940 matches found
GSD-2023-1002412 mmc: sdio: fix possible resource leaks in some error paths
mmc: sdio: fix possible resource leaks in some error paths This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.273 by commit...
GSD-2023-1002409 IB/hfi1: Restore allocated resources on failed copyout
IB/hfi1: Restore allocated resources on failed copyout This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.232 by commit...
GSD-2023-1002403 net: sched: sch: Bounds check priority
net: sched: sch: Bounds check priority This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.232 by commit...
GSD-2023-1002392 IB/hfi1: Restore allocated resources on failed copyout
IB/hfi1: Restore allocated resources on failed copyout This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.168 by commit...
GSD-2023-1002389 ice: Do not use WQ_MEM_RECLAIM flag for workqueue
ice: Do not use WQMEMRECLAIM flag for workqueue This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.168 by commit...
GSD-2023-1002382 s390/decompressor: specify __decompress() buf len to avoid overflow
s390/decompressor: specify decompress buf len to avoid overflow This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.169 by commit...
GSD-2023-1002373 net/sched: tcindex: search key must be 16 bits
net/sched: tcindex: search key must be 16 bits This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.169 by commit...
GSD-2023-1002370 IB/hfi1: Restore allocated resources on failed copyout
IB/hfi1: Restore allocated resources on failed copyout This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.94 by commit...
GSD-2023-1002355 net: sched: sch: Bounds check priority
net: sched: sch: Bounds check priority This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.95 by commit...
GSD-2023-1002336 of: Make OF framebuffer device names unique
of: Make OF framebuffer device names unique This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.12 by commit...
GSD-2023-1002323 bpf, sockmap: Don't let sock_map_{close,destroy,unhash} call itself
bpf, sockmap: Don't let sockmapclose,destroy,unhash call itself This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.13 by commit...
GSD-2023-1002322 vdpa: ifcvf: Do proper cleanup if IFCVF init fails
vdpa: ifcvf: Do proper cleanup if IFCVF init fails This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.13 by commit...
GSD-2023-1002315 kasan: fix Oops due to missing calls to kasan_arch_is_ready()
kasan: fix Oops due to missing calls to kasanarchisready This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.13 by commit...
GSD-2023-1002313 fbdev: Fix invalid page access after closing deferred I/O devices
fbdev: Fix invalid page access after closing deferred I/O devices This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.13 by commit...
GSD-2023-1002281 HID: betop: check shape of output reports
HID: betop: check shape of output reports This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.305 by commit...
GSD-2023-1002253 w1: fix WARNING after calling w1_process()
w1: fix WARNING after calling w1process This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.272 by commit...
GSD-2023-1002251 trace_events_hist: add check for return value of 'create_hist_field'
traceeventshist: add check for return value of 'createhistfield' This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.272 by commit...
GSD-2023-1002210 tracing: Make sure trace_printk() can output as soon as it can be used
tracing: Make sure traceprintk can output as soon as it can be used This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.231 by commit...
GSD-2023-1002203 ipv4: prevent potential spectre v1 gadget in fib_metrics_match()
ipv4: prevent potential spectre v1 gadget in fibmetricsmatch This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.231 by commit...
GSD-2023-1002198 bpf: Skip task with pid=1 in send_signal_common()
bpf: Skip task with pid=1 in sendsignalcommon This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.231 by commit...