70401 matches found
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: crypto: krb5enc – Fix for skipping hash verification during asynchronous decryption. The krb5encdispatchdecrypt function sets req-base.complete as the skcipher callback. This means that the caller’s own completion handler is...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: tracing/dma: CapDMAmapsg tracepoint arrays to prevent buffer overflows. The dmamapsg tracepoint can cause a PERF buffer overflow when tracing large scatter-gather lists. When devices like virtio-gpu create large DRM buffers, the...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: vmwballoon: Indicates success when effectively deflating during migration. When migrating a balloon page, we first deflate the old page, and then inflate the new page. However, if inflating the new page succeeds, we effectively...
Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: xen/privcmd: Fixed a possible warning in privcmdioctlmmapresource. Since ‘kdata.num’ is a user-controlled data, if the user attempts to allocate memory larger than MAXORDER, then kcalloc will fail. This will also generate a stack...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: drm/xe/pxp: The “clear restart flag” is cleared after returning to the previous state via a jump. If we do not clear this flag, we will continue to jump back at the beginning of the function once we reach the end. Identified from...
Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: fs/ntfs3: Fixed a memory leak that occurred when ntfsreadmft failed. When the label ATTRROOT in ntfsreadmft sets isroot = true and ni-niflags |= NIFLAGDIR, the next attribute will go to the label ATTRALLOC, resulting in an...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: mm/uffd: A warning is now prevented when PTE MARKERUFFDWP is not compiled in. When PTE MARKERUFFDWP is not configured, it’s still possible to access the pte marker code and trigger a warning. Add some CONFIGPTE MARKERUFFDWP ifdef...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: perf: Fixed the refcount warning when incrementing event-mmapcount. When calling refcountinc&event-mmapcount within perfmmaprb, the following warning is triggered: c refcountt: Addition on 0; use-after-free. WARNING:...
Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1
In the Linux kernel, the following vulnerability has been resolved: nilfs2: A bug in markbufferdirty was fixed, as it sometimes generates a warning due to the forced discard of reused buffers. A syzbot stress test using a corrupted disk image revealed that markbufferdirty called from nilfsmark...
Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1
In the Linux kernel, the following vulnerability has been resolved: fs: Protect reconfiguration of sb read-write from racing writes The code responsible for reconfiguration and remounting the filesystem requires significant effort to protect it from racing writes during read-only operations...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/qm – Requesting a reserved interrupt for the virtual function The device interrupt vector 3 is an error interrupt for physical functions, and it is also a reserved interrupt for virtual functions. However, the...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: TCP: Fixed the issue where skbcopyubufs was used in conjunction with BIG TCP, causing crashes due to TCP tx zerocopy using hugepages, and when the skb length exceeded approximately 68 KB. skbcopyubufs assumed that it could copy a...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: smb: server: The senddone handler now handles completion without using IBSENDSIGNALED. With smbdirectsendbatch, we likely have requests that do not include IBSENDSIGNALED. These requests will be destroyed during the final request...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: drm/tilcdc: Fixed the cleanup actions in case of a failed probe. The drmkmshelperpollfini and drmatomichelpershutdown helpers should only be called when the device has been successfully registered. Currently, these functions a...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Check for the NOTREADY flag state after locking Currently, the check for the NOTREADY flag is performed before obtaining the necessary lock. This creates a possibility for race conditions when the flow is concurrently...
Astra Linux – Vulnerability in PackageKit
PackageKit is a D-Bus abstraction layer that allows users to manage packages in a secure manner using an API that works across different distros and architectures. From version 1.0.2 to 1.3.4, PackageKit was vulnerable to a time-of-check time-of-use TOCTOU race condition involving transaction...
Astra Linux – Vulnerability in Linux
In the Linux kernel, the following vulnerabilities have been resolved: m68k: For mvme147 and mvme16x architectures, do not wipe the PCC timer configuration bits. Do not clear the timer 1 configuration bits when clearing the interrupt flag and counter overflow. As reported by Michael, “This result...
Astra Linux – Vulnerability in Linux
In the Linux kernel, the following vulnerability has been resolved: crypto: qat – The ADFSTATUSPFRUNNING flag should be set after adfdevinit. The ADFSTATUSPFRUNNING flag is only used and checked by adfvf2pfshutdown before calling adfiovputmsg-mutexlockvf2pflock. However, vf2pflock is initialized ...
Astra Linux – Vulnerability in Linux, Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: spi: Fixed a use-after-free issue with devmspialloc. We cannot rely on the contents of the devres list during spiunregistercontroller, as the list is already cleared when we call devmspireleasecontroller. This causes devices...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: The fs and lock operations during checks for active status. The referenced commits introduced a two-step process for deleting FTEs: - Lock the FTE, delete it from the hardware, set the hardware deletion function to NULL...