Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: swiotlb: Fixed the issue of double-allocation of slots due to incorrect alignment handling. The commit bbb73a103fbb “swiotlb: fix a braino in the alignment check fix” addressed the issue in commit 0eee5ae10256 “swiotlb: fix slot...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: swiotlb: Initialize the restricted pool listhead when SWIOTLBDYNAMIC=y. Using restricted DMA pools CONFIGDMARESTRICTEDPOOL=y in conjunction with dynamic SWIOTLB CONFIGSWIOTLBDYNAMIC=y leads to the following crash during boot-time...

CVE-2026-23174

The CVE-2026-23174 entry concerns the Linux kernel nvme-pci subsystem. Root cause: dma_needs_unmap may switch from false to true during data-iterator mapping, and the nvme driver must preserve mapped DMA vectors for later unmapping. The fix is to allocate/unprepare storage for DMA vectors on dema...

Azure Linux 3.0 Security Update: kernel (CVE-2024-36925)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-36925 advisory. - In the Linux kernel, the following vulnerability has been resolved: swiotlb: initialise restricted pool...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001249)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001249 advisory. The swiotlbprintinfo function in lib/swiotlb.c in the Linux kernel through 4.14.14 allows local users to obtain sensitive address information by reading dmesg data...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003549)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003549 advisory. The swiotlbprintinfo function in lib/swiotlb.c in the Linux kernel through 4.14.14 allows local users to obtain sensitive address information by reading dmesg data...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003552)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003552 advisory. The swiotlbprintinfo function in lib/swiotlb.c in the Linux kernel through 4.14.14 allows local users to obtain sensitive address information by reading dmesg data...

CVE-2022-50614 misc: pci_endpoint_test: Fix pci_endpoint_test_{copy,write,read}() panic

In the Linux kernel, the following vulnerability has been resolved: misc: pciendpointtest: Fix pciendpointtestcopy,write,read panic The dmamapsingle doesn't permit zero length mapping. It causes a follow panic. A panic was reported on arm64: 60.137988 ------------ cut here ------------ 60.142630...

CVE-2022-50614

In the Linux kernel, the following vulnerability has been resolved: misc: pciendpointtest: Fix pciendpointtestcopy,write,read panic The dmamapsingle doesn't permit zero length mapping. It causes a follow panic. A panic was reported on arm64: 60.137988 ------------ cut here ------------ 60.142630...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989162)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989162 advisory. In the Linux kernel, the following vulnerability has been resolved: swiotlb: fix info leak with DMAFROMDEVICE The problem I'm addressing was discovered by the LTP te...

CLSA-2025-1762171389 kernel: Fix of 15 CVEs

nfs: fix possible null-ptr-deref when parsing param CVE-2022-50455 - KVM: arm64: Disassociate vcpus from redistributor region on teardown CVE-2024-40989 - HID: core: Harden s32ton against conversion to 0 bits CVE-2025-38556 - ALSA: usb-audio: Validate UAC3 cluster segment descriptors...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986751)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986751 advisory. In the Linux kernel, the following vulnerability has been resolved: swiotlb: fix info leak with DMAFROMDEVICE The problem I'm addressing was discovered by the LTP te...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: swiotlb: fix out-of-bounds TLB allocations with CONFIGSWIOTLBDYNAMIC Limit the free list length to the size of the IO TLB. Transient pool can be smaller than IOTLBSEGSIZE, but the free list is initialized with the assumption that...

The vulnerability of the swiotlb component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the swiotlb component in the Linux operating system’s kernel is related to the assignment of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the swiotlb component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the swiotlb component in the Linux operating system’s kernel is related to errors in resource management within the swiotlbareafindslots function. Exploiting this vulnerability can allow an attacker to cause a service failure...

ROS-20241119-01

A vulnerability in the ath11k component of the SUNRPC kernel of the Linux system is related to use-after-use errors release in the rpcclntremovepipedir and rpcsetuppipedir functions in net/sunrpc/clnt.c. Exploitation of the vulnerability could allow an attacker to escalate privileges on the syste...

kernel: swiotlb: Fix double-allocation of slots due to broken alignment handling

In the Linux kernel, the following vulnerability has been resolved: swiotlb: Fix double-allocation of slots due to broken alignment handling The Linux kernel CVE team has assigned CVE-2024-35814 to this issue. Upstream advisory:...

kernel: swiotlb: Fix double-allocation of slots due to broken alignment handling

In the Linux kernel, the following vulnerability has been resolved: swiotlb: Fix double-allocation of slots due to broken alignment handling The Linux kernel CVE team has assigned CVE-2024-35814 to this issue. Upstream advisory:...

The vulnerability of the storvsc component in the Linux operating system’s kernel allows for a malfunction to occur, leading to service failure.

The vulnerability of the storvsc component in the Linux operating system’s kernel is related to a buffer overflow in the swiotlb daemon in the confidential virtual machine. Exploiting this vulnerability could allow an attacker to trigger a system failure...

The vulnerability of the swiotlb component in the Linux operating system’s kernel allows a hacker to exploit it to disclose protected information.

The vulnerability of the swiotlb component in the Linux operating system’s kernel is related to a data leak via DMAFROMDEVICE. Exploiting this vulnerability can allow an attacker to disclose the protected information...