Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: ocfs2: Fixed races between hole punching and AIO+DIO. After the commit “ocfs2: return real error code in ocfs2diowrgetblock”, fstests/generic/300 now sometimes fail instead of always failing...

[SECURITY] Fedora 42 Update: qt6-qtserialport-6.9.3-1.fc42

Qt Serial Port provides the basic functionality, which includes configuring, I/O operations, getting and setting the control signals of the RS-232 pinouts...

SUSE CVE-2022-50493

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix crash when I/O abort times out While performing CPU hotplug, a crash with the following stack was seen: Call Trace: qla24xxprocessresponsequeue+0x42a/0x970 qla2xxx qla2x00startnvmemq+0x3a2/0x4b0 qla2xxx...

SUSE CVE-2023-52732

In the Linux kernel, the following vulnerability has been resolved: ceph: blocklist the kclient when receiving corrupted snap trace When received corrupted snap trace we don't know what exactly has happened in MDS side. And we shouldn't continue IOs and metadatas access to MDS, which may corrupt ...

The vulnerability of the memory management block for IOMMU input/output operations in MediaTek’s microprogramming software allows a hacker to enhance their privileges.

The vulnerability of the memory management block for IOMMU input/output operations in MediaTek’s microprogramming software is related to writing beyond buffer boundaries in memory. Exploiting this vulnerability can allow attackers to enhance their privileges...

kernel: Linux kernel: Hard lockup in lpfc driver leads to Denial of Service

A flaw was found in the Linux kernel. A local user could trigger a hard lockup by concurrently reading the rxmonitor from debugfs during I/O operations in the lpfc driver. This concurrency issue, caused by insufficient spin lock protection, leads to a system crash and results in a Denial of Servi...

SUSE-SU-2017:2873-1 Security update for xen

This update for xen fixes several issues: These security issues were fixed: - CVE-2017-5526: The ES1370 audio device emulation support was vulnerable to a memory leakage issue allowing a privileged user inside the guest to cause a DoS and/or potentially crash the Qemu process on the host bsc10597...

qemu: incorrect banked access bounds checking in vga module

An out-of-bounds read/write access flaw was found in the way QEMU's VGA emulation with VESA BIOS Extensions VBE support performed read/write operations using I/O port methods. A privileged guest user could use this flaw to execute arbitrary code on the host with the privileges of the host's QEMU...