GSD-2022-1006260 drm/radeon: fix potential buffer overflow in ni_set_mc_special_registers()

drm/radeon: fix potential buffer overflow in nisetmcspecialregisters This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.291 by commit...

GSD-2022-1006224 pinctrl: nomadik: Fix refcount leak in nmk_pinctrl_dt_subnode_to_map

pinctrl: nomadik: Fix refcount leak in nmkpinctrldtsubnodetomap This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.291 by commit...

PT-2022-34536 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.14.291 Description: The issue is related to an off-by-one error in nvbios addr within the drm/nouveau component. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux...

PT-2022-34469 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.14.291 Description: The issue concerns the ext4 filesystem in the Linux Kernel, specifically with avoiding resizing to a partial cluster size. The actual impact and attack plausibility have not yet been prove...

PT-2022-34505 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions v3.12 through v4.14.290 Description: A memory leak issue has been identified. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions v3.12 through v4.14.290, update...

PT-2022-34538 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.14.291 Description: The issue concerns a scenario where userspace injects an interrupt with GIF=0, potentially leading to a bug. The actual impact and attack plausibility have not yet been proven...

PT-2022-34537 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.14.291 Description: The issue is related to the KVM x86 emulation of the LTR instruction, where the TSS is marked busy after all fault checks. The actual impact and attack plausibility have not yet been prove...

PT-2022-34479 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.14.291 Description: The issue concerns a locking problem in the get phb number function. The actual impact and potential for attack have not been proven yet. Recommendations: For versions prior to v4.14.291,...

PT-2022-34462 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.14.291 Description: The issue is related to the smb3 protocol, where the check for xattr value length is performed earlier. The actual impact and attack plausibility have not yet been proven. Recommendations:...

PT-2022-34480 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.14.291 Description: The issue is related to the btrfs raid56 functionality, specifically in the raid56 parity recover function, where it does not properly validate cached sectors. This could potentially lead ...

PT-2022-34482 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.14.291 Description: The issue is related to a refcount leak in the nmk pinctrl dt subnode to map function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel...

PT-2022-34503 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.14.291 Description: The issue is related to a potential security vulnerability in the jbd2 module of the Linux Kernel. It involves an assertion failure when the journal is aborted, which could potentially be...