21 matches found
EUVD-2022-55298
Malicious code in bioql PyPI...
SUSE CVE-2022-50023
In the Linux kernel, the following vulnerability has been resolved: dmaengine: dw-axi-dmac: ignore interrupt if no descriptor If the channel has no descriptor and the interrupt is raised then the kernel will OOPS. Check the result of vchannextdesc in the handler axichanblockxfercomplete to avoid...
SUSE CVE-2022-50024
In the Linux kernel, the following vulnerability has been resolved: dmaengine: dw-axi-dmac: do not print NULL LLI during error During debugging we have seen an issue where axichandumplli is passed a NULL LLI pointer which ends up causing an OOPS due to trying to get fields from it. Simply print...
DEBIAN-CVE-2022-50023
In the Linux kernel, the following vulnerability has been resolved: dmaengine: dw-axi-dmac: ignore interrupt if no descriptor If the channel has no descriptor and the interrupt is raised then the kernel will OOPS. Check the result of vchannextdesc in the handler axichanblockxfercomplete to avoid...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that originates from dw-axi-dmac printing null LLI pointers...
SUSE SLES15 Security Update : kernel (SUSE-SU-2024:2896-1)
The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2896-1 advisory. The SUSE Linux Enterprise 15 SP6 Azure kernel was updated to receive various security bugfixes. The following security bugs were...
SUSE-SU-2024:2896-1 Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP6 Azure kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2024-41014: xfs: add bounds checking to xlogrecoverprocessdata bsc1228408. - CVE-2024-41013: xfs: do not walk off the end of a directory data block...
SUSE CVE-2024-40970
In the Linux kernel, the following vulnerability has been resolved: Avoid hwdesc array overrun in dw-axi-dmac I have a use case where nrbuffers = 3 and in which each descriptor is composed by 3 segments, resulting in the DMA channel descsallocated to be 9. Since axidescput handles the hwdesc...
CVE-2024-40970
A vulnerability was found in dw-axi-dmac in the Linux kernel and has been resolved to prevent an overrun of the hwdesc array. This issue occurred when using three descriptors, each comprising three segments, resulting in nine allocated descriptors. Mitigation Mitigation for this issue is either n...
CVE-2024-40970
In the Linux kernel, the following vulnerability has been resolved: Avoid hwdesc array overrun in dw-axi-dmac I have a use case where nrbuffers = 3 and in which each descriptor is composed by 3 segments, resulting in the DMA channel descsallocated to be 9. Since axidescput handles the hwdesc...
CVE-2024-40970
In the Linux kernel, the following vulnerability has been resolved: Avoid hwdesc array overrun in dw-axi-dmac I have a use case where nrbuffers = 3 and in which each descriptor is composed by 3 segments, resulting in the DMA channel descsallocated to be 9. Since axidescput handles the hwdesc...
UBUNTU-CVE-2024-40970
In the Linux kernel, the following vulnerability has been resolved: Avoid hwdesc array overrun in dw-axi-dmac I have a use case where nrbuffers = 3 and in which each descriptor is composed by 3 segments, resulting in the DMA channel descsallocated to be 9. Since axidescput handles the hwdesc...
CVE-2024-40970 Avoid hw_desc array overrun in dw-axi-dmac
In the Linux kernel, the following vulnerability has been resolved: Avoid hwdesc array overrun in dw-axi-dmac I have a use case where nrbuffers = 3 and in which each descriptor is composed by 3 segments, resulting in the DMA channel descsallocated to be 9. Since axidescput handles the hwdesc...
CVE-2024-40970
The CVE-2024-40970 entry concerns a Linux kernel vulnerability in the dw-axi-dmac component that can cause a kernel panic due to an overrun of the hw_desc array when a descriptor chain expands (example: nr_buffers=3 with 3 segments per descriptor, totaling 9). The proposed fix, as described in mu...
CVE-2024-40970
In the Linux kernel, the following vulnerability has been resolved: Avoid hwdesc array overrun in dw-axi-dmac I have a use case where nrbuffers = 3 and in which each descriptor is composed by 3 segments, resulting in the DMA channel descsallocated to be 9. Since axidescput handles the hwdesc...
CVE-2024-40970 Avoid hw_desc array overrun in dw-axi-dmac
In the Linux kernel, the following vulnerability has been resolved: Avoid hwdesc array overrun in dw-axi-dmac I have a use case where nrbuffers = 3 and in which each descriptor is composed by 3 segments, resulting in the DMA channel descsallocated to be 9. Since axidescput handles the hwdesc...
Linux kernel security vulnerabilities
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an array out-of-bounds that may occur in the dw-axi-dmac component when processing DMA channel descriptors...
GSD-2022-1005479 dmaengine: dw-axi-dmac: do not print NULL LLI during error
dmaengine: dw-axi-dmac: do not print NULL LLI during error This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.63 by commit...
PT-2022-33737 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.63 Description: The issue is related to the dmaengine, specifically the dw-axi-dmac, where it does not properly handle errors, potentially leading to information disclosure. The actual impact and attack...
GSD-2022-1005092 dmaengine: dw-axi-dmac: do not print NULL LLI during error
dmaengine: dw-axi-dmac: do not print NULL LLI during error This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.4 by commit...