CVE-2022-49435 mfd: davinci_voicecodec: Fix possible null-ptr-deref davinci_vc_probe()

In the Linux kernel, the following vulnerability has been resolved: mfd: davincivoicecodec: Fix possible null-ptr-deref davincivcprobe It will cause null-ptr-deref when using 'res', if platformgetresource returns NULL, so move using 'res' after devmioremapresource that will check it to avoid...

CVE-2022-49424 iommu/mediatek: Fix NULL pointer dereference when printing dev_name

In the Linux kernel, the following vulnerability has been resolved: iommu/mediatek: Fix NULL pointer dereference when printing devname When larbdev is NULL in the case I hit, the node is incorrectly set iommus = , it will cause devicelinkadd fail and kernel crashes when we try to print...

CVE-2022-49323

In the Linux kernel, the following vulnerability has been resolved: iommu/arm-smmu: fix possible null-ptr-deref in armsmmudeviceprobe It will cause null-ptr-deref when using 'res', if platformgetresource returns NULL, so move using 'res' after devmioremapresource that will check it to avoid...

CVE-2022-49307

In the Linux kernel, the following vulnerability has been resolved: tty: synclinkgt: Fix null-pointer-dereference in slgtclean When the driver fails at allochdlcdev, and then we remove the driver module, we will get the following splat: 25.065966 general protection fault, probably for non-canonic...

CVE-2024-53226

In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix NULL pointer derefernce in hnsrocemapmrsg ibmapmrsg allows ULPs to specify NULL as the sgoffset argument. The driver needs to check whether it is a NULL pointer before dereferencing it...

CVE-2024-49871 Input: adp5589-keys - fix NULL pointer dereference

In the Linux kernel, the following vulnerability has been resolved: Input: adp5589-keys - fix NULL pointer dereference We register a devm action to call adp5589clearconfig and then pass the i2c client as argument so that we can call i2cgetclientdata in order to get our device object. However,...

CVE-2024-46719 usb: typec: ucsi: Fix null pointer dereference in trace

In the Linux kernel, the following vulnerability has been resolved: usb: typec: ucsi: Fix null pointer dereference in trace ucsiregisteraltmode checks ISERR for the alt pointer and treats NULL as valid. When CONFIGTYPECDPALTMODE is not enabled, ucsiregisterdisplayport returns NULL which causes a...

CVE-2022-48841 ice: fix NULL pointer dereference in ice_update_vsi_tx_ring_stats()

In the Linux kernel, the following vulnerability has been resolved: ice: fix NULL pointer dereference in iceupdatevsitxringstats It is possible to do NULL pointer dereference in routine that updates Tx ring stats. Currently only stats and bytes are updated when ring pointer is valid, but later on...

CVE-2022-48718 drm: mxsfb: Fix NULL pointer dereference

In the Linux kernel, the following vulnerability has been resolved: drm: mxsfb: Fix NULL pointer dereference mxsfb should not ever dereference the NULL pointer which drmatomicgetnewbridgestate is allowed to return. Assume a fixed format instead...

CVE-2021-47610 drm/msm: Fix null ptr access msm_ioctl_gem_submit()

In the Linux kernel, the following vulnerability has been resolved: drm/msm: Fix null ptr access msmioctlgemsubmit Fix the below null pointer dereference in msmioctlgemsubmit: 26545.260705: Call trace: 26545.263223: krefput+0x1c/0x60 26545.266452: msmioctlgemsubmit+0x254/0x744 26545.270937:...

CVE-2024-38573 cppc_cpufreq: Fix possible null pointer dereference

In the Linux kernel, the following vulnerability has been resolved: cppccpufreq: Fix possible null pointer dereference cppccpufreqgetrate and hisicppccpufreqgetrate can be called from different places with various parameters. So cpufreqcpuget can return null as 'policy' in some circumstances. Fix...

CVE-2024-27060 thunderbolt: Fix NULL pointer dereference in tb_port_update_credits()

In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Fix NULL pointer dereference in tbportupdatecredits Olliver reported that his system crashes when plugging in Thunderbolt 1 device: BUG: kernel NULL pointer dereference, address: 0000000000000020 PF: supervisor read...

Updated tmux packages fix security vulnerability

Fixed a null pointer dereference in window.c. CVE-2022-47016...

GSD-2022-1006595 gpio: mockup: fix NULL pointer dereference when removing debugfs

gpio: mockup: fix NULL pointer dereference when removing debugfs This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.146 by commit...

GSD-2022-1006522 sfc/siena: fix null pointer dereference in efx_hard_start_xmit

sfc/siena: fix null pointer dereference in efxhardstartxmit This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.12 by commit...

GSD-2021-1001003 mac80211: Fix NULL ptr deref for injected rate info

mac80211: Fix NULL ptr deref for injected rate info This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.46 by commit...

Unbreakable Enterprise kernel-container security update

4.14.35-2047.504.2.el7 - md/raid1: properly indicate failure when ending a failed write request Paul Clements Orabug: 32887159 - video: hypervfb: Add ratelimit on error message Michael Kelley Orabug: 32856879 - Drivers: hv: vmbus: Initialize unloadevent statically Andrea Parri Microsoft Orabug:...

[slackware-security] libpng

New libpng packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix a security issue. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/libpng-1.6.27-i586-1slack14.2.txz: Upgraded. This release fixes an old NULL pointer dereference bug i...

Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2015-3014)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2015-3014 advisory. - kvm: fix excessive pages un-pinning in kvmiommumap error path. Quentin Casasnovas Orabug: 20687314 CVE-2014-3601 CVE-2014-8369 CVE-2014-3601 -...