7272 matches found
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: cpufreq: amd-pstate: fixed the global sysfs attribute type. In commit 3666062b87ec “cpufreq: amd-pstate: move to use busgetdevroot”, the “amdpstate” attributes were moved from a dedicated kobject to the root kobject. While the...
Astra Linux – Vulnerability in amd64-microcode
Improper signature verification in the AMD CPU ROM microcode patch loader may allow an attacker with local administrator privileges to load malicious CPU microcode, resulting in a loss of confidentiality and integrity for confidential guests running under AMD SEV-SNP...
Astra Linux – Vulnerability found in Linux 6.1, Linux 5.10, and Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: Fixed the issue of reading from a negative array index. Avoid using negative values for clkidex as an index into the array pptable-DpmDescriptor. V2: Fixed the return check for clkindex by Tim Huang...
Astra Linux – Vulnerability in Linux, Linux 5.10
LFENCE/JMP mitigation V2-2 may not be sufficient in mitigating CVE-2017-5715 on some AMD CPUs...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Clearing DMA operations when switching domains Since the commit 08a27c1c3ecf “iommu: Adding support for changing the default domain of an iommu group”, a user can switch a device between IOMMU and direct DMA through...
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: Ensure that the fwinfo is not null before using it. This resolves the warning regarding the dereference of a null return value reported by Coverity...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: drm/amd/display: check stream id dml21 wrapper to get planeid Why & How Fixed a false positive warning that occurs due to lack of correct checks when querying planeid in DML21. This fixes the warning that appears when performi...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Avoid buffer overflow attacks in the smusyssetpptable function. If a malicious user provides a smaller pptable through sysfs, followed by a larger one, it may lead to a buffer overflow attack in the smusyssetpptable...
Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15
A flaw was discovered in the Linux kernel. The existing KVM SEV API contains a vulnerability that allows a non-root host user-level application to crash the host kernel by creating a confidential guest VM instance in an AMD CPU that supports Secure Encrypted Virtualization SEV...
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Clearing the optc underflow before turning off the ODM clock Why After the ODM clock is turned off, the optc underflow bit remains there indefinitely, and clearing it doesn’t work. We need to clear that bit befor...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: x86/cpu: Avoid running off the end of an AMD erratum table. The NULL array terminator at the end of erratum1386microcode was removed during the switch from x86cpudesc to x86cpuid. This causes readers to run off the end of the...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: x86/microcode/AMD: Fixed an out-of-bounds access on systems with CPU-less NUMA nodes. Currently, the loadmicrocodeamd function iterates over all NUMA nodes, retrieves their CPU masks, and accesses per-CPU data for the first CPU o...
Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1
In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Do not allow mapping the MMIO HDP page with large pages. In that case, we do not receive the correct offset. The GPU has an unused 4K area of the register BAR space, into which we can remap registers. We remap the HDP...
Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1
In the Linux kernel, the following vulnerability has been resolved: drivers/amd/pm: fixed a use-after-free in kvparsepowertable. When ps allocated by kzalloc equals NULL, kvparsepowertable frees adev-pm.dpm.ps that was allocated earlier. However, after the control flow proceeds through the...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Fixed a potential out-of-bounds read in iommummioshow. In iommummiowrite, the offset provided by the user is validated using the check: iommu-dbgmmiooffset iommu-mmiophysend - 4. This assumes a 4-byte access. However,...
Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: drm/amd: Fixed an out-of-bounds error in the BIOS parser. The array size is hardcoded to 8 in atomfirmware.h, but sometimes the firmware uses a larger array size. Dereferencing the larger array causes an out-of-bounds error. T...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: Fixed the null pointer dereference issue. If SMU is disabled, during RAS initialization, there will be a null pointer dereference issue...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fixed the null check on pipectx-planestate in updatedchubpdpp. This issue is similar to commit 6a057072ddd1 “drm/amd/display: Fixed a null pointer dereference on dcn20updatedchubpdpp. It involves the same functio...
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1
In the Linux kernel, the following vulnerabilities have been resolved: drm/amd/display: Check the index msgid before reading or writing. WHAT msgid is used as an array index, and it cannot be a negative value. Therefore, it cannot be equal to MODHDCPMESSAGEIDINVALID -1. HOW Check whether msgid is...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Null checks for adev-dm.dc in amdgpudmfini have been fixed. Since adev-dm.dc in amdgpudmfini might turn out to be NULL before the call to dcenabledmubnotifications, a check is performed beforehand to ensure that...