73 matches found
Azure Linux 3.0 Security Update: kernel (CVE-2024-43856)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-43856 advisory. - In the Linux kernel, the following vulnerability has been resolved: dma: fix call order in dmamfreecoherent...
CVE-2024-56766 mtd: rawnand: fix double free in atmel_pmecc_create_user()
In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: fix double free in atmelpmecccreateuser The "user" pointer was converted from being allocated with kzalloc to being allocated by devmkzalloc. Calling kfreeuser will lead to a double free...
CVE-2024-56697
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix the memory allocation issue in amdgpudiscoverygetnpsinfo Fix two issues with memory allocation in amdgpudiscoverygetnpsinfo for memranges: - Add a check for allocation failure to avoid dereferencing a null pointer...
CVE-2024-56697 drm/amdgpu: Fix the memory allocation issue in amdgpu_discovery_get_nps_info()
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix the memory allocation issue in amdgpudiscoverygetnpsinfo Fix two issues with memory allocation in amdgpudiscoverygetnpsinfo for memranges: - Add a check for allocation failure to avoid dereferencing a null pointer...
ALSA-2024:9195 Moderate: cyrus-imapd security update
The cyrus-imapd packages contain a high-performance mail server with IMAP, POP3, NNTP, and SIEVE support. Security Fixes: cyrus-imapd: unbounded memory allocation by sending many LITERALs in a single command CVE-2024-34055 For more details about the security issues, including the impact, a CVSS...
DEBIAN-CVE-2024-50105
In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: sc7280: Fix missing Soundwire runtime stream alloc Commit 15c7fab0e047 "ASoC: qcom: Move Soundwire runtime stream alloc to soundcards" moved the allocation of Soundwire stream runtime from the Qualcomm Soundwire drive...
CVE-2024-41059 hfsplus: fix uninit-value in copy_name
In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix uninit-value in copyname syzbot reported BUG: KMSAN: uninit-value in sizedstrscpy+0xc4/0x160 sizedstrscpy+0xc4/0x160 copyname+0x2af/0x320 fs/hfsplus/xattr.c:411 hfspluslistxattr+0x11e9/0x1a50 fs/hfsplus/xattr.c:750...
CVE-2024-40994
A vulnerability was found in the Linux kernel's ptp subsystem in ptpsysfs.c file, where the maxvclocksstore function can cause an integer overflow on 32-bit systems. This issue occurs during a multiplication operation, potentially leading to incorrect memory allocation, resulting in memory...
UBUNTU-CVE-2024-40994
In the Linux kernel, the following vulnerability has been resolved: ptp: fix integer overflow in maxvclocksstore On 32bit systems, the "4 max" multiply can overflow. Use kcalloc to do the allocation to prevent this...
SUSE CVE-2024-36946
In the Linux kernel, the following vulnerability has been resolved: phonet: fix rtmphonetnotify skb allocation fillroute stores three components in the skb: - struct rtmsg - RTADST u8 - RTAOIF u32 Therefore, rtmphonetnotify should use NLMSGALIGNsizeofstruct rtmsg + nlatotalsize1 + nlatotalsize4...
CVE-2024-35972 bnxt_en: Fix possible memory leak in bnxt_rdma_aux_device_init()
In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix possible memory leak in bnxtrdmaauxdeviceinit If ulp = kzalloc fails, the allocated edev will leak because it is not properly assigned and the cleanup path will not be able to free it. Fix it by assigning it properly...
CVE-2024-26817 amdkfd: use calloc instead of kzalloc to avoid integer overflow
In the Linux kernel, the following vulnerability has been resolved: amdkfd: use calloc instead of kzalloc to avoid integer overflow This uses calloc instead of doing the multiplication which might overflow...
CVE-2024-26760 scsi: target: pscsi: Fix bio_put() for error case
In the Linux kernel, the following vulnerability has been resolved: scsi: target: pscsi: Fix bioput for error case As of commit 066ff571011d "block: turn biokmalloc into a simple kmalloc wrapper", a bio allocated by biokmalloc must be freed by biouninit and kfree. That is not done properly for th...
SUSE-SU-2024:0855-1 Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP5 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2023-6270: Fixed a use-after-free bug in aoecmdcfgpkts bsc1218562. - CVE-2023-52559: Fixed a bug by avoiding memory allocation in iommususpend...
CVE-2023-52607 powerpc/mm: Fix null-pointer dereference in pgtable_cache_add
In the Linux kernel, the following vulnerability has been resolved: powerpc/mm: Fix null-pointer dereference in pgtablecacheadd kasprintf returns a pointer to dynamically allocated memory which can be NULL upon failure. Ensure the allocation was successful by checking the pointer validity...
CVE-2024-26618 arm64/sme: Always exit sme_alloc() early with existing storage
In the Linux kernel, the following vulnerability has been resolved: arm64/sme: Always exit smealloc early with existing storage When smealloc is called with existing storage and we are not flushing we will always allocate new storage, both leaking the existing storage and corrupting the state. Fi...
CVE-2021-46966
In the Linux kernel, the following vulnerability has been resolved: ACPI: custommethod: fix potential use-after-free issue In cmwrite, buf is always freed when reaching the end of the function. If the requested count is less than table.length, the allocated buffer will be freed but subsequent cal...
kernel security and bug fix update
4.18.0-425.13.17.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
SUSE CVE-2018-9260
In Wireshark 2.4.0 to 2.4.5 and 2.2.0 to 2.2.13, the IEEE 802.15.4 dissector could crash. This was addressed in epan/dissectors/packet-ieee802154.c by ensuring that an allocation step occurs...
Unbreakable Enterprise kernel-container security update
5.15.0-6.80.3.1 - Revert 'rds: ib: Enable FC by default' Hakon Bugge Orabug: 34964359 5.15.0-6.80.3 - net/mlx5: Suppress error logging on UCTX creation Marina Orabug: 34888471 - rds: ib: Fix leaked MRs during kexec Hakon Bugge Orabug: 34892082 - uek-rpm: Add ptpkvm.ko to core rpm Somasundaram...