26 matches found
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: gve: Implement settime64 with -EOPNOTSUPP The ptpclocksettime function assumes that every ptpclock has implemented settime64. Implementing settime64 with -EOPNOTSUPP prevents a NULL derefrence...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: iavf: Implement settime64 with -EOPNOTSUPP The ptpclocksettime function assumes that every ptpclock has implemented settime64. By using -EOPNOTSUPP as a stub, we prevent a NULL derefrence from occurring. This fix is similar to th...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: posix-clock: The missing timespec64 check in pcclocksettime has been fixed. As Andrew pointed out, it makes sense that the PTP core checks the tvsec and tvnsec fields of the timespec64 structure before calling ptp-info-settime64...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-005535)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005535 advisory. In the Linux kernel, the following vulnerability has been resolved: posix-clock: Fix missing timespec64 check in pcclocksettime As Andrew pointed out, it will make...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005717)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005717 advisory. In the Linux kernel, the following vulnerability has been resolved: posix-clock: Fix missing timespec64 check in pcclocksettime As Andrew pointed out, it will make...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005763)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005763 advisory. In the Linux kernel, the following vulnerability has been resolved: posix-clock: Fix missing timespec64 check in pcclocksettime As Andrew pointed out, it will make...
CVE-2025-68752
In the Linux kernel, the following vulnerability has been resolved: iavf: Implement settime64 with -EOPNOTSUPP ptpclocksettime assumes every ptpclock has implemented settime64. Stub it with -EOPNOTSUPP to prevent a NULL dereference. The fix is similar to commit 329d050bbe63 "gve: Implement...
UBUNTU-CVE-2025-68752
In the Linux kernel, the following vulnerability has been resolved: iavf: Implement settime64 with -EOPNOTSUPP ptpclocksettime assumes every ptpclock has implemented settime64. Stub it with -EOPNOTSUPP to prevent a NULL dereference. The fix is similar to commit 329d050bbe63 "gve: Implement...
CVE-2025-68752 iavf: Implement settime64 with -EOPNOTSUPP
In the Linux kernel, the following vulnerability has been resolved: iavf: Implement settime64 with -EOPNOTSUPP ptpclocksettime assumes every ptpclock has implemented settime64. Stub it with -EOPNOTSUPP to prevent a NULL dereference. The fix is similar to commit 329d050bbe63 "gve: Implement...
PT-2026-1240
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the ptp clock settime function. This function incorrectly assumes that every precision time protocol PTP clock has implemented the settime64...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel, which stems from an unimplemented settime64 in the ptpclocksettime function in the iavf driver, which could lead to a null...
Unity Linux 20.1050e Security Update: kernel (UTSA-2025-991282)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991282 advisory. In the Linux kernel, the following vulnerability has been resolved: posix-clock: Fix missing timespec64 check in pcclocksettime As Andrew pointed out, it will make...
EUVD-2025-201646
In the Linux kernel, the following vulnerability has been resolved: gve: Implement settime64 with -EOPNOTSUPP ptpclocksettime assumes every ptpclock has implemented settime64. Stub it with -EOPNOTSUPP to prevent a NULL dereference...
DEBIAN-CVE-2025-40298
In the Linux kernel, the following vulnerability has been resolved: gve: Implement settime64 with -EOPNOTSUPP ptpclocksettime assumes every ptpclock has implemented settime64. Stub it with -EOPNOTSUPP to prevent a NULL dereference...
UBUNTU-CVE-2025-40298
In the Linux kernel, the following vulnerability has been resolved: gve: Implement settime64 with -EOPNOTSUPP ptpclocksettime assumes every ptpclock has implemented settime64. Stub it with -EOPNOTSUPP to prevent a NULL dereference...
CVE-2025-40298 gve: Implement settime64 with -EOPNOTSUPP
In the Linux kernel, the following vulnerability has been resolved: gve: Implement settime64 with -EOPNOTSUPP ptpclocksettime assumes every ptpclock has implemented settime64. Stub it with -EOPNOTSUPP to prevent a NULL dereference...
CVE-2025-40298
CVE-2025-40298 concerns the Linux kernel. The root cause is that ptp_clock_settime() assumes every ptp_clock implements settime64(), which could lead to a NULL dereference. The fix implements settime64 in gve and stubs ptp_clock_settime() with -EOPNOTSUPP for clocks that do not support it, preven...
CVE-2025-40298
In the Linux kernel, the following vulnerability has been resolved: gve: Implement settime64 with -EOPNOTSUPP ptpclocksettime assumes every ptpclock has implemented settime64. Stub it with -EOPNOTSUPP to prevent a NULL dereference...
kernel: posix-clock: Fix missing timespec64 check in pc_clock_settime()
In the Linux kernel, the following vulnerability has been resolved: posix-clock: Fix missing timespec64 check in pcclocksettime As Andrew pointed out, it will make sense that the PTP core checked timespec64 struct's tvsec and tvnsec range before calling ptp-info-settime64. As the man manual of...
Siemens SIMATIC Devices Improper Locking (CVE-2024-50210)
In the Linux kernel, the following vulnerability has been resolved: posix-clock: posix-clock: Fix unbalanced locking in pcclocksettime If getclockdesc succeeds, it calls fget for the clockid's fd, and get the clk-rwsem read lock, so the error path should release the lock to make the lock balance...