CVE-2024-20329 Cisco Adaptive Security Appliance Software Remote Command Injection Vulnerability

A vulnerability in the SSH subsystem of Cisco Adaptive Security Appliance ASA Software could allow an authenticated, remote attacker to execute operating system commands as root. This vulnerability is due to insufficient validation of user input. An attacker could exploit this vulnerability by...

The vulnerability of the `__bpf_try_make_writable()` function (net/core/filter.c) in the bpf subsystem of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the bpftrymakewritable function net/core/filter.c in the bpf subsystem of the Linux operating system is related to a potential overflow condition. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of protecte...

The vulnerability of the create_mute_led_cdev() function (sound/pci/hda/hda_generic.c) in the ALSA sound subsystem of the Linux operating system allows a hacker to exploit their privileges.

The vulnerability of the createmuteledcdev function sound/pci/hda/hdageneric.c in the ALSA sound subsystem of the Linux operating system is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to increase their privileges...

The vulnerability in the Microprogramming Software Subsystem of the Intel Converged Security and Manageability Engine (CSME) allows a perpetrator to trigger a service failure or increase their privileges.

The vulnerability in the Intel Converged Security and Manageability Engine CSME microprogramming subsystem is related to incorrect checking of the return value of a method or function. Exploiting this vulnerability can allow an attacker to cause a service failure or increase their privileges...

PT-2024-9152 · Cisco · Cisco Asa

Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliance ASA Software affected versions not specified Description: The issue is related to insufficient validation of user input in the SSH subsystem, allowing an authenticated, remote attacker to execute operating...

SUSE CVE-2022-48951

In the Linux kernel, the following vulnerability has been resolved: ASoC: ops: Check bounds for second channel in sndsocputvolswsx The bounds checks in sndsocputvolswsx are only being applied to the first channel, meaning it is possible to write out of bounds values to the second channel in stere...

SUSE CVE-2022-48992

In the Linux kernel, the following vulnerability has been resolved: ASoC: soc-pcm: Add NULL check in BE reparenting Add NULL check in dpcmbereparent API, to handle kernel NULL pointer dereference error. The issue occurred in fuzzing test...

PT-2024-37055

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.12.0-rc3 Description A potential deadlock issue has been identified in the Linux kernel's f2fs subsystem. The issue arises from a possible circular locking dependency detected in the f2fs record stop reason...

DEBIAN-CVE-2022-49005

In the Linux kernel, the following vulnerability has been resolved: ASoC: ops: Fix bounds check for sx controls For sx controls the semantics of the max field is not the usual one, max is the number of steps rather than the maximum value. This means that our check in sndsocputvolswsx needs to jus...

DEBIAN-CVE-2022-48992

In the Linux kernel, the following vulnerability has been resolved: ASoC: soc-pcm: Add NULL check in BE reparenting Add NULL check in dpcmbereparent API, to handle kernel NULL pointer dereference error. The issue occurred in fuzzing test...

DEBIAN-CVE-2022-48951

In the Linux kernel, the following vulnerability has been resolved: ASoC: ops: Check bounds for second channel in sndsocputvolswsx The bounds checks in sndsocputvolswsx are only being applied to the first channel, meaning it is possible to write out of bounds values to the second channel in stere...

UBUNTU-CVE-2022-48959

In the Linux kernel, the following vulnerability has been resolved: net: dsa: sja1105: fix memory leak in sja1105setupdevlinkregions When dsadevlinkregioncreate failed in sja1105setupdevlinkregions, priv-regions is not released...

UBUNTU-CVE-2022-49021

In the Linux kernel, the following vulnerability has been resolved: net: phy: fix null-ptr-deref while probe failed I got a null-ptr-deref report as following when doing fault injection test: BUG: kernel NULL pointer dereference, address: 0000000000000058 Oops: 0000 1 PREEMPT SMP KASAN PTI CPU: 1...

UBUNTU-CVE-2022-48951

In the Linux kernel, the following vulnerability has been resolved: ASoC: ops: Check bounds for second channel in sndsocputvolswsx The bounds checks in sndsocputvolswsx are only being applied to the first channel, meaning it is possible to write out of bounds values to the second channel in stere...

UBUNTU-CVE-2022-48954

In the Linux kernel, the following vulnerability has been resolved: s390/qeth: fix use-after-free in hsci KASAN found that addr was dereferenced after br2deveventwork was freed. ================================================================== BUG: KASAN: use-after-free in...

AZL-51467 CVE-2024-49994 affecting package kernel for versions less than 6.6.76.1-1

In the Linux kernel, the following vulnerability has been resolved: block: fix integer overflow in BLKSECDISCARD I independently rediscovered commit 22d24a544b0d49bbcbd61c8c0eaf77d3c9297155 block: fix overflow in blkioctldiscard but for secure erase. Same problem: uint64t r2 = 512,...

AZL-51797 CVE-2024-49990 affecting package kernel 6.6.126.1-1

In the Linux kernel, the following vulnerability has been resolved: drm/xe/hdcp: Check GSC structure validity Sometimes xegsc is not initialized when checked at HDCP capability check. Add gsc structure check to avoid null pointer error...

UBUNTU-CVE-2024-49929

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: avoid NULL pointer dereference iwlmvmtxskbsta and iwlmvmtxmpdu verify that the mvmvsta pointer is not NULL. It retrieves this pointer using iwlmvmstafrommac80211, which is dereferencing the ieee80211sta pointe...

SUSE CVE-2024-47751

In the Linux kernel, the following vulnerability has been resolved: PCI: kirin: Fix buffer overflow in kirinpcieparseport Within kirinpcieparseport, the pcie-numslots is compared to pcie-gpioidreset size MAXPCISLOTS which is correct and would lead to an overflow. Thus, fix condition to...

AZL-50918 CVE-2024-49852 affecting package kernel for versions less than 6.6.56.1-5

In the Linux kernel, the following vulnerability has been resolved: scsi: elx: libefc: Fix potential use after free in efcnportvportdel The krefput function will call nport-release if the refcount drops to zero. The nport-release release function is efcnportfree which frees "nport". But then we...