Astra Linux - уязвимость в linux-5.10, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: smb3: A missing lock occurs when picking the channel. Coverity has identified a point where we should have held the channel lock when accessing the ses channel index. Address: 1582039 "Data race condition MISSINGLOCK"...

EUVD-2022-54601

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2023-52765

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: mfd: qcom-spmi-pmic: Fix revid implementation The Qualcomm SPMI PMIC revid implementation is...

CVE-2022-50145 dmaengine: sf-pdma: Add multithread support for a DMA channel

In the Linux kernel, the following vulnerability has been resolved: dmaengine: sf-pdma: Add multithread support for a DMA channel When we get a DMA channel and try to use it in multiple threads it will cause oops and hanging the system. % echo 64 /sys/module/dmatest/parameters/threadsperchan % ec...

Linux Distros Unpatched Vulnerability : CVE-2024-38596

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - afunix: Fix data races in unixreleasesock/unixstreamsendmsg A data-race condition has been identified in afunix. In one data path, the write function...

Linux Distros Unpatched Vulnerability : CVE-2024-35999

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - smb3: missing lock when picking channel Coverity spotted a place where we should have been holding the channel lock when accessing the ses channel index...

ROS-20240820-10

Vulnerability of the brnflocalin function in the net/bridge/brnetfilterhooks.c module of the netfilter component of the netfilter kernel of the of the Linux operating system is related to incorrect packet processing. Exploitation of the vulnerability could allow an attacker to affect the...

Ubuntu: Security Advisory (USN-5789-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-5773-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-5773-1: Linux kernel (OEM) vulnerabilities

It was discovered that the NFSD implementation in the Linux kernel did not properly handle some RPC messages, leading to a buffer overflow. A remote attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2022-43945 Jann Horn discovered that the...

USN-5756-2: Linux kernel (GKE) vulnerabilities

Jann Horn discovered that the Linux kernel did not properly track memory allocations for anonymous VMA mappings in some situations, leading to potential data structure reuse. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2022-427...

Ubuntu: Security Advisory (USN-5756-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-5755-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-5757-2: Linux kernel vulnerabilities

Jann Horn discovered that the Linux kernel did not properly track memory allocations for anonymous VMA mappings in some situations, leading to potential data structure reuse. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2022-427...

USN-5757-1: Linux kernel vulnerabilities

Jann Horn discovered that the Linux kernel did not properly track memory allocations for anonymous VMA mappings in some situations, leading to potential data structure reuse. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2022-427...

PT-2022-33370 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions v4.3 through v5.19.3 Description: A potential security issue exists due to a data race condition. The issue was introduced in version v4.3 and is fixed in version v5.19.4. Recommendations: For Linux Kernel versions v4.3...

PT-2022-33645 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.66 Description: The issue is related to a data-race condition for max midi devs access in the ALSA seq: oss component. The actual impact and attack plausibility have not yet been proven. Recommendations: F...