500 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-49328
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mt76: fix use-after-free by removing a non-RCU wcid pointer Fixes an issue caught by KASAN about use- after-free in mt76txqschedule by protecting mtxq-wcid with...
Linux Distros Unpatched Vulnerability : CVE-2021-47650
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ASoC: soc-compress: prevent the potentially use of null pointer There is one call trace that...
Linux Distros Unpatched Vulnerability : CVE-2024-36949
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - amd/amdkfd: sync all devices to wait all processes being evicted If there are more than one device doing reset in parallel, the first device will call...
Linux Distros Unpatched Vulnerability : CVE-2024-38607
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - macintosh/via-macii: Fix BUG: sleeping function called from invalid context The via-macii ADB driver calls requestirq after disabling hard interrupts. But...
Linux Distros Unpatched Vulnerability : CVE-2022-49073
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ata: satadwc460ex: Fix crash due to OOB write the driver uses libata's tag values from in...
Linux Distros Unpatched Vulnerability : CVE-2024-46836
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - usb: gadget: aspeedudc: validate endpoint index for ast udc We should verify the bound of the array to assure that host may not manipulate the index to point pa...
Linux Distros Unpatched Vulnerability : CVE-2022-49397
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: phy: qcom-qmp: fix struct clk leak on probe errors Make sure to release the pipe clock...
Linux Distros Unpatched Vulnerability : CVE-2024-26733
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - arp: Prevent overflow in arpreqget. syzkaller reported an overflown write in arpreqget. 0 When ioctlSIOCGARP is issued, arpreqget looks up an neighbour entry an...
Linux Distros Unpatched Vulnerability : CVE-2021-46988
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: userfaultfd: release page in error path to avoid BUGON Consider the following sequence of...
Linux Distros Unpatched Vulnerability : CVE-2024-42101
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/nouveau: fix null pointer dereference in nouveauconnectorgetmodes In nouveauconnectorgetmodes, the return value of drmmodeduplicate is assigned to mode, whi...
Linux Distros Unpatched Vulnerability : CVE-2022-49271
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - cifs: prevent bad output lengths in smb2ioctlqueryinfo When calling smb2ioctlqueryinfo with smbqueryinfo::flags=PASSTHRUFSCTL and...
Linux Distros Unpatched Vulnerability : CVE-2022-48804
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - vtioctl: fix arrayindexnospec in vtsetactivate arrayindexnospec ensures that an out-of-bounds value is set to zero on the transient path. Decreasing the value b...
Linux Distros Unpatched Vulnerability : CVE-2024-36016
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tty: ngsm: fix possible out-of-bounds in gsm0receive Assuming the following: - side A configures the ngsm in basic option mode - side B sends the header of a...
Linux Distros Unpatched Vulnerability : CVE-2024-36889
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: mptcp: ensure sndnxt is properly initialized on connect Christoph reported a splat hinting a...
Linux Distros Unpatched Vulnerability : CVE-2024-41035
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - USB: core: Fix duplicate endpoint bug by clearing reserved bits in the descriptor Syzbot has identified a bug in usbcore see the Closes: tag below caused by our...
Linux Distros Unpatched Vulnerability : CVE-2024-46815
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/amd/display: Check numvalidsets before accessing readerwmsets WHY & HOW numvalidsets needs to be checked to avoid a negative index when accessing...
Linux Distros Unpatched Vulnerability : CVE-2024-46828
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: sched: schcake: fix bulk flow accounting logic for host fairness In schcake, we keep track o...
Linux Distros Unpatched Vulnerability : CVE-2024-35886
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ipv6: Fix infinite recursion in fib6dumpdone. syzkaller reported infinite recursive calls of fib6dumpdone during netlink socket destruction. 1 From the log,...
Linux Distros Unpatched Vulnerability : CVE-2024-26725
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: dpll: fix possible deadlock during netlink dump operation Recently, I've been hitting...
Linux Distros Unpatched Vulnerability : CVE-2024-26845
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - scsi: target: core: Add TMF to tmrlist handling An abort that is responded to by iSCSI itself is added to tmrlist but does not go to target core. A LUNRESET tha...