Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: can: j1939: prevents deadlock by changing j1939sockslock to rwlock. The following 3 locks may race against each other, causing a deadlock situation in the Syzbot bug report: - j1939sockslock - activesessionlistlock -...

kernel: can: j1939: prevent deadlock by changing j1939_socks_lock to rwlock

A vulnerability was found in the Linux kernel's Controller Area Network CAN protocol, within the J1939 protocol implementation. This issue occurs due to a potential deadlock caused by a race condition involving three locks: j1939sockslock, activesessionlistlock, and sksessionqueuelock. This issue...

The vulnerability of the j1939Session_skbDropOld() function in the net/can/j1939/transport.c module allows attackers to compromise the confidentiality, integrity, and accessibility of protected information when dealing with J1939 sockets, CAN interfaces, and Linux kernel components.

The vulnerability of the j1939SessionskbDropOld function in the net/can/j1939/transport.c module, which handles J1939 sockets for CAN interfaces in Linux operating systems, is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to...

SUSE CVE-2023-52638

In the Linux kernel, the following vulnerability has been resolved: can: j1939: prevent deadlock by changing j1939sockslock to rwlock The following 3 locks would race against each other, causing the deadlock situation in the Syzbot bug report: - j1939sockslock - activesessionlistlock -...