GHSA-M578-W5VF-RFCM Oj: Use-After-Free in Oj::Parser SAJ Long Key Callback

Summary Oj::Parser in SAJ mode does not protect cached object keys ≥ 35 bytes from garbage collection. A Ruby callback that triggers GC inside hashend can cause the key string to be reclaimed while the C parser still holds a pointer to it. The subsequent access to the freed string VALUE results i...

Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: skbuff: Account for tail adjustment during pull operations Extending the tail of a data structure can have some unexpected side effects if a program uses a helper function like BPFFUNCskbpulldata to read partial content beyond th...

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: net: Avoid potential underflow in qdiscpktleninit with UFO After committing 7c6d2ecbda83 “net: Be more gentle about silly GSO requests coming from user”, the virtionethdrtoskb function added sanity checks to detect malicious...

Astra Linux – Vulnerability in advancecomp

It was discovered that Advancecomp v2.3 contains a segmentation fault...

Astra Linux – Vulnerability in Firefox and Thunderbird

When segmenting specially crafted text, segmentation may corrupt memory, leading to a potentially exploitable crash. This vulnerability has been fixed in Firefox 134, Firefox ESR 128.6, Thunderbird 134, and Thunderbird 128.6...

Astra Linux – Vulnerability in Capstone

Capstone 3.0.4 has a out-of-bounds vulnerability SEGV caused by a read memory access in X86insnregintel in arch/X86/X86Mapping.c...

Astra Linux – Vulnerability in advancecomp

A segmentation fault flaw was detected in the Advancecomp package. This may result in reduced availability...

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: net: prevented skb corruption during frag list segmentation Ian reported several instances of skb corruption triggered by rx-gro-list, resulting in similar errors: 62.624003 BUG: kernel NULL pointer dereference, address:...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: dmaengine: xilinx: xdma: Fixed regmap maxregister The maxregister field is assigned the size of the register memory region, rather than the offset of the last register. As a result, reading from the regmap via debugfs can cause a...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: libbpf: Null-pointer dereferencing is prevented when the program to be loaded does not have a BTF. In bpfobjecloadprog, there is no guarantee that obj-btf is not NULL when it is passed to btffd. This function does not perform any...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: Net: Ethernet: ti: am65-cpsw: Fixed segmentation fault during module unloading. The call to am65cpswnussphylinkcleanup has been moved to after am65cpswnusscleanupndev, so phylink remains valid. This prevents the segmentation faul...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: Net: Properly handles tunneled traffic when using GSO fallback for IPV6CSUM. NETIFFIPV6CSUM only indicates support for packet checksum offloading without IPv6 extension headers. Packets with extension headers must rely on...

Astra Linux – Vulnerability in e2fsprogs

A out-of-bounds read/write vulnerability was discovered in e2fsprogs 1.46.5. This issue results in a segmentation fault and may allow for arbitrary code execution through a specially crafted filesystem...

Astra Linux – Vulnerability in htmldoc

A vulnerability was discovered in htmldoc version 1.9.15. This vulnerability occurs in the gifgetcode function, where an out-of-bounds stack read operation takes place. The vulnerability manifests itself when opening a malicious GIF file, potentially leading to a crash segmentation fault...

Astra Linux – Vulnerability in Mariadb 10.3

It has been discovered that MariaDB Server v10.7 and earlier contains a segmentation fault due to the component sql/sqlclass.cc...

Astra Linux – Vulnerability in libde265

It was discovered that Libde265 v1.0.8 contains a segmentation violation due to the use of applysaointernal in sao.cc. This vulnerability allows attackers to cause a Denial of Service DoS attack through a crafted video file...

Astra Linux – Vulnerability in Samba

A flaw was discovered in Samba. Users of Samba AD can cause the server to access uninitialized data through an LDAP add or modify request, typically resulting in a segmentation fault...

Astra Linux – Vulnerability in Mariadb 10.3

It has been discovered that MariaDB Server v10.9 and earlier contain a segmentation fault through the component sql/itemcmpfunc.cc...

Astra Linux – Vulnerability in exiv2

An invalid memory address dereferencing was discovered in the Exiv2::StringValueBase::read method in value.cpp of Exiv2 0.26. This vulnerability causes a segmentation fault and results in the application crashing, leading to a denial of service...

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: net: fix udp gsoskbSegment after pulling from fragList The commit a1e40ac5b5e9 “net: gso: fix udp gso fragList segmentation after pulling from fragList” detected invalid geometries in the fragList skbSegments and redirected them...