Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fixed an issue where an invalid lock was taken on a wedge. If devices like GuC upload are wedged, the submission is not yet enabled, and the state has not even been initialized. This fix prevents the wedge-related calls...

Debian dla-4627 : kernel-wedge - security update

The remote Debian 12 host has a package installed that is affected by a vulnerability as referenced in the dla-4627 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4627-1 [email protected] https://www.debian.org/lts/security/ B...

[SECURITY] [DLA 4627-1] kernel-wedge update

Debian LTS Advisory DLA-4627-1 [email protected] https://www.debian.org/lts/security/ Ben Hutchings June 12, 2026 https://wiki.debian.org/LTS Package : kernel-wedge Version : 2.106deb12u1 The kernel-wedge package has been updated to support building a backport of Linux 6.12. For Debian ...

CVE-2026-44505

The CVE affects Nimiq’s network-libp2p component (Rust) used in the Albatross-based PoS implementation. Before v1.4.0, when a peer returns a FoundRecord, the code verified the record via dht_verifier.verify and, on verifier error, logged and returned early without completing the oneshot used by N...

SUSE CVE-2026-43482

In the Linux kernel, the following vulnerability has been resolved: schedext: Disable preemption between scxclaimexit and kicking helper work scxclaimexit atomically sets exitkind, which prevents scxerror from triggering further error handling. After claiming exit, the caller must kick the helper...

CVE-2026-43482

CVE-2026-43482 relates to the Linux kernel sched_ext path. The issue arises when preemption is not disabled between scx_claim_exit() and the execution of the subsequent helper work, which can prevent bypass mode and teardown from activating if the task is preempted and the BPF scheduler fails to ...

Exploit for CVE-2026-23829

SimoesCTT-mailpit-phase-reconstructor It's a CRLF injection in...

EUVD-2021-7088

Malicious code in bioql PyPI...

EUVD-2025-22650

Malicious code in bioql PyPI...

drm/xe: Fix taking invalid lock on wedge

...

Linux Distros Unpatched Vulnerability : CVE-2025-38353

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/xe: Fix taking invalid lock on wedge If device wedges on e.g. GuC upload, the submission is not yet enabled and the state is not even initialized. Protect t...

SUSE CVE-2025-38353

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix taking invalid lock on wedge If device wedges on e.g. GuC upload, the submission is not yet enabled and the state is not even initialized. Protect the wedge call so it does nothing in this case. It fixes the following...

CVE-2025-38353

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix taking invalid lock on wedge If device wedges on e.g. GuC upload, the submission is not yet enabled and the state is not even initialized. Protect the wedge call so it does nothing in this case. It fixes the following...

DEBIAN-CVE-2025-38353

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix taking invalid lock on wedge If device wedges on e.g. GuC upload, the submission is not yet enabled and the state is not even initialized. Protect the wedge call so it does nothing in this case. It fixes the following...

UBUNTU-CVE-2025-38353

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix taking invalid lock on wedge If device wedges on e.g. GuC upload, the submission is not yet enabled and the state is not even initialized. Protect the wedge call so it does nothing in this case. It fixes the following...

CVE-2025-38353

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix taking invalid lock on wedge If device wedges on e.g. GuC upload, the submission is not yet enabled and the state is not even initialized. Protect the wedge call so it does nothing in this case. It fixes the following...

CVE-2025-38353

CVE-2025-38353: Linux kernel drm/xe wedge handling fix. Affected component: xe DRM path. Root cause: taking an invalid wedge lock when device wedges on GuC upload, leaving state uninitialized and submission not enabled. Impact: device wedged with recovery required; observed WARN/lock debugging ou...

CVE-2025-38353 drm/xe: Fix taking invalid lock on wedge

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix taking invalid lock on wedge If device wedges on e.g. GuC upload, the submission is not yet enabled and the state is not even initialized. Protect the wedge call so it does nothing in this case. It fixes the following...

CVE-2025-38353 drm/xe: Fix taking invalid lock on wedge

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix taking invalid lock on wedge If device wedges on e.g. GuC upload, the submission is not yet enabled and the state is not even initialized. Protect the wedge call so it does nothing in this case. It fixes the following...

CVE-2025-20162

A vulnerability in the DHCP snooping security feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a full interface queue wedge, which could result in a denial of service DoS condition. This vulnerability is due to improper handling of DHCP request packets. An...