Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: safesetid: Check the size of policy writes. syzbot attempts to write a buffer with a large size to a sysfs entry. The writing is handled by handlepolicyupdate, which triggers a warning in kmalloc. Check the size specified for the...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: md: initbioset in mddevinit. IO operations may be required before mdrun, such as updating metadata after writing to sysfs. Without bioset, this triggers a NULL pointer dereference, as shown below: BUG: NULL pointer dereference in...

CVE-2025-68368 md: init bioset in mddev_init

In the Linux kernel, the following vulnerability has been resolved: md: init bioset in mddevinit IO operations may be needed before mdrun, such as updating metadata after writing sysfs. Without bioset, this triggers a NULL pointer dereference as below: BUG: kernel NULL pointer dereference, addres...

SUSE CVE-2025-38705

In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: fix null pointer access Writing a string without delimiters ' ', '\n', '\0' to the under gpuod/fanctrl sysfs or pppowerprofilemode for the CUSTOM profile will result in a null pointer dereference...