Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: media: amphion: Fixed issues related to REVERSEINULL reported by Coverity. Null-checking of a pointor was suggested before dereferencing it...

Astra Linux – Vulnerability found in Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: drm/amd/display: Added a null check before passing variables. Checked for null pointers before passing variables to functions. This fix resolves 3 NULLRETURNS issues reported by Coverity...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: drm: zynqmpdp: Fixed integer overflow in zynqmpdprateget This patch addresses a potential integer overflow in zynqmpdprateget. The issue arises when the expression drmdpbwcodetolinkratedp-test.bwcode 10000 is evaluated using...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: Wifi: mt76: mt7921: Resource leaks in mt7921checkoffloadcapability The coverage issue related to resource leaks was fixed. In this case, the variable “fw” goes out of scope, causing the storage it points to to be leaked. This iss...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: drm/amd/display: Ensure that the index calculations will never overflow. WHY & HOW Ensure that the calculations of vmid0p72idx, vnom0p8idx, and vmax0p9idx will never cause the array size to overflow. This fix addresses 3...

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check numvalidsets before accessing readerwmsets. WHY & HOW numvalidsets needs to be checked to avoid a negative index when accessing readerwmsetsnumvalidsets - 1. This fix addresses an OVERLOAD issue reported by...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: EFI: libstub – Only “free privRuntimeMap” is returned when it is allocated. “privRuntimeMap” is only allocated when “efinovamap” is not set. Otherwise, it remains an uninitialized value. In the error path, “privRuntimeMap” is fre...

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: drm/amd/display: Skip wbsclsetscalerfilter if the filter is null. Callers can pass null as the filter value e.g., from the function wbsclgetfiltercoeffs16p, and a null check has been added to ensure that this does not occur...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: drm/amd/display: The denominator “cbppipes” must not be 0; it is checked before being used. WHAT & HOW The denominator cannot be 0, and is checked before being used. This fix addresses two “DIVIDEBYZERO” issues reported by...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: The denominator pbndiv is checked before being used. WHAT & HOW The denominator cannot be 0, and this check is performed before it is used. This fix addresses a Divide-by-zero issue reported by Coverity...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: iwlwifi: mei: fixed potential NULLptr dereferencing issues. If SKB allocation fails, continue instead of using a NULL pointer. Coverity CID: 1497650...

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Null pointers are checked before using dc-clkmgr. WHY & HOW dc-clkmgr is already checked for null values in the same function; this indicates that it may be null. The value “dc” is passed to...

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: drm/amd/display: Check gpioid before using it as an array index. WHY & HOW The value “GPIOIDUNKNOWN -1” is not a valid value for an array index. Therefore, this value should be checked in advance. This fix resolves 5 OVERRUN...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: The value of UnboundedRequestEnabled was checked. The UnboundedRequestEnabled parameter in CalculateSwathAndDETConfigurationparamsst is a pointer i.e., dmlboolt UnboundedRequestEnabled. Therefore, if...

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: serial: protect uartportdtrrts in uartshutdown as well. The commit af224ca2df29 serial: core: Preventing unsafe access to UART ports, part 3 added several uport == NULL checks. One such check was added to uartshutdown, so the...

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: media: dvbdev: The risk of out-of-memory access has been prevented. The dvbdev module contains a static variable used to store dvb minors. Its behavior depends on whether CONFIGDVBDYNAMICMINORS is set or not. When it is not set,...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: drm/amd/display: Check null-initialized variables WHAT & HOW drrtiming and subvppipe are initialized to null, and they are not always assigned new values. It is necessary to check for null before dereferencing these variables...

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Null pointer checking is performed before dereferencing se. WHAT & HOW The variable se is previously checked for being a null pointer in the same function. This means it might be null; therefore, it must be check...

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerability has been resolved: vmci: Speculation leaks were prevented by sanitizing the eventdata parameter in the eventdeliver function. Coverity identified that the eventmsg is controlled by user-space. The eventmsg-eventdata.event is passed to eventdeliver...

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Skip finding free audio for unknown engineid REASON ENGINEIDUNKNOWN equals -1, and cannot be used as an array index. Additionally, it indicates that the memory is uninitialized and does not require free audio...