347 matches found
CVE-2023-52663 ASoC: SOF: amd: Fix memory leak in amd_sof_acp_probe()
In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: amd: Fix memory leak in amdsofacpprobe Driver uses kasprintf to initialize fwcode,databin members of struct acpdevdata, but kfree is never called to deallocate the memory, which results in a memory leak. Fix the issue ...
CVE-2024-35814
CVE-2024-35814 – Linux kernel swiotlb double-allocation fix Affects: Linux kernel SWIOTLB path used for DMA in virtio/vsock contexts (e.g., VM bouncing with restricted DMA pool). Root cause: A prior fix introduced a braino in alignment checks, causing swiotlb_alloc() to return non-page-aligned al...
CVE-2024-35814
In the Linux kernel, the following vulnerability has been resolved: swiotlb: Fix double-allocation of slots due to broken alignment handling Commit bbb73a103fbb "swiotlb: fix a braino in the alignment check fix", which was a fix for commit 0eee5ae10256 "swiotlb: fix slot alignment checks", causes...
CVE-2024-35814 swiotlb: Fix double-allocation of slots due to broken alignment handling
In the Linux kernel, the following vulnerability has been resolved: swiotlb: Fix double-allocation of slots due to broken alignment handling Commit bbb73a103fbb "swiotlb: fix a braino in the alignment check fix", which was a fix for commit 0eee5ae10256 "swiotlb: fix slot alignment checks", causes...
CVE-2024-27413 efi/capsule-loader: fix incorrect allocation size
In the Linux kernel, the following vulnerability has been resolved: efi/capsule-loader: fix incorrect allocation size gcc-14 notices that the allocation with sizeofvoid on 32-bit architectures is not enough for a 64-bit physaddrt: drivers/firmware/efi/capsule-loader.c: In function 'eficapsuleopen...
Important: Red Hat Security Advisory: Red Hat Build of Apache Camel 4.4 for Quarkus 3.8 update is now available (RHBQ 3.8.4.SP1)
An update for Red Hat Build of Apache Camel 4.4 for Quarkus 3.8 update is now available RHBQ 3.8.4.SP1. The purpose of this text-only errata is to inform you about the enhancements that improve your developer experience and ensure the security and stability of your products. Red Hat Product...
CVE-2022-48702 ALSA: emu10k1: Fix out of bounds access in snd_emu10k1_pcm_channel_alloc()
In the Linux kernel, the following vulnerability has been resolved: ALSA: emu10k1: Fix out of bounds access in sndemu10k1pcmchannelalloc The voice allocator sometimes begins allocating from near the end of the array and then wraps around, however sndemu10k1pcmchannelalloc accesses the newly...
CVE-2024-27391
In the Linux kernel, the following vulnerability has been resolved: wifi: wilc1000: do not realloc workqueue everytime an interface is added Commit 09ed8bfc5215 "wilc1000: Rename workqueue from "WILCwq" to "NETDEV-wq"" moved workqueue creation in wilcnetdevifcinit in order to set the interface na...
CVE-2024-27048
In the Linux kernel, the following vulnerability has been resolved: wifi: brcm80211: handle pmkop allocation failure The kzalloc in brcmfpmksav3op will return null if the physical memory has run out. As a result, if we dereference the null value, the null pointer dereference bug will happen. Retu...
CVE-2024-27391 wifi: wilc1000: do not realloc workqueue everytime an interface is added
In the Linux kernel, the following vulnerability has been resolved: wifi: wilc1000: do not realloc workqueue everytime an interface is added Commit 09ed8bfc5215 "wilc1000: Rename workqueue from "WILCwq" to "NETDEV-wq"" moved workqueue creation in wilcnetdevifcinit in order to set the interface na...
CVE-2024-27074
The CVE-2024-27074 entry concerns a Linux kernel memory leak in the media go7007 path. Specifically, in go7007_load_encoder the bounce object (go->boot_fw) is allocated but not deallocated, and is freed later via kfree(go) after the call chain saa7134_go7007_init -> go7007_boot_encoder ->...
CVE-2024-27074 media: go7007: fix a memleak in go7007_load_encoder
In the Linux kernel, the following vulnerability has been resolved: media: go7007: fix a memleak in go7007loadencoder In go7007loadencoder, bouncei.e. go-bootfw, is allocated without a deallocation thereafter. After the following call chain: saa7134go7007init |- go7007bootencoder |-...
Integer Overflow
GTKWave is vulnerable to Integer Overflow. The vulnerability is due to integer overflow during the allocation of the rows array, which can be triggered by opening a specially crafted .lxt2 file, potentially leading to arbitrary code execution...
Integer Overflow
GTKWave is vulnerable to Integer Overflow. The vulnerability is due to integer overflow when allocating the lsb array, which can be exploited by opening a specially crafted .lxt2 file, potentially leading to arbitrary code execution...
CVE-2021-47199
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: CT, Fix multiple allocations and memleak of mod acts CT clear action offload adds additional mod hdr actions to the flow's original mod actions in order to clear the registers which hold ctstate. When such flow also...
CVE-2021-47218
A vulnerability was found in the Linux kernel, related to SELinux. This issue occurs when a hash table allocation fails during the hashtabinit function. When this failure happens, the system leaves the hash table h-size initialized with a non-zero value, but the h-htable pointer remains null. Thi...
CVE-2021-47199
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: CT, Fix multiple allocations and memleak of mod acts CT clear action offload adds additional mod hdr actions to the flow's original mod actions in order to clear the registers which hold ctstate. When such flow also...
CVE-2021-47218
CVE-2021-47218: Linux kernel SELinux hashtab allocation failure could lead to NULL dereference. Root cause: on hashtab_init() allocation failure, h->size remains non-zero while h->htable is NULL, breaking hashtab_map() and hashtab_destroy() which assume non-empty hashtab. Mitigation in the ...
CVE-2021-47218 selinux: fix NULL-pointer dereference when hashtab allocation fails
In the Linux kernel, the following vulnerability has been resolved: selinux: fix NULL-pointer dereference when hashtab allocation fails When the hash table slot array allocation fails in hashtabinit, h-size is left initialized with a non-zero value, but the h-htable pointer is NULL. This may then...
CVE-2024-0081
CVE-2024-0081 affects NVIDIA NeMo framework for Ubuntu, specifically the tools/asr_webapp component. The root cause is an improper/resource-allocation control that allows an attacker to cause unbounded allocation of resources, leading to server-side denial of service. Multiple connected sources c...