremove calls into sriovdisable, because the VF devices use the id...

UBUNTU-CVE-2025-21953

In the Linux kernel, the following vulnerability has been resolved: net: mana: cleanup mana struct after debugfsremove When on a MANA VM hibernation is triggered, as part of hibernatesnapshot, managdsuspend and managdresume are called. If during this managdresume, a failure occurs with HWC...

UBUNTU-CVE-2021-46918

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: clear MSIX permission entry on shutdown Add disabling/clearing of MSIX permission entries on device shutdown to mirror the enabling of the MSIX entries on probe. Current code left the MSIX enabled and the pasid...