4314 matches found
CVE-2024-44073
The Miniscript aka rust-miniscript library before 12.2.0 for Rust allows stack consumption because it does not properly track tree depth...
SUSE CVE-2024-43823
In the Linux kernel, the following vulnerability has been resolved: PCI: keystone: Fix NULL pointer dereference in case of DT error in kspciesetuprcappregs If IORESOURCEMEM is not provided in Device Tree due to any error, resourcelistfirsttype will return NULL and pciparserequestofpciranges will...
DEBIAN-CVE-2024-43823
In the Linux kernel, the following vulnerability has been resolved: PCI: keystone: Fix NULL pointer dereference in case of DT error in kspciesetuprcappregs If IORESOURCEMEM is not provided in Device Tree due to any error, resourcelistfirsttype will return NULL and pciparserequestofpciranges will...
AZL-48492 CVE-2024-43823 affecting package kernel 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: PCI: keystone: Fix NULL pointer dereference in case of DT error in kspciesetuprcappregs If IORESOURCEMEM is not provided in Device Tree due to any error, resourcelistfirsttype will return NULL and pciparserequestofpciranges will...
UBUNTU-CVE-2024-43823
In the Linux kernel, the following vulnerability has been resolved: PCI: keystone: Fix NULL pointer dereference in case of DT error in kspciesetuprcappregs If IORESOURCEMEM is not provided in Device Tree due to any error, resourcelistfirsttype will return NULL and pciparserequestofpciranges will...
CVE-2024-43823 PCI: keystone: Fix NULL pointer dereference in case of DT error in ks_pcie_setup_rc_app_regs()
In the Linux kernel, the following vulnerability has been resolved: PCI: keystone: Fix NULL pointer dereference in case of DT error in kspciesetuprcappregs If IORESOURCEMEM is not provided in Device Tree due to any error, resourcelistfirsttype will return NULL and pciparserequestofpciranges will...
CVE-2024-43823 PCI: keystone: Fix NULL pointer dereference in case of DT error in ks_pcie_setup_rc_app_regs()
In the Linux kernel, the following vulnerability has been resolved: PCI: keystone: Fix NULL pointer dereference in case of DT error in kspciesetuprcappregs If IORESOURCEMEM is not provided in Device Tree due to any error, resourcelistfirsttype will return NULL and pciparserequestofpciranges will...
CVE-2024-43823 PCI: keystone: Fix NULL pointer dereference in case of DT error in ks_pcie_setup_rc_app_regs()
In the Linux kernel, the following vulnerability has been resolved: PCI: keystone: Fix NULL pointer dereference in case of DT error in kspciesetuprcappregs If IORESOURCEMEM is not provided in Device Tree due to any error, resourcelistfirsttype will return NULL and pciparserequestofpciranges will...
CVE-2024-43823
In the Linux kernel, the following vulnerability has been resolved: PCI: keystone: Fix NULL pointer dereference in case of DT error in kspciesetuprcappregs If IORESOURCEMEM is not provided in Device Tree due to any error, resourcelistfirsttype will return NULL and pciparserequestofpciranges will...
tty: serial: ma35d1: Add a NULL check for of_node
...
ROS-20240814-03
A vulnerability in the i40e component of the Linux operating system kernel is related to the incorrect release of a client instance, and subsequent removal of the i40e module. Exploitation of the vulnerability could allow an attacker to cause a denial of service A vulnerability in the RDMA/srp...
USN-6949-2 linux-lowlatency, linux-raspi vulnerabilities
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM32 architecture; - ARM64 architecture; - M68K architecture; - OpenRISC architecture; - PowerPC architecture; -...
Important: Red Hat Security Advisory: kernel-rt security update
An update for kernel-rt is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...
Ubuntu 24.04 LTS : Linux kernel (Azure) vulnerabilities (USN-6952-2)
"The remote Ubuntu 24.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6952-2 advisory. Benedict Schlter, Supraja Sridhara, Andrin Bertschi, and Shweta Shinde discovered that an untrusted hypervisor could inject malicious VC interrupts and...
RHEL 8 : kernel-rt (RHSA-2024:5282)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:5282 advisory. The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirement...
USN-6955-1 linux-oem-6.8 vulnerabilities
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM32 architecture; - ARM64 architecture; - M68K architecture; - OpenRISC architecture; - PowerPC architecture; -...
Ubuntu 24.04 LTS : Linux kernel vulnerabilities (USN-6952-1)
"The remote Ubuntu 24.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6952-1 advisory. Benedict Schlter, Supraja Sridhara, Andrin Bertschi, and Shweta Shinde discovered that an untrusted hypervisor could inject malicious VC interrupts and...
kernel: cifs: fix mid leak during reconnection after timeout threshold
In the Linux kernel, the following vulnerability has been resolved: cifs: fix mid leak during reconnection after timeout threshold When the number of responses with status of STATUSIOTIMEOUT exceeds a specified threshold NUMSTATUSIOTIMEOUT, we reconnect the connection. But we do not return the mi...
Ubuntu 22.04 LTS / 24.04 LTS : Linux kernel vulnerabilities (USN-6949-1)
"The remote Ubuntu 22.04 LTS / 24.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6949-1 advisory. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update...
UBUNTU-CVE-2024-42248
In the Linux kernel, the following vulnerability has been resolved: tty: serial: ma35d1: Add a NULL check for ofnode The pdev-dev.ofnode can be NULL if the "serial" node is absent. Add a NULL check to return an error in such cases...