73449 matches found
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: Fixed an issue where the nftcountersenabled counter might underflow during the execution of nftablesaddchain. The syzbot reports that the nftcountersenabled counter underflows at nftablesaddchain1. The issue...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: btrfs: Added missing error handling inside the getcanonicaldevpath function. Inside the getcanonicaldevpath function, we call dpath to obtain the final device path. However, dpath may return an error. In such cases, the next call...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: cachefiles: Unmarking an inode as in use in error paths If an error occurs, the inode is marked as “in use”. If the marking of the inode as “in use” occurs in cachefilesopenfile, Cachefiles will report an error message saying...
Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15
In the Linux kernel, the following vulnerability has been resolved: net: lltemac: The function platformgetresource was replaced with the function devmplatformioremapresourcebyname. This function is called using 0 as the name. Eventually, this leads to a call to platformgetresourcebyname in the ca...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerabilities have been resolved: hugetlb, userfaultfd: fixed the issue of reservation restoration when an error occurs with userfaultfd. Currently, in the iscontinue case within hugetlbmcopyatomicpte, if we use “goto outreleaseunlock;“ in cases where idx =...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerabilities have been resolved: Memory: renesas-rpc-if – fixed the platform-device leak in the error path. Make sure the flash platform device is freed in case registration fails during the probe...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerabilities have been resolved: scsi: pm8001: Fix tag leaks on error In functions like pm8001chipsetdevstatereq, pm8001chipfwflashupdatereq, pm80xxchipPhyCTLreq, and pm8001chipregdevreq, missing calls to pm8001tagfree were added to free the allocated tags wh...
Astra Linux - уязвимость в linux-5.10, linux
In the Linux kernel, the following vulnerability has been resolved: nilfs2: Replace WARNONs with nilfserror for checkpoint acquisition failures. If the creation or finalization of a checkpoint fails due to anomalies in the checkpoint metadata on disk, a kernel warning is generated. This patch...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: btrfs: Always report an error in runonedelayedref. Currently, we have a btrfsdebug function for handling failures in runonedelayedref. However, if end users encounter such problems, there will be no chance that btrfsDebug is...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: RDMA/cm: Fixed a memory leak in ibcminsertlisten. The function cmallocidpriv allocates resources for the cmidpriv. When cminitlisten fails, it does not free those allocated resources, resulting in a memory leak. Added missing...
Astra Linux - уязвимость в linux, linux-5.10, linux-5.15
In the Linux kernel, the following vulnerability has been resolved: mmc: mmcspi: fixed error handling in mmcspiprobe If mmcaddhost fails, there is no need to call mmcremovehost; otherwise, it may cause a null-ptr-deref due to deleting a device that was not properly added in mmcremovehost. To fix...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: drm/bridge: samsung-dsim: Fixed a memory leak in the error path. In samsungdsimhostattach, the drmbridgeadd function is called to add the bridge. However, if samsungdsimregisterteirq or pdata-hostops-attach fails later, the...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: nfs: Return EISDIR when nfs3proccreate is called, if dalias is a directory. If we find an alias through nfs3docreate/nfsaddorobtain/dsplicealias that turns out to be a directory entry, we do not return any errors and simply ignor...
Astra Linux - уязвимость в firefox, thunderbird
When generating the assembly code for MLoadTypedArrayElementHole, an incorrect AliasSet was used. In conjunction with another vulnerability, this could have led to an out-of-bounds memory read. This vulnerability affects Thunderbird 91.8, Firefox 99, and Firefox ESR 91.8...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: The handling of the pcichanneliofrozen case is now performed only in amdgpupciresume. In current code, when a PCI error state pcichannelionormal is detected, it will report the PCIERSRESULTCANRECOVER status to the PCI...
Astra Linux - уязвимость в linux-5.10, linux-5.15, linux-6.1
In the Linux kernel, the following vulnerabilities have been resolved: xhci: Properly handling isoc Babble and Buffer Overrun events xHCI 4.9 explicitly prohibits making assumptions that the xHC has released its ownership of a multi-TRB TD when an error occurs in one of the early TRBs. However, t...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: Firmware: stratix10-rsu: Fixed a NULL pointer dereference issue when RSU is disabled. When the Remote System Update RSU is not enabled in the First Stage Boot Loader FSBL, the driver encounters a NULL pointer dereference when...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: bonding: An oops occurred during the rmmod operation. The command “rmmod bonding” causes an oops since the commit with the code change cc317ea3d927” „bonding: remove the redundant NULL check in the debugfs function”. The followin...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: ceph: fix crash after fscryptencryptpagecacheblocks error The function movedirtyfolioinpagearray was created by the commit ce80b76dd327 "ceph: introduce cephprocessfoliobatch method". The code for this function was moved from...
Astra Linux - уязвимость в linux-5.10, linux-5.15
In the Linux kernel, the following vulnerability has been resolved: nfsd: calls oprelease, even when opfunc returns an error. For operations with “trivial” replies, nfsd4encodeoperation will shortcut most of the encoding process and simply perform marshaling of the status. One of the things it...