95 matches found
[SECURITY] [DLA 4193-1] linux-6.1 security update
Debian LTS Advisory DLA-4193-1 [email protected] https://www.debian.org/lts/security/ Ben Hutchings May 30, 2025 https://wiki.debian.org/LTS Package : linux-6.1 Version : 6.1.137-1deb11u1 CVE ID : CVE-2023-52857 CVE-2023-52927 CVE-2023-53034 CVE-2024-24855 CVE-2024-26656 CVE-2024-26739...
Debian dla-4102 : linux-config-6.1 - security update
The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4102 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4102-1 [email protected]...
[SECURITY] [DLA 4076-1] linux-6.1 security update
Debian LTS Advisory DLA-4076-1 [email protected] https://www.debian.org/lts/security/ Ben Hutchings March 01, 2025 https://wiki.debian.org/LTS Package : linux-6.1 Version : 6.1.6.1.128-1deb11u1 CVE ID : CVE-2022-49034 CVE-2023-52916 CVE-2023-52926 CVE-2024-26595 CVE-2024-27407...
Debian dla-4076 : linux-config-6.1 - security update
The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4076 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4076-1 [email protected]...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Skips inactive planes within ModeSupportAndSystemConfiguration. Reason Coverity reported a memory issue involving illegal access attempts. How The inactive planes are skipped...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: Net: Restrict SOREUSEPORT to inet sockets. After the bug was identified, crypto sockets could accidentally be destroyed due to a RCU call back, as discovered by zyzbot 1. Attempting to acquire a mutex in an RCU callback is not...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check numvalidsets before accessing readerwmsets. WHY & HOW numvalidsets needs to be checked to avoid a negative index when accessing readerwmsetsnumvalidsets - 1. This fix addresses an OVERLOAD issue reported by...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: The default value of “denominators” should be set to 1. WHAT & HOW Variables that are used as denominators and may not be assigned to other values should not have a default value of 0. Change their default value ...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: soc: qcom: pdr – Protect the locatoraddr field using the main mutex. If the service locator server is restarted quickly enough, the PDR can rewrite the locatoraddr fields concurrently. Protect these fields by placing the...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: Handling of errors when calling otx2mboxgetrsp in otx2flows.c has been improved. A check for the error pointer was added after calling otx2mboxgetrsp...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerabilities have been resolved: BPF, skmsg: Fixed NULL pointer dereferencing in skpsockskbingressenqueue. Fixed NULL pointer race conditions in skpsockskbingressenqueue, as reported by syzbot 1. 1 BUG: KCSAN: Data race in skpsock Drop and...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: netpoll: A race condition has been fixed in netpollowneractive. KCSAN detected a race condition in netpoll: - BUG: KCSAN: Data race in netrxaction/netpollsendskb. A write operation marked as 0xffff8881164168b0, 4 bytes is perform...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerabilities have been resolved: Firmware: armscpi: Check the DVFS OPP count returned by the firmware. A kernel crash occurs with the following call trace when the SCPI firmware returns an OPP count of zero. on some platforms, dvfsinfo.oppcount may be zero...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: bpf: Fixed an out-of-bounds write in triegetnextkey The triegetnextkey function allocates a node stack with a size of trie-maxprefixlen. However, it writes trie-maxprefixlen + 1 nodes to the stack when the stack is full. For...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: sh: intc: Fixed a use-after-free bug in registerintccontroller In the error handling for this function, the variable d is freed without ever removing it from the intclist. This could lead to a use-after-free condition. To fix thi...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerabilities have been resolved: wifi: iwlwifi: mvm: Fixed handling of response in iwlmvmsendrecoverycmd 1. The size of the response packet was not validated. 2. The response buffer was not freed. These issues can be resolved by switching to...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerabilities have been resolved: ftrace: Fixed a possible use-after-free issue in ftracelocation. KASAN reports a bug: BUG: KASAN: use-after-free in ftracelocation+0x90/0x120 Reading an 8-byte value at address ffff888141d40010 by task insmod/424 CPU: 8 PID: 4...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fixed the race condition issue caused by session lookup and expiration. The session reference count was incremented within the lock during the lookup operation, thereby avoiding the race condition related to session...
[SECURITY] [DLA 4008-1] linux-6.1 security update
Debian LTS Advisory DLA-4008-1 [email protected] https://www.debian.org/lts/security/ Ben Hutchings January 02, 2025 https://wiki.debian.org/LTS Package : linux-6.1 Version : 6.1.119-1deb11u1 CVE ID : CVE-2022-45888 CVE-2023-31083 CVE-2023-45896 CVE-2023-52760 CVE-2023-52812...
RedHat Linux 6.1 i386 Tmpwatch Recursive Write DoS Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1664/info Any user with write access to /tmp or /var/tmp, can induce tmpwatch to cause Red Hat and others runnng tmpwatch from cron to stop responding, and possibly require a hard reboot. This is accomplished by creating ...