225868 matches found
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15
A issue was discovered in include/asm-generic/tlb.h in the Linux kernel before version 5.19. Due to a race condition between unmapmappingrange and munmap, a device driver can free a page while it still has stale TLB entries. This only occurs in situations involving VMPFNMAP VMAs...
Astra Linux – Vulnerability in Linux 5.10
The Linux kernel before version 5.18.13 lacked a clear mechanism for handling the block start symbol .bss. This allowed Xen PV guest OS users to cause a denial of service or gain privileges...
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15
In l2capchanput of l2capcore, there is a potential use after free due to improper locking. This could lead to a local escalation of privileges without the need for additional execution privileges. User interaction is not required for exploitation. Product: Android Versions: Android kernel Android...
Astra Linux – Vulnerability in Linux 5.10, Linux
Product: Android Versions: Android kernel Android ID: A-224546354 References: Upstream kernel...
Astra Linux – Vulnerability in Linux, Linux 5.10
The function usb8devstartxmit in the file drivers/net/can/usb/usb8dev.c within the Linux kernel, up to version 5.17.1, contains a double-free...
Astra Linux – Vulnerability in Linux, Linux 5.10
A vulnerability was discovered in the drivers/usb/gadget/function/rndis.c file within the Linux kernel before version 5.16.10. The RNDIS USB gadget does not include validation for the size of the RNDISMSGSET command. Attackers can obtain sensitive information from the kernel memory...
Astra Linux – Vulnerability in Linux 5.15
A bug affects the ksmbd NTLMv2 authentication of the Linux kernel, and it is known to cause the operating system to crash immediately in Linux-based systems...
Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15
In the Linux kernel before version 6.1.6, a NULL pointer dereference bug in the traffic control subsystem allowed an unprivileged user to trigger a denial of service system crash through a crafted traffic control configuration set up using the "tc qdisc" and "tc class" commands. This issue affect...
Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10
In the net/sched/schcbq.c file of the Linux kernel, from version 6.1.4 onwards, cbqclassify allows attackers to cause a denial of service due to type confusion. Non-negative numbers can sometimes indicate a TCACTSHOT condition, rather than valid classification results, leading to improper...
Astra Linux – Vulnerability in Linux 5.15
A flaw was discovered in the unrestricted use of the BPFBTFLOAD function, which could lead to an out-of-bounds memory write in the Linux kernel’s BPF subsystem due to the way a user loads BTFs. This flaw allows a local user to crash the system or escalate their privileges...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: net: switchdev: The blocking notification chain is converted to a raw notification chain. A blocking notification chain uses a read-write semaphore to protect the integrity of the chain. The semaphore is acquired for writing when...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: drm/hyperv: Fixed an address space leak when the Hyper-V DRM device is removed. When a Hyper-V DRM device is probed, the driver allocates MMIO space for the vram and maps it as cacheable. If the device is removed, or if the devic...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Errors are now handled in mlx5chainscreatetable. In mlx5chainscreatetable, the return values of mlx5getfdbsubns and mlx5getflownamespace must be checked to prevent NULL pointer dereferences. If either function fails, th...
Astra Linux – Vulnerability found in Linux 6.1, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: cifs: Fixed an integer overflow issue while processing the acdirmax mount option. The user-provided mount parameter acdirmax, of type u32, is intended to have an upper limit. However, before this limit is validated, the value is...
Astra Linux – Vulnerability found in Linux 6.1, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: cifs: Fixed an integer overflow issue while processing the closetimeo mount option. The user-provided closetimeo mount parameter, of type u32, is intended to have an upper limit. However, before this limit is validated, the value...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Assign normalizedpixclk when color depth = 14 WHY & HOW A warning message appears: “WARNING: CPU: 4 PID: 459 at …/dcresource.c:3397 calculatephypixclks+0xef/0x100 amdgpu”. This occurs because the condition...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: rapidio: Fix an API misuse when rioaddnet fails. rioaddnet calls deviceregister, and it fails when deviceregister does. Therefore, putdevice should be used instead of kfree. Also, add "mport-net = NULL;" to avoid a...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: net: gso: fix ownership in udpgsosegment In udpgsosegment, the skb destructor is removed before segmenting the skb, but the reference to the socket remains intact. This issue arises if the original skb becomes orphaned later, as ...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: USB: serial: quatech2: fix null-ptr-deref in qt2processreadurb This patch addresses a null-ptr-deref in qt2processreadurb due to an incorrect bounds check in the following code: c if newport serial-numports deverr&port-dev, “%s -...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: bpf: Fixed the memory leak in bpfskselectreuseport As pointed out in the original comment, a lookup in sockmap can return a TCP ESTABLISHED socket. Such a TCP socket may have had SOATTACHREUSEPORTEBPF set before it became...