Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

An incorrect read request flaw was detected in the Infrared Transceiver USB driver within the Linux kernel. This issue occurs when a user attaches a malicious USB device. A local user could exploit this flaw to deplete system resources, resulting in a denial of service or potentially causing the...

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15

A race condition flaw was discovered in the Linux kernel sound subsystem due to improper locking mechanisms. This could lead to a NULL pointer derefrence during the handling of the SNDCTLDSPSYNC ioctl command. A privileged local user such as root or a member of the audio group could exploit this...

Astra Linux – Vulnerability in Linux, Linux 5.10

In the Linux kernel before version 5.15.13, the file drivers/net/ethernet/mellanox/mlx5/core/steering/drdomain.c misinterprets the return value of mlx5getuarspage. It expects the return value to be NULL in the error case, but in reality, it is an error pointer...

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

A vulnerability related to out-of-bounds memory access was discovered in the Linux kernel’s XFS file system, regarding how a user restores an XFS image after a failure with a dirty log journal. This vulnerability allows a local user to crash the system or potentially escalate their privileges on...

Astra Linux – Vulnerability in Linux 5.10

A vulnerability was discovered in the Linux kernel and is classified as problematic. The affected component is the function rlbarpxmit in the file drivers/net/bonding/bondalb.c of the IPsec module. This vulnerability causes a memory leak. It is recommended that a patch be applied to address this...

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

A vulnerability has been discovered in the Linux kernel. It has been identified as a problem. The component affected by this vulnerability is the “ipv6renewoptions” function within the IPv6 handler. This vulnerability causes a memory leak. The attack can be launched remotely. It is recommended th...

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15

In the Linux kernel, the following vulnerability has been resolved: scsi: ses: Fixed possible out-of-bounds accesses to addldescptr. Sanitized possible out-of-bounds accesses to addldescptr in sesenclosuredataprocess...

Astra Linux – Vulnerability found in Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: f2fs: fixed the issue of tagging the “gcing” flag on the page during block migration. It is necessary to add the missing “gcing” flag on the page during block migration, in order to ensure that the migrated data is persisted duri...

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: jbd2: Check ‘jh-btransaction’ before removing it from the checkpoint. The following process will corrupt the ext4 image: Step 1: jbd2journalcommittransaction jbd2journalinsertcheckpointjh, committransaction // Place jh into...

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: jbd2: Prevent softlockup in jbd2logdocheckpoint. Both jbd2logdocheckpoint and jbd2journalshrinkcheckpointlist periodically release the jlistlock after processing a batch of buffers to avoid long hold times on the jlistlock...

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: f2fs: compress: fixed an issue that covered the reserve,releasecompressblocks function with the cprwsem lock. This fix is necessary to avoid race conditions with the checkpoint mechanism. Otherwise, filesystem metadata, including...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: Revert “f2fs: block cache/dio write during f2fsenablecheckpoint”. This revert commits 196c81fdd438f7ac429d5639090a9816abb9760a. The original patch might cause a deadlock; revert it. write remount - writebegin - lockpage --- lock ...

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: net/packet: a race condition in packetsetring and packetnotifier has been fixed. When packetsetring releases po-bindlock, another thread may execute packetnotifier and process an NETDEVUP event. This race condition is similar to...

Astra Linux – Vulnerability in Linux, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: atm: nicstar: Fixed a possible use-after-free in nicstarcleanup The remove path of this module calls deltimer. However, that function does not wait until the timer handler finishes. This means that the timer handler may still be...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: Bluetooth: hcisync: Fixed a UAF in lereadfeaturescomplete. This fix addresses the issue where the hciconn variable was freed before lereadfeaturescomplete, but after hcilereadremotefeaturessync. As a result, hciconndel -...

Astra Linux – Vulnerability in Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: net/sched: actct: fix ref leak when switching zones When switching zones or network namespaces without performing a ct clear between them, a reference to the old ct entry is still leaked. This occurs because tcfctskbnfctcached...

Astra Linux – Vulnerability in Linux 5.15

A issue was discovered in the Linux kernel through version 5.16-rc6. The function imxregisteruartclocks in drivers/clk/imx/clk.c lacks a check on the return value of kcalloc, which can lead to a null pointer dereferencing...

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: smb: client: Rejects descriptions of keys of type cifs.spnego from the user space. Keys of type cifs.spnego contain fields that carry authority information, such as pid, uid, creduid, and upcalltarget. The cifs.upcall function...

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerability has been resolved: serial: 8250: omap: Do not skip resource freeing if pmruntimeresumeandget fails. Returning an error code from .remove causes the driver core to emit a rather useless error message: remove callback returned a non-zero value. This...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs: The commit test for ctx always results in memory deallocation. The damonctx used to test online DAMON parameters commits inputs only after the test fails. This means that memory is leaked for every successful onli...