CVE-2022-49568

In the Linux kernel, the following vulnerability has been resolved: KVM: Don't null dereference ops-destroy A KVM device cleanup happens in either of two callbacks: 1 destroy which is called when the VM is being destroyed; 2 release which is called when a device fd is closed. Most KVM devices use...

CVE-2022-49567

In the Linux kernel, the following vulnerability has been resolved: mm/mempolicy: fix uninit-value in mpolrebindpolicy mpolsetnodemaskmm/mempolicy.c does not set up nodemask when pol-mode is MPOLLOCAL. Check pol-mode before access pol-w.cpusetmemsallowed in mpolrebindpolicymm/mempolicy.c. BUG:...

CVE-2022-49507

In the Linux kernel, the following vulnerability has been resolved: regulator: da9121: Fix uninit-value in da9121assignchipmodel KASAN report slab-out-of-bounds in regmapinit as follows: BUG: KASAN: slab-out-of-bounds in regmapinit drivers/base/regmap/regmap.c:841 Read of size 1 at addr...

CVE-2022-49352

In the Linux kernel, the following vulnerability has been resolved: ext4: fix warning in ext4handleinodeextension We got issue as follows: EXT4-fs error device loop0 in ext4reserveinodewrite:5741: Out of memory EXT4-fs error device loop0: ext4setattr:5462: inode 13: comm syz-executor.0:...

CVE-2022-49347

In the Linux kernel, the following vulnerability has been resolved: ext4: fix bugon in ext4writepages we got issue as follows: EXT4-fs error device loop0: ext4mbgeneratebuddy:1141: group 0, block bitmap and bg descriptor inconsistent: 25 vs 31513 free cls ------------ cut here ------------ kernel...

CVE-2022-49613

In the Linux kernel, the following vulnerability has been resolved: serial: 8250: Fix PM usagecount for console handover When console is enabled, univ8250consolesetup calls serial8250consolesetup before .dev is set to uartport. Therefore, it will not call pmruntimegetsync. Later, when the actual...

CVE-2022-49386

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: ti: am65-cpsw-nuss: Fix some refcount leaks ofgetchildbyname returns a node pointer with refcount incremented, we should use ofnodeput on it when not need anymore. am65cpswinitcpts and am65cpswnussprobe don't relea...

CVE-2022-49392

In the Linux kernel, the following vulnerability has been resolved: serial: 8250aspeedvuart: Fix potential NULL dereference in aspeedvuartprobe platformgetresource may fail and return NULL, so we should better check it's return value to avoid a NULL pointer dereference...

CVE-2022-49286

In the Linux kernel, the following vulnerability has been resolved: tpm: use trygetops in tpm-space.c As part of the series conversion to remove nested TPM operations: https://lore.kernel.org/all/[email protected]/ exposure of the chip-tpmmutex was removed fro...

CVE-2022-49289

In the Linux kernel, the following vulnerability has been resolved: uaccess: fix integer overflow on accessok Three architectures check the end of a user access against the address limit without taking a possible overflow into account. Passing a negative length or another overflow in here returns...

CVE-2022-49385

In the Linux kernel, the following vulnerability has been resolved: driver: base: fix UAF when driverattach failed When driverattachdrv; failed, the driverprivate will be freed. But it has been added to the bus, which caused a UAF. To fix it, we need to delete it from the bus when failed...

CVE-2022-49301

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8712: fix uninit-value in usbread8 and friends When r8712usbctrlvendorreq returns negative, 'data' in usbread8,16,32 will not be initialized. BUG: KMSAN: uninit-value in stringnocheck lib/vsprintf.c:643 inline BUG:...

CVE-2022-49686

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: uvc: fix list double add in uvcgvideopump A panic can occur if the endpoint becomes disabled and the uvcgvideopump adds the request back to the reqfree list after it has already been queued to the endpoint. The...

CVE-2022-49565

In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel/lbr: Fix unchecked MSR access error on HSW The fuzzer triggers the below trace. 7763.384369 unchecked MSR access error: WRMSR to 0x689 tried to write 0x1fffffff8101349e at rIP: 0xffffffff810704a4...

CVE-2022-49519

In the Linux kernel, the following vulnerability has been resolved: ath10k: skip ath10khalt during suspend for driver state RESTARTING Double free crash is observed when FW recoverycaused by wmi timeout/crash is followed by immediate suspend event. The FW recovery is triggered by ath10kcorerestar...

CVE-2022-49365

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Off by one in dmdmuboutbox1lowirq The ARRAYSIZE should be = ARRAYSIZE to prevent an out of bounds access...

CVE-2022-49340

In the Linux kernel, the following vulnerability has been resolved: ipgre: test csumstart instead of transport header GRE with TUNNELCSUM will apply local checksum offload on CHECKSUMPARTIAL packets. ipgrexmit must validate csumstart after an optional skbpull, else lcocsum may trigger an overflow...

CVE-2022-49321

In the Linux kernel, the following vulnerability has been resolved: xprtrdma: treat all calls not a bcall when bcserv is NULL When a rdma server returns a fault format reply, nfs v3 client may treats it as a bcall when bc service is not exist. The debug message at rpcrdmabcreceivecall are,...

CVE-2022-49257

In the Linux kernel, the following vulnerability has been resolved: watchqueue: Fix NULL dereference in error cleanup In watchqueuesetsize, the error cleanup code doesn't take account of the fact that freepage can't handle a NULL pointer when trying to free up buffer pages that did get allocated...

CVE-2022-49237

In the Linux kernel, the following vulnerability has been resolved: ath11k: add missing ofnodeput to avoid leak The node pointer is returned by offindnodebytype or ofparsephandle with refcount incremented. Calling ofnodeput to aovid the refcount leak...