58908 matches found
Astra Linux - уязвимость в linux-5.10, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: net: hns3 – Fixed a kernel crash that occurred when devlink reloaded during pf initialization. The devlink reloading process will access hardware resources, but the register operations are performed before the hardware is...
Astra Linux - уязвимость в busybox
A use-after-free vulnerability was discovered in BusyBox v.1.36.1 through a malicious awk pattern in the awk.c copyvar function...
Astra Linux - уязвимость в linux-5.10, linux
In the Linux kernel, the following vulnerabilities have been resolved: ixgbe: Added locking to prevent panic when setting sriovnumvfs to zero. It is possible to disable VFs while the PF driver is processing requests from the VF driver. This can result in a panic. BUG: Unable to handle kernel pagi...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Fixed the memory leak in sashba.phy in mpi3mrremove. Released mrioc-sashba.phy during .remove...
Astra Linux - уязвимость в linux-6.1
In the Linux kernel, the following vulnerability has been resolved: LoongArch: Disable IRQs before initfn for non-boot CPUs. Disable IRQs before initfn for non-boot CPUs during hotplug operations, in order to silence such warnings and also to avoid potential errors due to unexpected interrupts...
Astra Linux - уязвимость в linux-5.10, linux-5.15
In the Linux kernel, the following vulnerabilities have been resolved: iavf: fixed the hang upon reboot with Ice When a system with E810 and existing VFs is rebooted, the following hang may occur. PID 1 hangs in iavfremove, which is part of a network driver: PID: 1 TASK: ffff965400e5a340 CPU: 24...
Astra Linux - уязвимость в linux-5.10, linux
In the Linux kernel, the following vulnerabilities have been resolved: bpf: Prevent “decltag” from being referenced in “funcproto” arguments. Syzkaller managed to encounter another issue with “decltag”: btffuncprotocheck kernel/bpf/btf.c:4506 inline btfcheckalltypes kernel/bpf/btf.c:4734 inline...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: ext4: fixed a memory leak in parseapplysbmountoptions If processing the disk-mounted options fails after any memory has been allocated in the ext4FS context, such as for sqfnames, then this memory is leaked. This issue can be fix...
Astra Linux - уязвимость в linux-5.10, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: OPP: Added an index check to ensure no buffer overflow occurs in readfreq. The freq index is passed to the assert function to ensure that we do not read values from the opp-rates table when called from the indexed variants:...
Astra Linux - уязвимость в linux-6.1, linux-5.15, linux-5.10
In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v2m: Prevention of use after freeing gicv2mgetfwnode. With ACPI enabled, the gicv2mgetfwnode function is registered with the PCI subsystem as pcimsigetfwnodecb. This function might be called during a PCI host bridge...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: mm: call -freefolio directly in foliounmapinvalidate. We can only call filemapfreefolio if we have a reference to or hold a lock on the mapping. Otherwise, we have already removed the folio from the mapping, so it no longer pinch...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: spi: cadence-quadspi: – Parsing the DT Device Tree for flashes along with the rest of the DT parsing. The recent refactoring of the code responsible for enabling runtime PM was implemented in the commit f1eb4e792bb1 „spi:...
Astra Linux - уязвимость в libtar
The thread function does not free the variable t-thbuf.gnulonglink after allocating memory, which may lead to a memory leak...
Astra Linux - уязвимость в espeak-ng
It was discovered that Espeak-ng 1.52-dev contains a Stack Buffer Overflow issue due to the function RemoveEnding in the dictionary.c file...
Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15
In the Linux kernel, the following vulnerability has been resolved: net: lltemac: The function platformgetresource was replaced with the function devmplatformioremapresourcebyname. This function is called using 0 as the name. Eventually, this leads to a call to platformgetresourcebyname in the ca...
Astra Linux - уязвимость в linux-5.10, linux-5.15, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: drm/bridge: tpd12s015: A buggy exit annotation for the remove function was removed. With tpd12s015remove marked with exit, this function is discarded when the driver is compiled as a built-in component. As a result, when the driv...
Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: jfs: fixed a slab-out-of-bounds Read in dtSearch Currently, when searching for the current page in the sorted entry table of the page, there is an out-of-bound access. A bound check has been added to fix this error. Dave: Set the...
Astra Linux - уязвимость в ffmpeg5
The Ffmpeg v.N113007-g8d24a28d06 has a buffer overflow vulnerability that allows a local attacker to execute arbitrary code through the libavfilter/avfshowspectrum.c:1789:52 component in showspectrumpicrequestframe...
Astra Linux - уязвимость в binutils
A issue was discovered in the mergestrings function in the merge.c file within the Binary File Descriptor BFD library also known as libbfd, as part of the GNU Binutils 2.31. There is a NULL pointer dereferencing issue when attempting to merge sections with large alignments using bfdaddmergesectio...
Astra Linux - уязвимость в djvulibre
A flaw was discovered in djvulibre-3.5.28 and earlier. A heap buffer overflow occurs in the function DJVU::GBitmap::decode, due to a malicious djvu file, which may lead to the application crashing and other related issues...