GSD-2022-1000296 libsubcmd: Fix use-after-free for realloc(..., 0)

libsubcmd: Fix use-after-free for realloc..., 0 This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.303 by commit...

GSD-2022-1000093 moxart: fix potential use-after-free on remove path

moxart: fix potential use-after-free on remove path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.301 by commit...

GSD-2022-1000080 usb: gadget: f_sourcesink: Fix isoc transfer for USB_SPEED_SUPER_PLUS

usb: gadget: fsourcesink: Fix isoc transfer for USBSPEEDSUPERPLUS This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.300 by commit...

GSD-2021-1002843 phonet/pep: refuse to enable an unbound pipe

phonet/pep: refuse to enable an unbound pipe This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.12 by commit...

GSD-2021-1002514 mtd: rawnand: fsmc: Fix timing computation

mtd: rawnand: fsmc: Fix timing computation This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.85 by commit...

GSD-2021-1002263 iavf: free q_vectors before queues in iavf_disable_vf

iavf: free qvectors before queues in iavfdisablevf This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.162 by commit...

GSD-2021-1002191 cfg80211: fix management registrations locking

cfg80211: fix management registrations locking This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15 by commit...

UVI-2021-1002109 powerpc/idle: Don't corrupt back chain when going idle

powerpc/idle: Don't corrupt back chain when going idle This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.14.15 by commit...

UVI-2021-1002076 comedi: vmk80xx: fix transfer-buffer overflows

comedi: vmk80xx: fix transfer-buffer overflows This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.79 by commit...

UVI-2021-1002047 powerpc/idle: Don't corrupt back chain when going idle

powerpc/idle: Don't corrupt back chain when going idle This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.76 by commit...

UVI-2021-1002009 powerpc/idle: Don't corrupt back chain when going idle

powerpc/idle: Don't corrupt back chain when going idle This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.156 by commit...

UVI-2021-1001926 scsi: core: Put LLD module refcnt after SCSI device is released

scsi: core: Put LLD module refcnt after SCSI device is released This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.4.292 by commit...

UVI-2021-1001819 powerpc/idle: Don't corrupt back chain when going idle

powerpc/idle: Don't corrupt back chain when going idle This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.156 by commit...

UVI-2021-1001733 cpufreq: schedutil: Destroy mutex before kobject_put() frees the memory

cpufreq: schedutil: Destroy mutex before kobjectput frees the memory This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.14.10 by commit...

UVI-2021-1001701 HID: amd_sfh: Fix potential NULL pointer dereference - take 2

HID: amdsfh: Fix potential NULL pointer dereference - take 2 This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.14.10 by commit...

UVI-2021-1001644 net: sched: flower: protect fl_walk() with rcu

net: sched: flower: protect flwalk with rcu This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.71 by commit...

UVI-2021-1001593 net: sched: flower: protect fl_walk() with rcu

net: sched: flower: protect flwalk with rcu This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.151 by commit...

UVI-2021-1001562 hwmon: (mlxreg-fan) Return non-zero value when fan current state is enforced from sysfs

hwmon: mlxreg-fan Return non-zero value when fan current state is enforced from sysfs This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.209 ...

UVI-2021-1001544 net: macb: fix use after free on rmmod

net: macb: fix use after free on rmmod This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.249 by commit...

UVI-2021-1001449 watchdog: sc520_wdt: Fix possible use-after-free in wdt_turnoff()

watchdog: sc520wdt: Fix possible use-after-free in wdtturnoff This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.276 by commit...