ROS-20240829-02

A vulnerability in the hci_qca component of the Linux operating system kernel is related to memory usage after a
release. Exploitation of the vulnerability could allow an attacker to cause a denial of service

Vulnerability in the gso component of the Linux operating system kernel is related to the lack of skipping of the external
ip header. Exploitation of the vulnerability could allow an attacker to cause a denial of service

A vulnerability in the efi component of the Linux kernel is related to NULL pointer dereferencing.
Exploitation of the vulnerability may allow an attacker to cause a denial of service

Vulnerability in the mlx5 component of the Linux kernel is related to reading outside memory boundaries.
Exploitation of the vulnerability could allow an attacker to affect the confidentiality, integrity, and
availability of protected information

Vulnerability in the flower component of the Linux operating system kernel is related to a memory leak in the
nfp_tunnel_add_shared_mac(). Exploitation of the vulnerability could allow an attacker to affect the confidentiality, integrity and availability of protected information.
confidentiality, integrity and availability of protected information

A vulnerability in the tsc2046 component of the Linux operating system kernel is associated with a write outside the boundaries of the
record. Exploitation of the vulnerability could allow an attacker to affect the confidentiality, integrity and availability of protected information.
availability of protected information

Vulnerability in the vdpa/mlx5 component of the Linux kernel is related to the use of an uninitialized resource.
uninitialized resource. Exploitation of the vulnerability could allow an attacker to cause a denial of
denial of service

Vulnerability in the arc_emac component of the Linux kernel is related to the use of memory after a
release. Exploitation of the vulnerability could allow an attacker to cause a denial of service

Vulnerability in the blktrace component of the Linux kernel is related to memory usage after release.
release. Exploitation of the vulnerability could allow an attacker to cause a denial of service

Vulnerability in the tipc component of the Linux operating system kernel is related to kernel panic when media is turned on
on a node. Exploitation of the vulnerability could allow an attacker to cause a denial of service

A vulnerability in the cifs component of the Linux operating system kernel is associated with a double-race condition due to a
memory freeing on mount failure in cifs_get_root(). Exploitation of the vulnerability could allow an
an attacker to affect confidentiality, integrity and availability of protected information

A vulnerability in the hid-thrustmaster component of the Linux operating system kernel is related to a lack of checks for the
of the actual number of endpoints. Exploitation of the vulnerability could allow an attacker to affect the confidentiality, integrity and availability of protected information.
confidentiality, integrity and availability of protected information

Vulnerability of dsp_pipeline_build() function in mISDN component of Linux kernel is related to
a call to the dup variable containing NULL. Exploitation of the vulnerability could allow an attacker to affect the
confidentiality, integrity and availability of protected information

Vulnerability in the sctp component of the Linux operating system kernel is related to the failure to free memory
after an effective lifetime. Exploitation of the vulnerability could allow an attacker to affect the confidentiality, integrity and availability of protected information.
confidentiality, integrity and availability of protected information

A vulnerability in the swiotlb component of the Linux operating system kernel is related to information leakage via
DMA_FROM_DEVICE. Exploitation of the vulnerability could allow an attacker to affect the confidentiality,
integrity and availability of protected information

A vulnerability in the ethernet component of the Linux operating system kernel is related to error handling in the
xemaclite_of_probe. Exploitation of the vulnerability could allow an attacker to affect the confidentiality,
integrity and availability of protected information

Vulnerability of vhost_iotlb_add_range_ctx() function in vhost component of Linux operating system kernel
is related to an iotlb write error in vhost_iotlb_add_range_ctx() range size can become equal to 0.
Exploitation of the vulnerability could allow an attacker to cause a denial of service

Vulnerability in the net/mlx5e component of the Linux operating system kernel is related to null macsec dereferencing during the
MAC security entity update (SecY) . Exploitation of the vulnerability could allow an attacker to affect the
confidentiality, integrity and availability of protected information

The vulnerability in the fastrpc component of the Linux operating system kernel is related to the race-to-the-top state in the
fastrpc_map_find. Exploitation of the vulnerability could allow an attacker to cause a denial of service

A vulnerability in the mac80211 component of the Linux operating system kernel is related to null pointer dereference .
Exploitation of the vulnerability could allow an attacker to affect the confidentiality, integrity, and
availability of protected information

Vulnerability in the netfilter component of the Linux kernel is related to unregistration of flowtable interceptors before they are registered.
flowtable interceptors before releasing them using nf_tables_flowtable_destroy(). Exploitation
the vulnerability could allow an attacker to cause a denial of service

A vulnerability in the sched/core component of the Linux operating system kernel is related to the re-release of
memory. Exploitation of the vulnerability could allow an attacker to affect the confidentiality, integrity and availability of protected information.
availability of protected information

A vulnerability in the dpu component of the Linux kernel is related to a memory leak in the
msm_mdss_parse_data_bus_icc_path of_icc_get(). Exploitation of the vulnerability could allow an attacker to affect the
confidentiality, integrity and availability of protected information

A vulnerability in the bpf component of the Linux operating system kernel is associated with a failure due to access outside the
boundaries in reg2btf_ids. Exploitation of the vulnerability could allow an attacker to affect the confidentiality,
integrity and availability of protected information

A vulnerability in the net/mlx5: component of the Linux operating system kernel is associated with a release of the last
reference and index counter and writing, while another process executing the command reset thread,
takes the reference counter of the first function. Exploitation of the vulnerability could allow an attacker to cause a denial of
denial of service

A vulnerability in the rndis component of the Linux operating system kernel is related to incorrect locking.
Exploitation of the vulnerability could allow an attacker to cause a denial of service

A vulnerability in the int340x component of the Linux operating system kernel is related to a memory leak in the
int3400_notify(). Exploitation of the vulnerability could allow an attacker to affect the confidentiality,
integrity and availability of protected information

A vulnerability in the vdpa component of the Linux operating system kernel is related to memory usage after a
release. Exploitation of the vulnerability could allow an attacker to cause a denial of service

A vulnerability in the RDMA component of the Linux operating system kernel is related to incorrect locking.
Exploitation of the vulnerability may allow an attacker to cause a denial of service

A vulnerability in the mvm component of a Linux operating system kernel is related to the use on the command line of
“debugfs=off”, the iwiwifi mvm module uses an invalid debugfs_dir pointer and causes a NULL pointer dereferencing error.
NULL kernel pointer dereference error. Exploitation of the vulnerability could allow an attacker to cause a denial of
denial of service

A vulnerability in the men_z188_adc component of the Linux operating system kernel is related to a resource leak in the error handling path
error handling path. Exploitation of the vulnerability could allow an attacker to affect the confidentiality,
integrity and availability of protected information

A vulnerability in the pci_get_domain_bus_and_slot function of the Linux operating system kernel is associated with a leakage of the
reference counter in amd_pmc_probe accepts reference . Exploitation of the vulnerability could allow an attacker to
cause a denial of service

A vulnerability in the RDMA/cma component of the Linux operating system kernel is related to memory utilization after a
release. Exploitation of the vulnerability could allow an attacker to cause a denial of service

Vulnerability in the core component of the Linux operating system kernel is related to dereferencing a null pointer
TZ_GET_TRIP. Exploitation of the vulnerability could allow an attacker to cause a denial of service

Vulnerability in the netfilter component of the Linux operating system kernel is related to a memory leak during a
stateful object update. Exploitation of the vulnerability could allow an attacker to affect the
confidentiality, integrity and availability of protected information

Vulnerability in the prestera component of the Linux operating system kernel is related to the lack of memory release
after an effective lifetime. Exploitation of the vulnerability could allow an attacker to affect the confidentiality, integrity, and availability of protected information.
confidentiality, integrity and availability of protected information

A vulnerability in the configfs component of the Linux operating system kernel is related to parallel execution using a shared resource with incorrect synchronization.
using a shared resource with incorrect synchronization. Exploitation of the vulnerability could allow
An attacker to cause a denial of service

A vulnerability in the __nf_register_net_hook() function in the netfilter component of a Linux kernel is related to memory usage after release.
is related to memory usage after release. Exploitation of the vulnerability could allow an attacker to
cause a denial of service