9 matches found
CVE-2022-49091
In the Linux kernel, the following vulnerability has been resolved: drm/imx: Fix memory leak in imxpdconnectorgetmodes Avoid leaking the display mode variable if ofgetdrmdisplaymode fails. Addresses-Coverity-ID: 1443943 "Resource leak"...
CVE-2024-48873
In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: check return value of ieee80211probereqget for RNR The return value of ieee80211probereqget might be NULL, so check it before using to avoid NULL pointer access. Addresses-Coverity-ID: 1529805 "Dereference null retur...
UBUNTU-CVE-2024-50058
In the Linux kernel, the following vulnerability has been resolved: serial: protect uartportdtrrts in uartshutdown too Commit af224ca2df29 serial: core: Prevent unsafe uart port access, part 3 added few uport == NULL checks. It added one to uartshutdown, so the commit assumes, uport can be NULL i...
CVE-2022-48749
A NULL pointer dereference flaw was found in the Linux kernel. This issue is due to an invalid parameter check in dpusetupdspppcc...
CVE-2022-48756 drm/msm/dsi: invalid parameter check in msm_dsi_phy_enable
In the Linux kernel, the following vulnerability has been resolved: drm/msm/dsi: invalid parameter check in msmdsiphyenable The function performs a check on the "phy" input parameter, however, it is used before the check. Initialize the "dev" variable after the sanity check to avoid a possible NU...
CVE-2022-48749 drm/msm/dpu: invalid parameter check in dpu_setup_dspp_pcc
In the Linux kernel, the following vulnerability has been resolved: drm/msm/dpu: invalid parameter check in dpusetupdspppcc The function performs a check on the "ctx" input parameter, however, it is used before the check. Initialize the "base" variable after the sanity check to avoid a possible...
CVE-2021-46965 mtd: physmap: physmap-bt1-rom: Fix unintentional stack access
In the Linux kernel, the following vulnerability has been resolved: mtd: physmap: physmap-bt1-rom: Fix unintentional stack access Cast &data to char in order to avoid unintentionally accessing the stack. Notice that data is of type u32, so any increment to &data will be in the order of 4-byte...
OracleVM 3.1 : xen (OVMSA-2014-0002)
The remote OracleVM system is missing necessary patches to address critical security updates : - flask: restrict allocations done by hypercall interface Other than in 4.2 and newer, we're not having an overflow issue here, but uncontrolled exposure of the operations opens the host to be driven ou...
OracleVM 3.1 : xen (OVMSA-2013-0087)
The remote OracleVM system is missing necessary patches to address critical security updates : - x86/HVM: only allow ring 0 guest code to make hypercalls Anything else would allow for privilege escalation. This is CVE-2013-4554 / XSA-76. CVE-2013-4554 - x86: restrict XENDOMCTLgetmemlist Coverity ...