drm/amd/display: Fix out-of-bounds access in 'dcn21_link_encoder_create'

...

SUSE-SU-2025:02737-1 Security update for libsoup

This update for libsoup fixes the following issues: - CVE-2025-4945: Add value checks for date/time parsing bsc1243314...

CVE-2022-49979

In the Linux kernel, the following vulnerability has been resolved: net: fix refcount bug in skpsockget 2 Syzkaller reports refcount bug as follows: ------------ cut here ------------ refcountt: saturated; leaking memory. WARNING: CPU: 1 PID: 3605 at lib/refcount.c:19...

CVE-2022-49033 btrfs: qgroup: fix sleep from invalid context bug in btrfs_qgroup_inherit()

In the Linux kernel, the following vulnerability has been resolved: btrfs: qgroup: fix sleep from invalid context bug in btrfsqgroupinherit Syzkaller reported BUG as follows: BUG: sleeping function called from invalid context at include/linux/sched/mm.h:274 Call Trace: dumpstacklvl+0xcd/0x134...

RHSA-2021:5160 Red Hat Security Advisory: go-toolset:rhel8 security and bug fix update

Bulletin has no description...

CVE-2024-46737 nvmet-tcp: fix kernel crash if commands allocation fails

In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: fix kernel crash if commands allocation fails If the commands allocation fails in nvmettcpalloccmds the kernel crashes in nvmettcpreleasequeuework because of a NULL pointer dereference. nvmet: failed to install queue 0...

CVE-2024-46737 nvmet-tcp: fix kernel crash if commands allocation fails

In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: fix kernel crash if commands allocation fails If the commands allocation fails in nvmettcpalloccmds the kernel crashes in nvmettcpreleasequeuework because of a NULL pointer dereference. nvmet: failed to install queue 0...

ALSA-2024:2098 Important: container-tools:rhel8 security and bug fix update

The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Bug Fixes: containerinitt does not possess ptrace process context almalinux-8.9.0.z JIRA:AlmaLinux-28923 Security Fixes: podman: full container escape at build time CVE-2024-1753...

CVE-2023-52570 vfio/mdev: Fix a null-ptr-deref bug for mdev_unregister_parent()

In the Linux kernel, the following vulnerability has been resolved: vfio/mdev: Fix a null-ptr-deref bug for mdevunregisterparent Inject fault while probing mdpy.ko, if kstrdup of createdir fails in kobjectaddinternal in kobjectinitandadd in mdevtypeadd in parentcreatesysfsfiles, it will return 0...

CVE-2021-46931

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Wrap the tx reporter dump callback to extract the sq Function mlx5etxreporterdumpsq casts its void argument to struct mlx5etxqsq , but in TX-timeout-recovery flow the argument is actually of type struct mlx5etxtimeoutc...

RXSA-2023:0951 Important: kernel security and bug fix update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: use-after-free caused by l2capreassemblesdu in net/bluetooth/l2capcore.c CVE-2022-3564 kernel: stack overflow in doprocdointvec and procskipspaces CVE-2022-4378 kernel: use-after-free in...

GSD-2022-1007403 scsi: libsas: Fix use-after-free bug in smp_execute_task_sg()

scsi: libsas: Fix use-after-free bug in smpexecutetasksg This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.220 by commit...

GSD-2022-1006579 drm/gma500: Fix BUG: sleeping function called from invalid context errors

drm/gma500: Fix BUG: sleeping function called from invalid context errors This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.146 by commit...

GSD-2022-1006550 drm/gma500: Fix BUG: sleeping function called from invalid context errors

drm/gma500: Fix BUG: sleeping function called from invalid context errors This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.71 by commit...

GSD-2022-1006134 video: fbdev: arkfb: Fix a divide-by-zero bug in ark_set_pixclock()

video: fbdev: arkfb: Fix a divide-by-zero bug in arksetpixclock This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.256 by commit...

GSD-2022-1005152 drm/ttm: Fix dummy res NULL ptr deref bug

drm/ttm: Fix dummy res NULL ptr deref bug This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.4 by commit...

go-toolset and golang security and bug fix update

An update is available for golang, go-toolset. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Go Toolset provides the Go programming language tools and librarie...

container-tools:3.0 security and bug fix update

buildah 1.19.9-1 - update to the latest content of https://github.com/containers/buildah/tree/release-1.19 https://github.com/containers/buildah/commit/c1d6200 - fixes CVE-2021-3602 - Related: 1977943...

UVI-2021-1000740 ext4: fix bug on in ext4_es_cache_extent as ext4_split_extent_at failed

ext4: fix bug on in ext4escacheextent as ext4splitextentat failed This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.194 by commit...

SUSE: Security Advisory (SUSE-SU-2019:2727-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...