11 matches found
Astra Linux - уязвимость в linux-6.1
In the Linux kernel, the following vulnerability has been resolved: efi: libstub – Only privRuntimeMap is freed when it is allocated. privRuntimeMap is only allocated when efinovamap is not set. Otherwise, it remains uninitialized. In the error path, privRuntimeMap is freed unconditionally. Avoid...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-013270)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013270 advisory. In the Linux kernel, the following vulnerability has been resolved: net: fix skb leak in skbtstamptx Commit 50749f2dd685 tcp/udp: Fix memleaks of sk and zerocopy skb...
CVE-2023-53716
In the Linux kernel, the following vulnerability has been resolved: net: fix skb leak in skbtstamptx Commit 50749f2dd685 "tcp/udp: Fix memleaks of sk and zerocopy skbs with TX timestamp." added a call to skborphanfragsrx to fix leaks with zerocopy skbs. But it ended up adding a leak of its own...
CVE-2023-53716
CVE-2023-53716 is a Linux kernel vulnerability described as a leak in skb handling: after a TX timestamp code path, if skb_orphan_frags_rx() fails, the skb cloned for zerocopy skb leaks. The issue is tied to the net: skb_tstamp_tx() flow and was addressed by a kernel fix in the commit that added ...
CVE-2023-53653
In the Linux kernel, the following vulnerability has been resolved: media: amphion: fix REVERSEINULL issues reported by coverity null-checking of a pointor is suggested before dereferencing it...
Linux Distros Unpatched Vulnerability : CVE-2024-33619
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: efi: libstub: only free priv.runtimemap when allocated priv.runtimemap is only allocated whe...
Linux Distros Unpatched Vulnerability : CVE-2024-42090
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - pinctrl: fix deadlock in createpinctrl when handling -EPROBEDEFER In createpinctrl, pinctrlmapsmutex is acquired before calling addsetting. If addsetting return...
DEBIAN-CVE-2024-49921
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check null pointers before used WHAT & HOW Poniters, such as dc-clkmgr, are null checked previously in the same function, so Coverity warns "implies that "dc-clkmgr" might be null". As a result, these pointers ne...
DEBIAN-CVE-2024-33619
In the Linux kernel, the following vulnerability has been resolved: efi: libstub: only free priv.runtimemap when allocated priv.runtimemap is only allocated when efinovamap is not set. Otherwise, it is an uninitialized value. In the error path, it is freed unconditionally. Avoid passing an...
SUSE CVE-2021-47559
In the Linux kernel, the following vulnerability has been resolved: net/smc: Fix NULL pointer dereferencing in smcvlanbytcpsk Coverity reports a possible NULL dereferencing problem: in smcvlanbytcpsk: 6. returnednull: netdevlowergetnext returns NULL checked 29 out of 30 times. 7. varassigned:...
curl and nss-pem security and bug fix update
curl 7.29.0-51 - require a new enough version of nss-pem to avoid regression in yum 1610998 7.29.0-50 - remove dead code, detected by Coverity Analysis - remove unused variable, detected by GCC and Clang 7.29.0-49 - make curl --speed-limit work with TFTP 1584750 7.29.0-48 - fix RTSP bad headers...