Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: bpf: Check the validity of link-type in bpflinkshowfdinfo If a newly added link type does not invoke BPFLINKTYPE, accessing bpflinktypestrslink-type may lead to an out-of-bounds access. To detect such missed invocations early on,...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Register devlink first under devlink lock. In case the device encounters a non-fatal firmware error during the probe, the driver will report the error to the user via devlink. This will trigger a WARN, since mlx5 calls...

CVE-2026-31545

The CVE-2026-31545 issue affects the Linux kernel NFC subsystem (nxp-nci driver), where GPIOs could sleep due to a sleep path regression that triggered a WARN_ON and affected GPIOs connected to I2C GPIO expanders. The vulnerability is resolved by enabling the firmware-driven sleep behavior for th...

CVE-2026-23373 wifi: rsi: Don't default to -EOPNOTSUPP in rsi_mac80211_config

In the Linux kernel, the following vulnerability has been resolved: wifi: rsi: Don't default to -EOPNOTSUPP in rsimac80211config This triggers a WARNON in ieee80211hwconfinit and isn't the expected behavior from the driver - other drivers default to 0 too...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990557)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990557 advisory. In the Linux kernel, the following vulnerability has been resolved: ext4: don't BUG if someone dirty pages without asking ext4 first unpinuserpagesremote is dirtying...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986577)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986577 advisory. In the Linux kernel, the following vulnerability has been resolved: md/raid5: avoid BUGON while continue reshape after reassembling Currently, mdadm support...

CVE-2025-38644

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: reject TDLS operations when station is not associated syzbot triggered a WARN in ieee80211tdlsoper by sending NL80211TDLSENABLELINK immediately after NL80211CMDCONNECT, before association completed and without pri...

CVE-2025-38287 IB/cm: Drop lockdep assert and WARN when freeing old msg

In the Linux kernel, the following vulnerability has been resolved: IB/cm: Drop lockdep assert and WARN when freeing old msg The send completion handler can run after cmid has advanced to another message. The cmid lock is not needed in this case, but a recent change re-used cmfreeprivmsg, which...

UBUNTU-CVE-2025-21813

In the Linux kernel, the following vulnerability has been resolved: timers/migration: Fix off-by-one root mis-connection Before attaching a new root to the old root, the children counter of the new root is checked to verify that only the upcoming CPU's top group have been connected to it. However...

PT-2025-25819

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved. The issue was related to the video device for the MPEG encoder not setting device caps, which prevented the video device from being...

DEBIAN-CVE-2024-43846

In the Linux kernel, the following vulnerability has been resolved: lib: objagg: Fix general protection fault The library supports aggregation of objects into other objects only if the parent object does not have a parent itself. That is, nesting is not supported. Aggregation happens in two cases...

DEBIAN-CVE-2024-35961

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Register devlink first under devlink lock In case device is having a non fatal FW error during probe, the driver will report the error to user via devlink. This will trigger a WARNON, since mlx5 is calling devlinkregist...

PT-2024-21632 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue arises when a lower file's size is changed underneath overlayfs, causing an assertion in the copy up data loop. This type of use case is documented to cause undefined behavio...

PT-2022-33832 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.61 Description: The issue concerns an optimization in clearing the pending PMI and removal of a WARN ON for PMI check in power pmu disable. The actual impact and attack plausibility have not yet been prove...