CVE-2026-53054

A flaw was found in the Linux kernel's Direct Rendering Manager DRM subsystem, specifically within the Qualcomm Adreno GPU MSM driver. An incorrect argument in the VMBIND UNMAP locking mechanism meant that certain objects involved in unmapping operations were not consistently locked. This could...

CVE-2026-53207

The CVE describes a Linux kernel race in mm/memory-failure where two concurrent MADV_HWPOISON calls on the same hugetlb page can cause an AA deadlock in hugetlb_lock during get_huge_page_for_hwpoison. Root cause: a folio_put() path releases a GUP reference while hugetlb_lock is still held, and fr...

CVE-2026-53160

In CVE-2026-53160, the Linux kernel misc: fastrpc subsystem had a use-after-free race in fastrpc_map_create. Specifically, fastrpc_map_lookup returned a raw pointer after releasing fl->lock, and the caller then invoked fastrpc_map_get (kref_get_unless_zero) on that unprotected pointer. A concu...

EUVD-2026-38889

In the Linux kernel, the following vulnerability has been resolved: scsi: target: core: Fix integer overflow in UNMAP bounds check sbcexecuteunmap checks LBA + range does not exceed the device capacity, but does not guard against LBA + range wrapping around on 64-bit overflow. Add an overflow che...

EUVD-2026-38922

In the Linux kernel, the following vulnerability has been resolved: drm/msm: Fix VMBIND UNMAP locking Wrong argument meant that the objs involved in UNMAP ops were not always getting locked. Since NOSHARE objs share a common resv with the VM which is always locked this would only show up with...

CVE-2026-53054

The CVE-2026-53054 entry concerns the Linux kernel DRM/MSM code, where a wrong argument caused UNMAP operations to fail to lock the involved objects consistently. Specifically, UNMAP handling could bypass proper locking for non-_NO_SHARE BOs, since _NO_SHARE objects share a common reservation wit...

CVE-2026-52939

Linux kernel vulnerability CVE-2026-52939 affects RDS over InfiniBand. A NULL dereference can occur in rds_ib_send_cqe_handler() when handling masked atomic completions, due to rds_ib_send_unmap_op() not covering masked opcodes. The issue occurs because masked atomic opcodes (IB_WR_MASKED_ATOMIC_...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix deinitialization of firmware resources Currently, in ath11kahbfwresourcesinit, the iommu domain mapping is only performed for chipsets that have a fixed firmware memory. Additionally, for such chipsets, the...

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: dma-debug: fixed a possible deadlock in radixlock. radixlock should not be held while holding dmahashentryidx.lock. Otherwise, a deadlock scenario may occur when the dma debug API is called while holding rqlock: CPU0 CPU1 CPU2...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: Wifi: ath12k: fixed a memory leak in ath12kpciremove The issue was reported as follows: unreferenced object 0xffff1c165cec3060 size 32: comm "insmod", pid 560, jiffies 4296964570 age 235.596s backtrace:...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: drm/panthor: Fixed handling of partial GPU mapping of BOs This commit fixes the bug in handling partial mapping of buffer objects to the GPU, which caused kernel warnings. Panthor did not handle correctly the case where the...

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: libceph: The calctarget function should set t-paused, rather than simply clearing it. Currently, calctarget clears t-paused if the request should no longer be paused. However, it never sets t-paused, even though it can determine...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: ksmbd: smbd: fix dmaunmapsg nents The dmaunmapsg functions should be called with the same nents as the dmamapsg, not with the value returned by the map function...

Astra Linux – Vulnerabilities in Linux, Linux-5.15, Linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: scsi: lpfc: Fixed issues with ioremap in lpfcsli4pcimemsetup. When iftype equals zero and pciresourcestartpdev, PCI64BITBAR4 returns false, drbl regsmemmapp is not remapped. This passes a NULL pointer to iounmap, which can...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: “mm: memoryfailure: unmap poisoned folio during migrate properly”. Patch series “mm: memoryfailure: unmap poisoned folio during migrate properly”, version 3. This patch fixes two bugs during folio migration if the folio is...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Fixed a kernel panic that could occur when partially unmapping a GPU virtual address region. This commit addresses a kernel panic issue that can occur when the userspace tries to partially unmap a GPU virtual address...

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: drm/etnaviv: checking for the reaped mapping in etnaviviommuunmapgem. When the mapping has already been reaped, the unmap operation must be a no-op. Otherwise, we would try to remove the mapping twice, corrupting the involved dat...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: virtio: Fixed an issue where unmapping of memory was not properly handled for indirect desc tables. When usedmaapi and premapped are set to true, the dounmap function is not called. As a result, the vringunmapextrapacked function...

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: nvme-pci: added a missing condition check for the existence of the mapped data. The function nvmemapdata is called when the request contains physical segments; therefore, the function nvmeunmapdata should also have the same...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: mm/rmap: A potential out-of-bounds access to the page table occurred during batched unmap operations. As pointed out by David1, the batched unmap logic in trytounmapone may read past the end of a PTE table when the PTE mappings o...