220 matches found
Unbreakable Enterprise kernel-container security update
5.4.17-2136.325.5.el8 - perf symbols: Symbol lookup with kcore can fail if multiple segments match stext Krister Johansen Orabug: 35905508 - char: misc: Increase the maximum number of dynamic misc devices to 1048448 D Scott Phillips Orabug: 35905508 - perf/arm-cmn: Fix invalid pointer when access...
GSD-2023-1002144 i2c: designware: use casting of u64 in clock multiplication to avoid overflow
i2c: designware: use casting of u64 in clock multiplication to avoid overflow This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.166 by commi...
GSD-2023-1002061 i2c: designware: use casting of u64 in clock multiplication to avoid overflow
i2c: designware: use casting of u64 in clock multiplication to avoid overflow This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.91 by commit...
GSD-2023-1001908 i2c: designware: use casting of u64 in clock multiplication to avoid overflow
i2c: designware: use casting of u64 in clock multiplication to avoid overflow This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.9 by commit...
PT-2023-35137 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.91 Description: The issue is related to the i2c designware component in the Linux Kernel, where a potential overflow can occur due to incorrect clock multiplication. The actual impact and attack plausibili...
PT-2023-34984 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.1.9 Description: The issue is related to the i2c designware component in the Linux Kernel, where a potential overflow can occur due to incorrect clock multiplication. The actual impact and attack plausibility...
GSD-2022-1007146 i2c: designware: Fix handling of real but unexpected device interrupts
i2c: designware: Fix handling of real but unexpected device interrupts This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.75 by commit...
GSD-2022-1006916 i2c: designware: Fix handling of real but unexpected device interrupts
i2c: designware: Fix handling of real but unexpected device interrupts This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.3 by commit...
PT-2022-35401 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.75 Description: The issue concerns the handling of real but unexpected device interrupts in the i2c designware component. The actual impact and attack plausibility have not yet been proven. Recommendations...
PT-2022-35171 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.3 Description: The issue concerns the handling of real but unexpected device interrupts in the i2c designware component. The actual impact and attack plausibility have not yet been proven. Recommendations:...
USN-4391-1: Linux kernel vulnerabilities
It was discovered that the ext4 file system implementation in the Linux kernel did not properly handle setxattr operations in some situations. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2019-19319 It was discovered that memory...
Ubuntu 16.04 LTS : Linux kernel vulnerabilities (USN-4391-1)
The remote Ubuntu 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4391-1 advisory. It was discovered that the ext4 file system implementation in the Linux kernel did not properly handle setxattr operations in some situations. A local...
The vulnerability of the drivers/spi/spi-dw.c component in Linux operating systems allows a hacker to cause a service failure.
The vulnerability of the drivers/spi/spi-dw.c component in Linux operating systems exists due to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause system failures...
CVE-2019-14763
A vulnerability was found in the Linux kernel when using the "Synopsys DesignWare Core SuperSpeed USB 3.0 Controller", where a double-locking error in drivers/usb/dwc3/gadget.c may potentially cause a deadlock with fhid...
Ubuntu 18.04 LTS : Linux kernel (HWE) vulnerabilities (USN-4225-2)
The remote Ubuntu 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4225-2 advisory. USN-4225-1 fixed vulnerabilities in the Linux kernel for Ubuntu 19.10. This update provides the corresponding updates for the Linux Hardware Enablement H...
USN-4225-2: Linux kernel (HWE) vulnerabilities
USN-4225-1 fixed vulnerabilities in the Linux kernel for Ubuntu 19.10. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 19.10 for Ubuntu 18.04 LTS. It was discovered that a heap-based buffer overflow existed in the Marvell WiFi-Ex Driver for...
USN-4115-1: Linux kernel vulnerabilities | Cloud Foundry
Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 16.04 Description Hui Peng and Mathias Payer discovered that the Option USB High Speed driver in the Linux kernel did not properly validate metadata received from the device. A physically proximate attacker could use this ...
Ubuntu 16.04 LTS / 18.04 LTS : Linux kernel vulnerabilities (USN-4115-1)
The remote Ubuntu 16.04 LTS / 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4115-1 advisory. Hui Peng and Mathias Payer discovered that the Option USB High Speed driver in the Linux kernel did not properly validate metadata received...
USN-4115-1: Linux kernel vulnerabilities
Hui Peng and Mathias Payer discovered that the Option USB High Speed driver in the Linux kernel did not properly validate metadata received from the device. A physically proximate attacker could use this to cause a denial of service system crash. CVE-2018-19985 Zhipeng Xie discovered that an...
openSUSE Security Update : the Linux Kernel (openSUSE-2016-1438)
The openSUSE 14.2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : - CVE-2016-9576: A use-after-free vulnerability in the SCSI generic driver allows users with write access to /dev/sg or /dev/bsg to elevate their privileges bsc1013604. The...