Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: PCI: microchip: The refcount leak in mcpcieinitirqdomains has been fixed. The ofgetnextchild function returns a node pointer whose refcount is incremented. Therefore, we should use ofnodeput on it when we no longer need it. The...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: ns: Initialize nslistnode for initial namespaces. Ensure that the list is always initialized for initial namespaces...

Astra Linux - уязвимость в node-glob-parent

This affects the glob-parent package before version 5.1.2. The enclosure regex used to check for strings ending with an enclosure containing a path separator is affected...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: ASoC: mediatek: common: Fixed a reference count leak in parsedailinkinfo. Added calls to ofnodeput before the returns from ofnodeget and ofnodeput, which can prevent imbalance if the “foreachavailablechildofnode” loop terminat...

Astra Linux - уязвимость в node-cipher-base

There is a vulnerability in improper input validation in the cipher-base module, which allows for manipulation of input data. This issue affects cipher-base version 1.0.4...

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: soc: qcom: aoss: The issue of a reference count leak in qmpcoolingdevicesregister has been fixed. In every iteration of the foreachavailablechildofnode loop, the reference count of the previous node is decremented. When exiting t...

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: cpufreq: pmac32-cpufreq: Fixed the refcount leak issue. In pmaccpufreqinitMacRISC3, we need to add the corresponding ofnodeput function for the three node pointers whose refcount has been incremented by offindnodebyname...

Astra Linux - уязвимость в db5.3

SQLite3 versions from 3.6.0 through 3.27.2 are vulnerable to heap out-of-bound reads in the rtreenode function when handling invalid rtree tables...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: Tracing: Fixed a null pointer dereference in the tracingerrlogopen function. The function does not call seqopen if the file is opened only with write permissions. This results in file-privatedata being left as null. If we then us...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: regmap-irq: The numconfigregs property was introduced in regmapaddirqchipfwnode. The commit faa87ce9196d “regmap-irq: Introduce config registers for irq types” added the numconfigregs property. The commit 9edd4f5aee84...

Astra Linux - уязвимость в firefox

By causing a transition on a parent node by removing a CSS rule, an invalid property for a marker could be applied, leading to memory corruption and potentially exploitable crashes. This vulnerability affects Firefox versions less than 87...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: iio: adc: adi-axi-adc: Fixed a refcount leak in adiaxiadcattachclient. The ofparsephandle function returns a node pointer with a refcount incremented. We should use ofnodeput on it when there is no longer a need for it. Add the...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: iio: adc: aspeed: Fixed a refcount leak in aspeedadcsettrimdata. The function offindnodebyname returns a node pointer with a refcount incremented. We should use ofnodeput on it after processing. Add the necessary ofnodeput cal...

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: drm/msm/mdp4: Fixed the refcount leak in mdp4modesetinitintf. In the function ofgraphgetremotenode, the remote device node pointer is returned with the refcount incremented. We should use ofnodeput on it when it is no longer...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: drm/meson: encodercvbs: Fixed a reference count leak in mesonencodercvbsinit. In the function ofgraphgetremotenode, the remote device nodepointer is returned with a incremented reference count. We should use ofnodeput on it after...

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerabilities have been resolved: ARM: OMAP2+: Fixed a refcount leak in oprsdssinitof. In omapdssfinddssofnode, the function offindcompatiblenode is called to obtain a device node. offindcompatiblenode returns a node pointer with a refcount incremented. We...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: hwmon: nct7363 A resource leak has been fixed in nct7363presentpwmfanin. When calling parsephandlewithargs, the caller is responsible for calling nodeput to release the reference to the device node. In nct7363presentpwmfanin, thi...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: ipmi:ipmb: The refcount leak in ipmiipmbprobe has been fixed. ofparsephandle returns a node pointer with a refcount incremented. We should use ofnodeput on it after processing. Add the missing ofnodeput call to avoid the...

Astra Linux - уязвимость в node-ejs

The ejs also known as Embedded JavaScript templates package in Node.js before version 3.1.10 lacked certain measures to prevent pollution...

Astra Linux - уязвимость в node-tar

The npm package “tar” also known as node-tar in versions prior to 4.4.16, 5.0.8, and 6.1.7 has vulnerabilities related to arbitrary file creation/overwriting and arbitrary code execution. node-tar aims to ensure that any file whose location would be modified by a symbolic link is not extracted...