5067 matches found
Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: wifi: ipw2200: A memory leak has been fixed in the ipwwdevinit function. In the error handling code for ipwwdevinit, an exception value is returned, and the memory allocated for this function is not released. Additionally, the...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: media: hi846: Fixed a memory leak in hi846initcontrols The hi846initcontrols function does not clean up the allocated ctrlhdlr resources in case of a failure, which leads to a memory leak. Added v4l2ctrlhandlerfree to properly fr...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: nvme-fc: The admin tagset is released if the initialization fails. The nvmefabrics function creates a NVMe/FC controller in the following path: nvmfdevwrite → nvmfcreatectrl → nvmefccreatectrl → nvmefcinitctrl The nvmefcinitctrl...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: schedext: Redundant cssput calls have been removed from scxcgroupinit. The iterator cssforeachdescendantpre iterates through the cgroup hierarchy under cgrouplock. This iteration does not increment the reference counts on yielded...
Astra Linux – Vulnerability in Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: powerpc/xive: Fixed the refcount leak in xivespaprinit. offindcompatiblenode returns a node pointer with a refcount incremented; we should use ofnodeput on it after processing. Added ofnodeput to prevent the refcount leak...
Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1
In the Linux kernel, the following vulnerability has been resolved: fbdev: imsttfb: fixed a resource leak in the probe. I have rewritten the error handling code, but the issue remains that if initimstt fails, we need to call iounmappar-cmap regs...
Astra Linux – Vulnerability in Thunderbird
A use-after-free was identified in the nsDNSService::Init code. This issue seems to occur rarely during startup. This vulnerability affects Firefox ESR 115.6 and Thunderbird 115.6...
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: mtd: maps: Fixed the refcount leak in apflashinit. offindmatchingnode returns a node pointer with a refcount incremented; we should use ofnodeput on it when there is no longer a need for it. Add the missing ofnodeput call to avoi...
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: ARM: OMAP2+: Fixed a refcount leak in oprsdssinitof. In omapdssfinddssofnode, the function offindcompatiblenode is called to obtain a device node. offindcompatiblenode returns a node pointer with a refcount incremented; we...
Astra Linux – Vulnerability in cloud-init
Sensitive data may have been exposed in cloud-init logs that are readable to the world before version 22.3, when schema failures were reported. This leakage could involve hashed passwords...
Astra Linux – Vulnerability in h2database
The H2 Console before version 2.1.210 allowed remote attackers to execute arbitrary code through a jdbc:h2:mem JDBC URL that contained the IGNOREUNKNOWNSETTINGS=TRUE;FORBID CREATION=FALSE;INIT=RUNSCRIPT substring. This is a different vulnerability than CVE-2021-42392. source-iocs-preserved...
Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: locking/csdlock: The csdlockdebug parameter should be changed from earlyparam to setup. The csdlockdebug kernel-boot parameter is processed by the earlyparam function csdlockdebug. If this parameter is set, csdlockdebug invokes...
Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: usb: aspeed-vhub: Fixed a refcount leak bug in astvhubinitdesc. We should call ofnodeput for the reference returned by ofgetchildbyname, which has increased the refcount...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: Staging: fbtft: Core: Set smemlen before calling fbdeferredioinit. The fbtftframebufferalloc function calls fbdeferredioinit before initializing info-fix.smemlen. This value is set to zero by the framebufferalloc function. This...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: Wifi: mt76: mt7996: Added a NULL check in mt7996thermalinit. devmkasprintf may return a NULL pointer if it fails, but this returned value in mt7996thermalinit is not checked. Add a NULL check in mt7996thermalinit to handle the...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mld: avoid panic on init failure In the event of an error during initialization, inhwrestart will be set, but it will never be cleared. Instead, we will retry the initialization process. However, we will act as if ...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: ubifs: A memory leak was fixed in ubifssysfsinit. When using insmod ubifs.ko, a kmemleak was reported as follows: Unreferenced object: 0xffff88817fb1a780 size 8 Source: comm "insmod", pid 25265, jiffies 4295239702 age 100.130s He...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: vxlan: Fixed memory leaks in the error path. The memory allocated by vxlanvnigroupinit is not freed during the error path, leading to memory leaks 1. This issue was addressed by calling vxlanvnigroupuninit during the error pat...
Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: drm/vkms: Fixed a memory leak in vkmsinit. A memory leak was reported after the vkms module installation failed. Unreferenced object 0xffff88810bc28520 size 16: Command: modprobe, PID 9662, Jiffies: 4298009455 Age: 42.590 seconds...
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: Ethernet: Aeroflex – Fix for a potential skb leak in grethinitrings The grethinitrings function does not free the newly allocated skb when dmamappingerror returns an error. Therefore, adding devkfreeskb is necessary to fix this...