Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: drbd: Only clone the bio if there is a backing device available. The commit c347a787e34cb drbd: changed -bibdev to -bibdev in drbdreqnew moved the biosetdev call which has since been removed to an earlier stage, from...

EUVD-2022-55648

In the Linux kernel, the following vulnerability has been resolved: blk-throttle: prevent overflow while calculating wait time There is a problem found by code review in tgwithinbpslimit that 'bpslimit jiffyelapsedrnd' might overflow. Fix the problem by calling mulu64u64divu64 instead...

CVE-2022-50506

The CVE-2022-50506 entry is supported by multiple connected documents showing a Linux kernel issue in DRBD code: during drbd_req_new, a bio is conditionally allocated based on backing device, but device->ldev->backing_bdev was not NULL-checked, causing a NULL pointer dereference when the DR...

CVE-2022-50506 drbd: only clone bio if we have a backing device

In the Linux kernel, the following vulnerability has been resolved: drbd: only clone bio if we have a backing device Commit c347a787e34cb drbd: set -bibdev in drbdreqnew moved a biosetdev call which has since been removed to "earlier", from drbdrequestprepare to drbdreqnew. The problem is that th...

PT-2022-34930 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.6 Description: The issue is related to the drbd component, where it only clones bio if a backing device is present. The actual impact and attack plausibility have not yet been proven. Recommendations: For...