29 matches found
PT-2022-35379 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions v5.15.61 through v5.15.74 Description: A potential security issue has been identified in the ext4 filesystem. The actual impact and attack plausibility have not yet been proven. This issue was introduced in version...
GSD-2022-1005696 KVM: x86: Mark TSS busy during LTR emulation _after_ all fault checks
KVM: x86: Mark TSS busy during LTR emulation after all fault checks This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.61 by commit...
GSD-2022-1005670 scsi: sg: Allow waiting for commands to complete on removed device
scsi: sg: Allow waiting for commands to complete on removed device This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.61 by commit...
GSD-2022-1005584 android: binder: stop saving a pointer to the VMA
android: binder: stop saving a pointer to the VMA This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.61 by commit...
GSD-2022-1005562 sched/core: Do not requeue task on CPU excluded from cpus_mask
sched/core: Do not requeue task on CPU excluded from cpusmask This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.61 by commit...
GSD-2022-1005558 scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts
scsi: qla2xxx: Fix crash due to stale SRB access around I/O timeouts This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.61 by commit...
GSD-2022-1005557 video: fbdev: s3fb: Check the size of screen before memset_io()
video: fbdev: s3fb: Check the size of screen before memsetio This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.61 by commit...
PT-2022-33833 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.61 Description: A refcount leak was discovered in the imx rproc addr init function. The actual impact and attack plausibility have not yet been proven. This issue was introduced in version v5.13 and is fix...
PT-2022-33883 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions 3.17 through 5.15.60 Description: The issue is related to a potential information leak in the wil write file wmi function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux...
PT-2022-33860 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions v5.15 through v5.15.60 Description: A potential security issue exists due to an out of bounds access in the get nodes function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Lin...
PT-2022-33907 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.61 Description: A refcount leak was discovered in the of get ocmem function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior to v5.15.61...
PT-2022-33913 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.61 Description: The issue is related to the Linux Kernel, with potential security implications that have not yet been fully proven. The estimated impact and plausibility of an attack are still under...
PT-2022-33847 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.61 Description: The issue is related to the incorrect clearing of the interrupt status register in RDMA/hns. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux...
PT-2022-33888 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.61 Description: The issue is related to the hinic get stats64 function, which may cause a kernel hang. The actual impact and attack plausibility have not yet been proven. Recommendations: For versions prio...
PT-2022-33934 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.61 Description: The issue concerns the md-raid component, where the bitmap is not properly destroyed after the thread is destroyed. This is an automated ID intended to aid in discovery of potential securit...
PT-2022-33892 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.61 Description: The issue is related to a use-after-free in the ath9k hif usb rx cb function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions...
PT-2022-33855 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.61 Description: The issue concerns a fix for vmalloced buffers in the Linux Kernel. It was introduced in version v5.2 and fixed in version v5.15.61. The actual impact and attack plausibility have not yet...
PT-2022-33828 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions 4.9 through 5.15.60 Description: The issue is related to a refcount leak in the qcom smd parse edge function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions...
PT-2022-33871 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.61 Description: A refcount leak was discovered in the mc pcie init irq domains function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior...
PT-2022-33803 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.61 Description: The issue is related to the handling of rq qos requests, where the same type of request should not be allowed to be added more than once. The actual impact and attack plausibility have not...