750 matches found
GSD-2023-1001276 media: dvb-core: Fix double free in dvb_register_device()
media: dvb-core: Fix double free in dvbregisterdevice This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.163 by commit...
GSD-2023-1001259 media: dvb-core: Fix UAF due to refcount races at releasing
media: dvb-core: Fix UAF due to refcount races at releasing This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.163 by commit...
GSD-2023-1001157 media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()
media: dvb-usb: az6027: fix null-ptr-deref in az6027i2cxfer This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.86 by commit...
GSD-2023-1000994 media: dvb-frontends: fix leak of memory fw
media: dvb-frontends: fix leak of memory fw This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.86 by commit...
GSD-2023-1000990 media: dvb-usb: fix memory leak in dvb_usb_adapter_init()
media: dvb-usb: fix memory leak in dvbusbadapterinit This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.86 by commit...
GSD-2023-1000916 media: dvb-core: Fix double free in dvb_register_device()
media: dvb-core: Fix double free in dvbregisterdevice This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.87 by commit...
GSD-2023-1000894 media: dvb-core: Fix UAF due to refcount races at releasing
media: dvb-core: Fix UAF due to refcount races at releasing This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.87 by commit...
GSD-2023-1000555 media: dvb-frontends: fix leak of memory fw
media: dvb-frontends: fix leak of memory fw This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.16 by commit...
GSD-2023-1000553 media: dvbdev: adopts refcnt to avoid UAF
media: dvbdev: adopts refcnt to avoid UAF This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.16 by commit...
GSD-2023-1000463 media: dvb-core: Fix double free in dvb_register_device()
media: dvb-core: Fix double free in dvbregisterdevice This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.18 by commit...
GSD-2023-1000433 media: dvb-core: Fix UAF due to refcount races at releasing
media: dvb-core: Fix UAF due to refcount races at releasing This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.18 by commit...
PT-2023-33627 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.16 Description: A memory leak issue exists in the dvb usb adapter init function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior to...
PT-2023-34610 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.9.337 Description: A double free issue was discovered in the dvb register device function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior ...
OESA-2023-1013 kernel security update
The Linux Kernel, the operating system core itself. Security Fixes: In drivers/media/dvb-core/dmxdev.c in the Linux kernel through 5.19.10, there is a use-after-free caused by refcount races, affecting dvbdemuxopen and dvbdmxdevrelease.CVE-2022-41218 Guests can trigger deadlock in Linux netback...
SUSE SLES12 Security Update : kernel (Live Patch 25 for SLE 12 SP4) (SUSE-SU-2022:4595-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:4595-1 advisory. - A flaw was found in the Linux kernel's driver for the ASIX AX88179178A-based USB 2.0/3.0 Gigabit Ethernet Devices. The...
SUSE SLES12 / SLES15 Security Update : kernel (Live Patch 23 for SLE 12 SP4) (SUSE-SU-2022:4550-1)
The remote SUSE Linux SLES12 / SLES15 / SLESSAP12 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:4550-1 advisory. - A flaw was found in the Linux kernel's driver for the ASIX AX88179178A-based USB 2.0/3.0 Gigabit Ethernet...
SUSE SLES12 / SLES15 Security Update : kernel (Live Patch 29 for SLE 12 SP4) (SUSE-SU-2022:4533-1)
The remote SUSE Linux SLES12 / SLES15 / SLESSAP12 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:4533-1 advisory. - A vulnerability has been found in Linux Kernel and classified as critical. Affected by this vulnerability is...
CVE-2022-45919
A race condition flaw leading to a use-after-free issue was found in the Linux kernel media subsystem in the DVB CA EN50221 interface of the DVB core device driver. It could occur in the dvbcaen50221release function if there is a disconnect after an open, because of the lack of a waitevent. A loc...
An issue was discovered in the Linux kernel through 6.0.9. drivers/media/dvb-core/dvbdev.c has a use-after-free related to dvb_register_device dynamically allocating fops.
...
An issue was discovered in the Linux kernel through 6.0.9. drivers/media/dvb-core/dvb_net.c has a .disconnect versus dvb_device_open race condition that leads to a use-after-free.
...