358 matches found
CVE-2022-48872 misc: fastrpc: Fix use-after-free race condition for maps
In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: Fix use-after-free race condition for maps It is possible that in between calling fastrpcmapget until map-fl-lock is taken in fastrpcfreemap, another thread can call fastrpcmaplookup and get a reference to a map th...
CVE-2022-48872
CVE-2022-48872 concerns a Linux kernel use-after-free race in the fastrpc maps. The vulnerability arises between fastrpc_map_get() and fastrpc_free_map(), where a concurrent thread could call fastrpc_map_lookup() and obtain a reference to a map about to be deleted, leading to a potential use-afte...
CVE-2022-48872 misc: fastrpc: Fix use-after-free race condition for maps
In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: Fix use-after-free race condition for maps It is possible that in between calling fastrpcmapget until map-fl-lock is taken in fastrpcfreemap, another thread can call fastrpcmaplookup and get a reference to a map th...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates from a post-release reuse of the misc/fastrpc component...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a mapping that should not be removed by the fastrpc component during process creation and device release...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a post-release reuse and race condition in the misc/fastrpc component...
SUSE SLES15 Security Update : kernel (SUSE-SU-2024:2948-1)
The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2948-1 advisory. The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security bugfixes. The following security bugs were fixed: -...
SUSE-SU-2024:2893-1 Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP3 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2024-39494: ima: Fix use-after-free on a dentry's dname.name bsc1227716. - CVE-2024-41069: ASoC: topology: Fix route memory corruption bsc1228644. -...
SUSE CVE-2024-41025
In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: Fix memory leak in audio daemon attach operation Audio PD daemon send the name as part of the init IOCTL call. This name needs to be copied to kernel for which memory is allocated. This memory is never freed which...
CVE-2024-41024
A vulnerability was found in the Linux kernel's fastrpc driver at allows untrusted applications with access to non-secure fastrpc device nodes to attach to privileged Processing Domains PDs such as rootpd or static PDs. This could lead to unauthorized access and potential exploitation. Mitigation...
CVE-2024-41025
In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: Fix memory leak in audio daemon attach operation Audio PD daemon send the name as part of the init IOCTL call. This name needs to be copied to kernel for which memory is allocated. This memory is never freed which...
CVE-2024-41025
In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: Fix memory leak in audio daemon attach operation Audio PD daemon send the name as part of the init IOCTL call. This name needs to be copied to kernel for which memory is allocated. This memory is never freed which...
CVE-2024-41024
In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: Restrict untrusted app to attach to privileged PD Untrusted application with access to only non-secure fastrpc device node can attach to rootpd or static PDs if it can make the respective init request. This can cau...
DEBIAN-CVE-2024-41025
In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: Fix memory leak in audio daemon attach operation Audio PD daemon send the name as part of the init IOCTL call. This name needs to be copied to kernel for which memory is allocated. This memory is never freed which...
CVE-2024-41024
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...
CVE-2024-41025
In the connected documents, CVE-2024-41025 is described as a Linux kernel issue fixed by addressing a memory leak in the fastrpc audio daemon attach path. Specifically, the Audio PD daemon copies a name via init IOCTL into kernel memory that is allocated but not freed, causing a leak. The vulnera...
CVE-2024-41025 misc: fastrpc: Fix memory leak in audio daemon attach operation
In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: Fix memory leak in audio daemon attach operation Audio PD daemon send the name as part of the init IOCTL call. This name needs to be copied to kernel for which memory is allocated. This memory is never freed which...
CVE-2024-41025 misc: fastrpc: Fix memory leak in audio daemon attach operation
In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: Fix memory leak in audio daemon attach operation Audio PD daemon send the name as part of the init IOCTL call. This name needs to be copied to kernel for which memory is allocated. This memory is never freed which...
CVE-2024-41024
...
CVE-2024-41024
CVE-2024-41024 is rejected/not used and does not represent an active vulnerability entry.