CVE-2022-48871 tty: serial: qcom-geni-serial: fix slab-out-of-bounds on RX FIFO buffer

In the Linux kernel, the following vulnerability has been resolved: tty: serial: qcom-geni-serial: fix slab-out-of-bounds on RX FIFO buffer Driver's probe allocates memory for RX FIFO port-rxfifo based on default RX FIFO depth, e.g. 16. Later during serial startup the qcomgeniserialportsetup...

CVE-2022-48871

In the Linux kernel, the following vulnerability has been resolved: tty: serial: qcom-geni-serial: fix slab-out-of-bounds on RX FIFO buffer Driver's probe allocates memory for RX FIFO port-rxfifo based on default RX FIFO depth, e.g. 16. Later during serial startup the qcomgeniserialportsetup...

CVE-2022-48871

In CVE-2022-48871, the Linux kernel fix targets tty: serial: qcom-geni-serial slab-out-of-bounds on the RX FIFO buffer. The probe allocates port->rx_fifo using a default depth (e.g., 16); during serial startup, port->rx_fifo_depth is updated to match device capabilities (e.g., 32). The RX U...

SUSE CVE-2024-43861

In the Linux kernel, the following vulnerability has been resolved: net: usb: qmiwwan: fix memory leak for not ip packets Free the unused skb when not ip packets arrive...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a competing condition in the gadgetfs file system for the USB component...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a potential null pointer dereference issue in the usb/gadget/fncm component...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a usb component that can cause the kernel to crash when the controller is unresponsive...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a slab out-of-bounds issue in the tty/serial component in the qcom-geni-serial driver...

The vulnerability of the industrial server for serial devices of Korenix JetPort, related to the lack of measures taken to clean data at the management level, allows attackers to circumvent existing security restrictions.

The vulnerability of the industrial server for serial devices of Korenix JetPort is related to the lack of measures taken to clean data at the management level. Exploiting this vulnerability allows a malicious actor to bypass existing security restrictions remotely...

The vulnerability of the industrial server for serial devices of Korenix JetPort lies in the absence of encrypted confidential data, which allows attackers to circumvent existing security restrictions.

The vulnerability of the industrial server for serial devices of Korenix JetPort lies in the absence of encrypted confidential data. Exploiting this vulnerability could allow a malicious actor to bypass existing security restrictions remotely...

The vulnerability of the industrial server for serial devices of Korenix JetPort, related to deficiencies in authentication procedures, allows attackers to circumvent existing security restrictions.

The vulnerability of the industrial server for serial devices of Korenix JetPort is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to circumvent existing security restrictions remotely...

SUSE CVE-2024-42279

In the Linux kernel, the following vulnerability has been resolved: spi: microchip-core: ensure TX and RX FIFOs are empty at start of a transfer While transmitting with rxlen == 0, the RX FIFO is not going to be emptied in the interrupt handler. A subsequent transfer could then read crap from the...

UBUNTU-CVE-2024-42279

In the Linux kernel, the following vulnerability has been resolved: spi: microchip-core: ensure TX and RX FIFOs are empty at start of a transfer While transmitting with rxlen == 0, the RX FIFO is not going to be emptied in the interrupt handler. A subsequent transfer could then read crap from the...

OESA-2024-1994 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: USB: core: Make doproccontrol and doprocbulk killable The USBDEVFSCONTROL and USBDEVFSBULK ioctls invoke usbstartwaiturb, which contains an uninterruptible wait...

OESA-2024-1995 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: USB: core: Make doproccontrol and doprocbulk killable The USBDEVFSCONTROL and USBDEVFSBULK ioctls invoke usbstartwaiturb, which contains an uninterruptible wait...

usb: typec: tcpm: Check for port partner validity before consuming it

...

spi: fix null pointer dereference within spi_sync

...

tty: serial: ma35d1: Add a NULL check for of_node

...

USB: serial: mos7840: fix crash on resume

...

GNCC GC2 安全漏洞

The GNCC GC2 is an indoor security camera from GNCC. A security vulnerability exists in GNCC GC2. An attacker exploited the vulnerability to obtain a privileged command shell via the UART debug port...