334 matches found
UBUNTU-CVE-2021-47601
In the Linux kernel, the following vulnerability has been resolved: tee: amdtee: fix an ISERR vs NULL bug The getfreepages function does not return error pointers it returns NULL so fix this condition to avoid a NULL dereference...
UBUNTU-CVE-2024-38539
In the Linux kernel, the following vulnerability has been resolved: RDMA/cma: Fix kmemleak in rdmacore observed during blktests nvme/rdma use siw When running blktests nvme/rdma, the following kmemleak issue will appear. kmemleak: Kernel memory leak detector initialized mempool available:36041...
DEBIAN-CVE-2024-36968
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix div-by-zero in l2capleflowctlinit l2capleflowctlinit can cause both div-by-zero and an integer overflow since hdev-lemtu may not fall in the valid range. Move MTU from hcidev to hciconn to validate MTU and...
SUSE CVE-2021-47260
In the Linux kernel, the following vulnerability has been resolved: NFS: Fix a potential NULL dereference in nfsgetclient None of the callers are expecting NULL returns from nfsgetclient so this code will lead to an Oops. It's better to return an error pointer. I expect that this is dead code so...
DEBIAN-CVE-2021-47260
In the Linux kernel, the following vulnerability has been resolved: NFS: Fix a potential NULL dereference in nfsgetclient None of the callers are expecting NULL returns from nfsgetclient so this code will lead to an Oops. It's better to return an error pointer. I expect that this is dead code so...
CVE-2021-47260
In the Linux kernel, the following vulnerability has been resolved: NFS: Fix a potential NULL dereference in nfsgetclient None of the callers are expecting NULL returns from nfsgetclient so this code will lead to an Oops. It's better to return an error pointer. I expect that this is dead code so...
CVE-2021-47260
In the Linux kernel, the following vulnerability has been resolved: NFS: Fix a potential NULL dereference in nfsgetclient None of the callers are expecting NULL returns from nfsgetclient so this code will lead to an Oops. It's better to return an error pointer. I expect that this is dead code so...
DEBIAN-CVE-2024-35904
In the Linux kernel, the following vulnerability has been resolved: selinux: avoid dereference of garbage after mount failure In case kernmount fails and returns an error pointer return in the error branch instead of continuing and dereferencing the error pointer. While on it drop the never read...
PT-2024-29149 · Linux +3 · Linux Kernel +3
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a copy-paste error in the Linux kernel, specifically in the mlx90635 probe function. When devm regmap init i2c fails, regmap ee could be an error pointer, but...
kernel: Bluetooth: hci_sync: fix memory leak in hci_update_adv_data()
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcisync: fix memory leak in hciupdateadvdata When hcicmdsyncqueue failed in hciupdateadvdata, instptr is not freed, which will cause memory leak, convert to use ERRPTR/PTRERR to pass the instance to callback so no memo...
SUSE CVE-2021-46995
In the Linux kernel, the following vulnerability has been resolved: can: mcp251xfd: mcp251xfdprobe: fix an error pointer dereference in probe When we converted this code to use deverrprobe we accidentally removed a return. It means that if devmclkget it will lead to an Oops when we call clkgetrat...
CVE-2021-46995
In the Linux kernel, the following vulnerability has been resolved: can: mcp251xfd: mcp251xfdprobe: fix an error pointer dereference in probe When we converted this code to use deverrprobe we accidentally removed a return. It means that if devmclkget it will lead to an Oops when we call clkgetrat...
Spoofing
In the Linux kernel, the following vulnerability has been resolved: can: mcp251xfd: mcp251xfdprobe: fix an error pointer dereference in probe When we converted this code to use deverrprobe we accidentally removed a return. It means that if devmclkget it will lead to an Oops when we call clkgetrat...
CVE-2021-46995
In the Linux kernel, the following vulnerability has been resolved: can: mcp251xfd: mcp251xfdprobe: fix an error pointer dereference in probe When we converted this code to use deverrprobe we accidentally removed a return. It means that if devmclkget it will lead to an Oops when we call clkgetrat...
OESA-2023-1323 kernel security update
The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel before 6.0.3, drivers/gpu/drm/virtio/virtgpuobject.c misinterprets the drmgemshmemgetsgtable return value expects it to be NULL in the error case, whereas it is actually an error pointer.CVE-2023-22998...
OESA-2023-1324 kernel security update
The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel before 6.0.3, drivers/gpu/drm/virtio/virtgpuobject.c misinterprets the drmgemshmemgetsgtable return value expects it to be NULL in the error case, whereas it is actually an error pointer.CVE-2023-22998...
kernel: drm/virtio: improper return value check in virtio_gpu_object_shmem_init()
In the Linux kernel before 6.0.3, drivers/gpu/drm/virtio/virtgpuobject.c misinterprets the drmgemshmemgetsgtable return value expects it to be NULL in the error case, whereas it is actually an error pointer...
kernel: drm/virtio: improper return value check in virtio_gpu_object_shmem_init()
In the Linux kernel before 6.0.3, drivers/gpu/drm/virtio/virtgpuobject.c misinterprets the drmgemshmemgetsgtable return value expects it to be NULL in the error case, whereas it is actually an error pointer...
kernel: drm/virtio: improper return value check in virtio_gpu_object_shmem_init()
In the Linux kernel before 6.0.3, drivers/gpu/drm/virtio/virtgpuobject.c misinterprets the drmgemshmemgetsgtable return value expects it to be NULL in the error case, whereas it is actually an error pointer...
CVE-2023-22997
In the Linux kernel before 6.1.2, kernel/module/decompress.c misinterprets the modulegetnextpage return value expects it to be NULL in the error case, whereas it is actually an error pointer...