7464 matches found
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: nvme-rdma: Destroy the cmid before destroying the qp to avoid using it after freeing it. We should always destroy the cmid before destroying the qp to prevent accessing the cma after the qp is destroyed. In the RDMA connection...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Avoid issuing a WARNON when configuring MQPRIO with HTB offload enabled. When attempting to enable MQPRIO while HTB offload is already configured, the driver currently returns -EINVAL and triggers a WARNON, resulting i...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: “ice”: fixed the sizing of vsi-txqmap. The approach of having XDP queues per CPU, regardless of the user’s settings, exposed a hidden bug that could occur when the number of Rx queues differs from the number of Tx queues...
Astra Linux - уязвимость в linux, linux-5.10
In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fixed corruption in the listadd function within lpfcdraintxq. When parsing the txq list in lpfcdraintxq, the driver attempts to pass the requests to the adapter. If this attempt fails, a local “failmsg” string is set...
Astra Linux - уязвимость в linux-5.10, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Ensure that the DAID handling is completed before deleting an NPIV instance. Deleting an NPIV instance requires that all fabric ndlps be released before NPIV’s resources can be destroyed. Failure to release the fabric...
Astra Linux - уязвимость в linux-6.1, linux-5.15
In the Linux kernel, the following vulnerabilities have been resolved: net: mana: Fixed error handling in manacreatetxq/rxq’s NAPI cleanup Currently, the napidisable function is called during the cleanup of rxq and txq, even before napi is enabled and hrtimer is initialized. This causes a kernel...
Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: Wifi: mac80211: mesh: Fixed a leak of meshpreqqueue objects The hwmp code uses objects of type meshpreqqueue, which are added to a list in ieee80211ifmesh to track mpath. We need to fix this issue. If the mpath is deleted, the...
Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: fixed the kernel crash if command allocation fails. If command allocation fails in nvmettcpalloccmds, the kernel crashes in nvmettcpreleasequeuework due to a NULL pointer dereferencing. In nvmet, it was unable to handl...
Astra Linux - уязвимость в linux-6.1
In the Linux kernel, the following vulnerability has been resolved: net: ks8851: Packets are queued in the IRQ handler instead of being disabled during the BH handling. Currently, the driver uses localbhdisable/localbhenable in its IRQ handler to avoid triggering netrxaction in the softirq contex...
Astra Linux - уязвимость в linux-5.10, linux
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: ffs: Prevent race condition during ffsep0queuewait When performing fast composition switching, there is a possibility that the process of ffsep0write/ffsep0read may enter a race condition due to ep0req being freed fr...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: sfc: Fixed the null pointer dereference in efxhardstartxmit. Trying to access the channel through the txqueue variable is incorrect because we can only be in this situation if txqueue is NULL. Therefore, we should not dereference...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: Block: Release rq/qos structures for queues without disk. The blkcginitqueue function may add rq/qos structures to the request queue. Previously, blkcleanupqueue called rqqosexit to release these structures. However, in the commi...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerabilities have been resolved: powerpc/qspinlock: Fixed deadlock in the MCS queue. If an interrupt occurs in queuedspinlockslowpath after we increment qnodesp-count and before node-lock is initialized, another CPU may see stale lock values in gettailqnode. ...
Astra Linux - уязвимость в linux
In the Linux kernel, the following vulnerability has been resolved: kyber: Fix for out-of-bounds access when preempted. The function blkmqschedbiomerge obtains the ctx and hctx for the current CPU, and passes the hctx to -biomerge. The function kyberbiomerge then obtains the ctx for the current C...
Astra Linux - уязвимость в linux-5.10, linux
A use-after-free issue was discovered in the driver/firewire component, specifically in the outbound PhyPacketCallback function within the Linux kernel. In this flaw, a local attacker with special privileges could cause a use-after-free error when queueevent fails...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fixed NULL pointer dereference in the KFD queue. Through KFD IOCTL fuzing, we encountered a NULL pointer dereference when calling kfdqueueacquirebuffers. Selected from commit 049e5bf3c8406f87c3d8e1958e0a16804fa1d530...
Astra Linux - уязвимость в linux-6.1
In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fixed the use-after-free of rsvqp on HIP08. Currently, rsvqp is freed before the ibunregisterdevice function is called on HIP08. During this time interval, users can still deregister MR, and rsvqp will be used in this...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerabilities have been resolved: Bluetooth: hcisync: fixed leaks when hcicmdsyncqueueonce fails When hcicmdsyncqueueonce returns an error, the destroy callback will not be called. Fixed the issue of leaking references/memory in cases where this error occurs...
Astra Linux - уязвимость в linux-5.10, linux
The nfqnlmangle function in net/netfilter/nfnetlinkqueue.c in the Linux kernel, as of version 5.18.14, allows remote attackers to cause a denial of service panic. This occurs because, in the case of an nfqueue verdict with a one-byte nftapayload attribute, an skbpull operation may encounter a...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Fixed a possible NULL pointer dereference in ufshcdaddcommandTrace. The kernel log indicates a crash in ufshcdaddcommandTrace due to a NULL pointer dereference when accessing hwq-id. This can occur if...