wid-sec-w-2026-0754
·
Published 2026-03-16
·
View on BSI CERT-Bund ↗
Linux Kernel: Multiple Vulnerabilities allow Umgehen from Sicherheitsvorkehrungen
CVSS N/A
NONE
Risk Summary
In the Linux kernel, the following vulnerability has been resolved: audit: add missing syscalls to read class The "at" variant of getxattr() and listxattr() are missing from the audit read class. Calling getxattrat() or listxattrat() on a file to read its extended attributes will bypass audit rules such as: -w /tmp/test -p rwa -k test_rwa The current patch adds missing syscalls to the audit read class.
CVEs (2)
Affected Vendors
Open Source
Affected Products (16)
Open Source
·
Linux Kernel
<5.10.252
Open Source
·
Linux Kernel
5.10.252
Open Source
·
Linux Kernel
<5.15.202
Open Source
·
Linux Kernel
5.15.202
Open Source
·
Linux Kernel
<6.1.165
Open Source
·
Linux Kernel
6.1.165
Open Source
·
Linux Kernel
<6.6.128
Open Source
·
Linux Kernel
6.6.128
Open Source
·
Linux Kernel
<6.12.75
Open Source
·
Linux Kernel
6.12.75
Open Source
·
Linux Kernel
<6.18.16
Open Source
·
Linux Kernel
6.18.16
Open Source
·
Linux Kernel
<6.19.6
Open Source
·
Linux Kernel
6.19.6
Open Source
·
Linux Kernel
<7.0-rc1
Open Source
·
Linux Kernel
7.0-rc1
Get alerted to advisories like this
OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.
Start free trial Learn more