CVE-2023-54031 vdpa: Add queue index attr to vdpa_nl_policy for nlattr length check

In the Linux kernel, the following vulnerability has been resolved: vdpa: Add queue index attr to vdpanlpolicy for nlattr length check The vdpanlpolicy structure is used to validate the nlattr when parsing the incoming nlmsg. It will ensure the attribute being described produces a valid nlattr...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987671)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987671 advisory. In the Linux kernel, the following vulnerability has been resolved: tipc: check attribute length for bearer name syzbot reported uninit-value:...

CVE-2023-53543 vdpa: Add max vqp attr to vdpa_nl_policy for nlattr length check

In the Linux kernel, the following vulnerability has been resolved: vdpa: Add max vqp attr to vdpanlpolicy for nlattr length check The vdpanlpolicy structure is used to validate the nlattr when parsing the incoming nlmsg. It will ensure the attribute being described produces a valid nlattr pointe...

SUSE CVE-2022-49374

In the Linux kernel, the following vulnerability has been resolved: tipc: check attribute length for bearer name syzbot reported uninit-value: ===================================================== BUG: KMSAN: uninit-value in stringnocheck lib/vsprintf.c:644 inline BUG: KMSAN: uninit-value in...

CVE-2022-49374

CVE-2022-49374 affects the Linux kernel TIPC bearer path. The root cause is improper validation of the TIPC_NLA_BEARER_NAME attribute length in the bearer enable flow (net/tipc/bearer.c), with fixes implemented in the kernel (referenced commits in the advisory). The connected docs describe the sy...

CVE-2022-49374 tipc: check attribute length for bearer name

In the Linux kernel, the following vulnerability has been resolved: tipc: check attribute length for bearer name syzbot reported uninit-value: ===================================================== BUG: KMSAN: uninit-value in stringnocheck lib/vsprintf.c:644 inline BUG: KMSAN: uninit-value in...

CVE-2022-49374

In the Linux kernel, the following vulnerability has been resolved: tipc: check attribute length for bearer name syzbot reported uninit-value: ===================================================== BUG: KMSAN: uninit-value in stringnocheck lib/vsprintf.c:644 inline BUG: KMSAN: uninit-value in...

kernel: tipc: check attribute length for bearer name

In the Linux kernel, the following vulnerability has been resolved: tipc: check attribute length for bearer name syzbot reported uninit-value: ===================================================== BUG: KMSAN: uninit-value in stringnocheck lib/vsprintf.c:644 inline BUG: KMSAN: uninit-value in...

SUSE-SU-2022:3247-1 Security update for bluez

This update for bluez fixes the following issues: - CVE-2022-0204: Fixed check if the prepare writes would append more than the allowed maximum attribute length bsc1194704...

GSD-2022-1003852 tipc: check attribute length for bearer name

tipc: check attribute length for bearer name This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.247 by commit...

The vulnerability of the ntfs inode_lookup_by_name function in the NTFS file system driver for the FUSE NTFS-3G module relates to writing beyond the buffer boundaries in memory. This allows an attacker to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the ntfs inodelookupbyname function in the NTFS file system driver for the FUSE NTFS-3G module is related to the lack of length checking for attributes. Exploiting this vulnerability can allow attackers to access confidential data, compromise its integrity, and cause service...