Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: clk: mediatek: mt7622-apmixedsys: Fixed an error handling path in clkmt8135apmixedprobe. The clkdata is allocated using mtkdevmallocclkdata. Therefore, explicitly calling mtkfreeclkdata in the removal function would lead to a...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: ASoC: q6afe-clocks: fixed the issue of reprobing of the driver. The q6afe-clocks driver may experience reprobing situations. For example, if the APR services are restarted after a firmware crash. However, currently, the...

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: clk: samsung: Fixed the UBSAN panic in samsungclkinit. With UBSANARRAYBOUNDS=y, I encounter the following panic due to dereferencing ctx-clkdata.hws before setting ctx-clkdata.num = nrclks. This issue needs to be fixed. Panic...

Astra Linux - уязвимость в linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: clk: mediatek: clk-mt6765 – Added a check for the return value of mtkallocclkdata. The check is added to avoid dereferencing a NULL pointer...

CVE-2025-47335 Buffer Copy Without Checking Size of Input in Camera Driver

Memory corruption while parsing clock configuration data for a specific hardware type...

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-390050)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-390050 advisory. In the Linux kernel, the following vulnerability has been resolved: clk: mediatek: clk-mt7629-eth: Add check for mtkallocclkdata Add the check for the return value o...

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-401897)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-401897 advisory. In the Linux kernel, the following vulnerability has been resolved: clk: mediatek: clk-mt7629: Add check for mtkallocclkdata Add the check for the return value of...

AZL-71918 CVE-2023-53424 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: clk: mediatek: fix ofiomap memory leak Smatch reports: drivers/clk/mediatek/clk-mtk.c:583 mtkclksimpleprobe warn: 'base' from ofiomap not released on lines: 496. This problem was also found in linux-next. In mtkclksimpleprobe, ba...

Linux Distros Unpatched Vulnerability : CVE-2024-27433

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: clk: mediatek: mt7622-apmixedsys: Fix an error handling path in clkmt8135apmixedprobe...

Linux Distros Unpatched Vulnerability : CVE-2023-52858

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: clk: mediatek: clk-mt7629: Add check for mtkallocclkdata Add the check for the return value ...

DEBIAN-CVE-2025-38446

In the Linux kernel, the following vulnerability has been resolved: clk: imx: Fix an out-of-bounds access in dispmixcsrclkdevdata When numparents is 4, clkregister occurs an out-of-bounds when accessing parentnames member. Use ARRAYSIZE instead of hardcode number here. BUG: KASAN:...

UBUNTU-CVE-2025-38446

In the Linux kernel, the following vulnerability has been resolved: clk: imx: Fix an out-of-bounds access in dispmixcsrclkdevdata When numparents is 4, clkregister occurs an out-of-bounds when accessing parentnames member. Use ARRAYSIZE instead of hardcode number here. BUG: KASAN:...

DEBIAN-CVE-2025-39728

In the Linux kernel, the following vulnerability has been resolved: clk: samsung: Fix UBSAN panic in samsungclkinit With UBSANARRAYBOUNDS=y, I'm hitting the below panic due to dereferencing ctx-clkdata.hws before setting ctx-clkdata.num = nrclks. Move that up to fix the crash. UBSAN: array index...

CVE-2025-39728 clk: samsung: Fix UBSAN panic in samsung_clk_init()

In the Linux kernel, the following vulnerability has been resolved: clk: samsung: Fix UBSAN panic in samsungclkinit With UBSANARRAYBOUNDS=y, I'm hitting the below panic due to dereferencing ctx-clkdata.hws before setting ctx-clkdata.num = nrclks. Move that up to fix the crash. UBSAN: array index...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from not properly initializing clkdata.num, which could lead to out-of-bounds access to arrays...

PT-2026-2904

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Samsung Exynos clock output driver within the Linux kernel. A bounds sanitizer warning occurs because the .num member of struct clk hw onecell data is assigned after...

CVE-2024-56684

In the Linux kernel, the following vulnerability has been resolved: mailbox: mtk-cmdq: fix wrong use of sizeof in cmdqgetclocks It should be size of the struct clkbulkdata, not data pointer pass to devmkcalloc...

DEBIAN-CVE-2024-53192

In the Linux kernel, the following vulnerability has been resolved: clk: clk-loongson2: Fix potential buffer overflow in flexible-array member access Flexible-array member hws in struct clkhwonecelldata is annotated with the countedby attribute. This means that when memory is allocated for this...

UBUNTU-CVE-2024-53193

In the Linux kernel, the following vulnerability has been resolved: clk: clk-loongson2: Fix memory corruption bug in struct loongson2clkprovider Some heap space is allocated for the flexible structure struct clkhwonecelldata and its flexible-array member hws through the composite structure struct...

UBUNTU-CVE-2024-53192

In the Linux kernel, the following vulnerability has been resolved: clk: clk-loongson2: Fix potential buffer overflow in flexible-array member access Flexible-array member hws in struct clkhwonecelldata is annotated with the countedby attribute. This means that when memory is allocated for this...