Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerability has been resolved: bluetooth/l2cap: sync sock recvcb and release The issue occurs between the system call to close the socket and the hcirxwork function. In this process, the former releases the socket, while the latter accesses it without proper...

CVE-2026-43198

A flaw was found in the Linux kernel. A race condition exists in the TCP Transmission Control Protocol IPv6 Internet Protocol version 6 socket handling, specifically within the tcpv6synrecvsock function. This occurs because a child socket becomes visible in the TCP hash table before its...

CVE-2026-43198

In the Linux kernel, the following vulnerability has been resolved: tcp: fix potential race in tcpv6synrecvsock Code in tcpv6synrecvsock after the call to tcpv4synrecvsock is done too late. After tcpv4synrecvsock, the child socket is already visible from TCP ehash table and other cpus might use i...

Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: udp: fix race between close and udpabort Kaustubh reported and diagnosed a panic in udpliblookup. The root cause is udpabort racing with close. Both racing functions acquire the socket lock, but udpv6destroysock release it before...

PT-2026-36440

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: SCO: fix race conditions in sco sock connect sco sock connect checks sk state and sk type without holding the socket lock. Two concurrent connect syscalls on the same socket can both pass the check and enter sco connec...

RLSA-2026:1143 Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Linux kernel: Use-after-free in device mapper due to race condition in zone reporting CVE-2025-38141 kernel: Linux kernel use-after-free in eventpoll CVE-2025-38349 kernel: drm/xe: Fix...

MiracleLinux 9 : kernel-5.14.0-611.26.1.el9_7 (AXSA:2026-144:08)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2026-144:08 advisory. kernel: Linux kernel: Use-after-free in device mapper due to race condition in zone reporting CVE-2025-38141 kernel: Linux kernel use-after-free in...

kernel: Bluetooth: hci_sock: Prevent race in socket write iter and sock bind

A use-after-free vulnerability was found in the Linux kernel's Bluetooth HCI socket implementation. A race condition between socket bind and write operations allows mgmtpending to free a command structure while writeiter is still attempting to send it, resulting in use-after-free when the freed...

Important: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

ALSA-2026:1143 Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Linux kernel: Use-after-free in device mapper due to race condition in zone reporting CVE-2025-38141 kernel: Linux kernel use-after-free in eventpoll CVE-2025-38349 kernel: drm/xe: Fix...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001454)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001454 advisory. A race condition in Linux kernel SCTP sockets net/sctp/socket.c before 5.12-rc8 can lead to kernel privilege escalation from the context of a network service or an...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004253)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004253 advisory. A use-after-free flaw was found in the Linux Kernel due to a race problem in the unix garbage collector's deletion of SKB races with unixstreamreadgeneric on the...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003320)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003320 advisory. In the Linux kernel through 4.19, a use-after-free can occur due to a race condition between fanoutadd from setsockopt and bind on an AFPACKET socket. This issue...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993136)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993136 advisory. In the Linux kernel, the following vulnerability has been resolved: kcm: close race conditions on skreceivequeue sk-skreceivequeue is protected by skb queue lock, bu...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990078)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990078 advisory. In the Linux kernel, the following vulnerability has been resolved: udp: Set SOCKRCUFREE earlier in udplibgetport. syzkaller triggered the warning 0 in...

SUSE-SU-2025:3868-1 Security update for chrony

This update for chrony fixes the following issues: Security issues fixed: - Race condition during socket creation by chronyc allows privilege escalation from user chrony to root bsc1246544. Other issues fixed: - Improve connection retry intervals when facing NTS-KE related issues bsc1213551. nts:...

Security update for chrony

This update for chrony fixes the following issues: Security issues fixed: - Race condition during socket creation by chronyc allows privilege escalation from user chrony to root bsc1246544. Other issues fixed: - Improve connection retry intervals when facing NTS-KE related issues bsc1213551. nts:...

openSUSE Security Advisory (SUSE-SU-2025:3794-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414646)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414646 advisory. A local privilege escalation was discovered in the Linux kernel before 5.10.13. Multiple race conditions in the AFVSOCK implementation are caused by wrong locking in...

RHEL 9 : kernel (RHSA-2025:17122)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:17122 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: usb: dwc3: gadget: check that...