CVE-2021-47303 bpf: Track subprog poke descriptors correctly and fix use-after-free

In the Linux kernel, the following vulnerability has been resolved: bpf: Track subprog poke descriptors correctly and fix use-after-free Subprograms are calling mappoketrack, but on program release there is no hook to call mappokeuntrack. However, on program release, the aux memory and poke...

SUSE CVE-2024-35859

In the Linux kernel, the following vulnerability has been resolved: block: fix module reference leakage from bdevopenbydev error path At the time bdevmayopen is called, module reference is grabbed already, hence module reference should be released if bdevmayopen failed. This problem is found by...

CVE-2024-35951

In the Linux kernel, the following vulnerability has been resolved: drm/panfrost: Fix the error path in panfrostmmumapfaultaddr Subject: PATCH drm/panfrost: Fix the error path in panfrostmmumapfaultaddr If some the pages or sgt allocation failed, we shouldn't release the pages ref we got earlier,...

CVE-2024-35951

In the Linux kernel, the following vulnerability has been resolved: drm/panfrost: Fix the error path in panfrostmmumapfaultaddr Subject: PATCH drm/panfrost: Fix the error path in panfrostmmumapfaultaddr If some the pages or sgt allocation failed, we shouldn't release the pages ref we got earlier,...

CVE-2024-35951 drm/panfrost: Fix the error path in panfrost_mmu_map_fault_addr()

In the Linux kernel, the following vulnerability has been resolved: drm/panfrost: Fix the error path in panfrostmmumapfaultaddr Subject: PATCH drm/panfrost: Fix the error path in panfrostmmumapfaultaddr If some the pages or sgt allocation failed, we shouldn't release the pages ref we got earlier,...

CVE-2024-35951 drm/panfrost: Fix the error path in panfrost_mmu_map_fault_addr()

In the Linux kernel, the following vulnerability has been resolved: drm/panfrost: Fix the error path in panfrostmmumapfaultaddr Subject: PATCH drm/panfrost: Fix the error path in panfrostmmumapfaultaddr If some the pages or sgt allocation failed, we shouldn't release the pages ref we got earlier,...

CVE-2024-35859

In the Linux kernel, the following vulnerability has been resolved: block: fix module reference leakage from bdevopenbydev error path At the time bdevmayopen is called, module reference is grabbed already, hence module reference should be released if bdevmayopen failed. This problem is found by...

CVE-2024-35831

In the Linux kernel, the following vulnerability has been resolved: iouring: Fix release of pinned pages when iouaddrmap fails Looking at the error path of iouaddrmap, if we fail after pinning the pages for any reasons, ret will be set to -EINVAL and the error handler won't properly release the...

CVE-2024-35831

In the Linux kernel, the following vulnerability has been resolved: iouring: Fix release of pinned pages when iouaddrmap fails Looking at the error path of iouaddrmap, if we fail after pinning the pages for any reasons, ret will be set to -EINVAL and the error handler won't properly release the...

CVE-2024-35831 io_uring: Fix release of pinned pages when __io_uaddr_map fails

In the Linux kernel, the following vulnerability has been resolved: iouring: Fix release of pinned pages when iouaddrmap fails Looking at the error path of iouaddrmap, if we fail after pinning the pages for any reasons, ret will be set to -EINVAL and the error handler won't properly release the...

CVE-2024-35831 io_uring: Fix release of pinned pages when __io_uaddr_map fails

In the Linux kernel, the following vulnerability has been resolved: iouring: Fix release of pinned pages when iouaddrmap fails Looking at the error path of iouaddrmap, if we fail after pinning the pages for any reasons, ret will be set to -EINVAL and the error handler won't properly release the...

UBUNTU-CVE-2024-27418

In the Linux kernel, the following vulnerability has been resolved: net: mctp: take ownership of skb in mctplocaloutput Currently, mctplocaloutput only takes ownership of skb on success, and we may leak an skb if mctplocaloutput fails in specific states; the skb ownership isn't transferred until...

SUSE CVE-2024-27054

In the Linux kernel, the following vulnerability has been resolved: s390/dasd: fix double module refcount decrement Once the discipline is associated with the device, deleting the device takes care of decrementing the module's refcount. Doing it manually on this error path causes refcount to...

SUSE CVE-2024-26985

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix bo leak in intelfbboframebufferinit Add a unreference bo in the error path, to prevent leaking a bo ref. Return 0 on success to clarify the success path. cherry picked from commit a2f3d731be3893e730417ae3190760fcaffdf...

AZL-40298 CVE-2024-27078 affecting package hyperv-daemons for versions less than 6.6.29.1-1

In the Linux kernel, the following vulnerability has been resolved: media: v4l2-tpg: fix some memleaks in tpgalloc In tpgalloc, resources should be deallocated in each and every error-handling paths, since they are allocated in for statements. Otherwise there would be memleaks because tpgfree is...

DEBIAN-CVE-2024-27068

In the Linux kernel, the following vulnerability has been resolved: thermal/drivers/mediatek/lvtsthermal: Fix a memory leak in an error handling path If devmkrealloc fails, then 'efuse' is leaking. So free it to avoid a leak...

DEBIAN-CVE-2023-52652

In the Linux kernel, the following vulnerability has been resolved: NTB: fix possible name leak in ntbregisterdevice If deviceregister fails in ntbregisterdevice, the device name allocated by devsetname should be freed. As per the comment in deviceregister, callers should use putdevice to give up...

UBUNTU-CVE-2024-27054

In the Linux kernel, the following vulnerability has been resolved: s390/dasd: fix double module refcount decrement Once the discipline is associated with the device, deleting the device takes care of decrementing the module's refcount. Doing it manually on this error path causes refcount to...

UBUNTU-CVE-2023-52652

In the Linux kernel, the following vulnerability has been resolved: NTB: fix possible name leak in ntbregisterdevice If deviceregister fails in ntbregisterdevice, the device name allocated by devsetname should be freed. As per the comment in deviceregister, callers should use putdevice to give up...

CVE-2023-52652 NTB: fix possible name leak in ntb_register_device()

In the Linux kernel, the following vulnerability has been resolved: NTB: fix possible name leak in ntbregisterdevice If deviceregister fails in ntbregisterdevice, the device name allocated by devsetname should be freed. As per the comment in deviceregister, callers should use putdevice to give up...