240 matches found
GHSA-XJVP-4FHW-GC47 vulnerabilities
Vulnerabilities for packages: podman, buildah, cadvisor-fips, k8s-device-plugin, buildah-fips, node-feature-discovery-fips, sriov-network-device-plugin, podman-fips, prometheus-podman-exporter-fips, node-feature-discovery, sriov-network-device-plugin-fips, prometheus-podman-exporter,...
CVE-2026-41579 vulnerabilities
Vulnerabilities for packages: podman, buildah, cadvisor-fips, k8s-device-plugin, buildah-fips, node-feature-discovery-fips, sriov-network-device-plugin, podman-fips, prometheus-podman-exporter-fips, node-feature-discovery, sriov-network-device-plugin-fips, prometheus-podman-exporter,...
GHSA-XJVP-4FHW-GC47 vulnerabilities
Vulnerabilities for packages: rancher-agent, buildah, sriov-network-device-plugin, nvidia-container-toolkit, rancher, k8s-device-plugin, podman, cadvisor, node-feature-discovery...
CVE-2026-41579 vulnerabilities
Vulnerabilities for packages: rancher-agent, buildah, sriov-network-device-plugin, nvidia-container-toolkit, rancher, k8s-device-plugin, podman, cadvisor, node-feature-discovery...
Astra Linux – Vulnerability in Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/hpre – fixed a resource leak in the remove process. In hpreremove, when the disable operation of qm sriov fails, the following logic should continue to be executed to release the remaining resources that have be...
CVE-2026-25680 affecting package sriov-network-device-plugin for versions less than 3.7.0-6
CVE-2026-25680 affecting package sriov-network-device-plugin for versions less than 3.7.0-6. A patched version of the package is available...
CVE-2026-27136 affecting package sriov-network-device-plugin for versions less than 3.7.0-6
CVE-2026-27136 affecting package sriov-network-device-plugin for versions less than 3.7.0-6. A patched version of the package is available...
CVE-2026-25681 affecting package sriov-network-device-plugin for versions less than 3.7.0-6
CVE-2026-25681 affecting package sriov-network-device-plugin for versions less than 3.7.0-6. A patched version of the package is available...
CVE-2026-42506 affecting package sriov-network-device-plugin for versions less than 3.7.0-6
CVE-2026-42506 affecting package sriov-network-device-plugin for versions less than 3.7.0-6. A patched version of the package is available...
CVE-2026-42502 affecting package sriov-network-device-plugin for versions less than 3.7.0-6
CVE-2026-42502 affecting package sriov-network-device-plugin for versions less than 3.7.0-6. A patched version of the package is available...
CVE-2026-39821 affecting package sriov-network-device-plugin for versions less than 3.7.0-6
CVE-2026-39821 affecting package sriov-network-device-plugin for versions less than 3.7.0-6. A patched version of the package is available...
Astra Linux – Vulnerability in Qemu
A issue was discovered in QEMU 7.1.0 through 8.2.1. The registervfs function in hw/pci/pciesriov.c mishandles the situation where a guest writes a number of Virtual File Systems NumVFs that is greater than the total number of Virtual File Systems TotalVFs, resulting in a buffer overflow in VF...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: drm/xe/pf: Fixed a use-after-free in the migration restore process. When an error is returned from xesriovpfmigrationrestoreproduce, the data pointer is not set to NULL, which can lead to a use-after-free in subsequent .write...
Astra Linux – Vulnerability in Linux 5.10, Linux
In the Linux kernel, the following vulnerability has been resolved: PCI: Avoid deadlock in sriovnumvfsstore caused by pcidevlock The sysfs sriovnumvfsstore path acquires the device lock before the config space access lock: sriovnumvfsstore devicelock A 1 acquires the device lock sriovconfigure...
Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: qed/qedsriov: protection against NULL references from qediovgetVFInfo. We must ensure that the information returned by the helper function is valid before using it. This issue was detected by the Linux Verification Center...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries/iommu: IOMMU table is not initialized for kdump over SR-IOV When kdump kernel tries to copy dump data over SR-IOV, LPAR panics due to NULL pointer exception: Kernel attempted to read user page 0 - exploit attempt?...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: powerpc/powernv/sriov: Perform a null check on iov before dereferencing iov. Currently, the pointer to iov is dereferenced before the null check, which can lead to a null pointer dereference error. This issue is fixed by moving t...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: drm/amd/amdkfd: Fixed a kernel panic that occurred when the reset attempt failed and was triggered again. In SRIOV configuration, the reset may fail to restore the ASIC to normal, but the cpsch function has already been called...
Astra Linux – Vulnerability in Linux 5.10, Linux
In the Linux kernel, the following vulnerability has been resolved: Drivers: Net: qlcnic: A potential memory leak has been fixed in qlcnicsriovinit. If the vpalloc function fails in qlcnicsriovinit, all previously allocated vp resources must be freed...
Astra Linux – Vulnerability in Linux 5.10, Linux
In the Linux kernel, the following vulnerabilities have been resolved: ixgbe: Added locking to prevent panics when setting sriovnumvfs to zero. It is possible to disable VFs while the PF driver is processing requests from the VF driver. This can result in a panic. BUG: Unable to handle kernel...