Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: arcnet: Add a NULL check in com20020pciprobe. devmkasprintf returns NULL when memory allocation fails. Currently, com20020pciprobe does not check for this case, resulting in a NULL pointer being dereferenced. Add a NULL check aft...

Astra Linux – Vulnerability found in Linux 6.1, Linux 5.10, and Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: pmdomain: ti: Add a null pointer check to oprprmdomaininit. devmkasprintf returns a pointer to dynamically allocated memory; this pointer may be NULL in case of failure. Ensure that the allocation was successful by checking the...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: xfs: removed calls to xchkxfiledescr macros. The xchkxfiledescr macros use kasprintf, which may fail to allocate memory if the formatted string is longer than 16 bytes or whatever value nofail currently guarantees. Some of the...

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: pinctrl: devicetree: fixed null pointer dereferencing in pinctrldttomap Here is the BUG report by KASAN regarding null pointer dereferencing: BUG: KASAN: nullptrderef in strcmp+0x2e/0x50 A read of size 1 was performed at address...

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: HID: Multitouch: Corrected the reference to the devm device for the hidinput inputdevice name. The reference should point to the HID device, rather than the input device, for the allocation of the inputdevice name. Referring to t...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: lib/stringhelpers: Fixed the issue where strarray was not added to the device’s resource list. Added the allocated strarray to the device’s resource list. This is necessary to automatically release the strarray when the device...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: ASoC: amd/sdwutils: avoid NULL deref when devmkasprintf fails devmkasprintf may return NULL when memory allocation fails. However, the debug message prints cpus-dainame before checking it. Move the devdbg call after the NULL chec...

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: gpio: gr gpio: Add a NULL check in gr gpioprobe. The devmkasprintf function can return a NULL pointer if it fails, but this returned value in gr gpioprobe is not checked. Add a NULL check in gr gpioprobe to handle the potential...

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: powerpc/powernv: Added a null pointer check to scomdebuginitone. The kasprintf function returns a pointer to dynamically allocated memory; this pointer may be NULL in case of failure. A null pointer check should be added, and the...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: pstore/zone: Added a null pointer check to pszkmsgread. The kasprintf function returns a pointer to dynamically allocated memory; this pointer may be NULL in case of failure. Ensure that the allocation was successful by checking...

Astra Linux – Vulnerability in Linux, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: x86/xen: Fixed a memory leak in xeninitlockcpu. In xeninitlockcpu, the @name function allocates a new string using kasprintf. If the bindipitoirqhandler function fails, that allocated string should be freed; otherwise, it may lea...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: igb: Fixed string truncation warnings in igbsetfwversion. Commit 1978d3ead82c “intel: fixed string truncation warnings” fixes the warning “-Wformat-truncation=” in igbmain.c by using kasprintf. In...

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: - dmaengine: ti: edma: Add some null pointer checks to the edmaprobe. - devmkasprintf returns a pointer to dynamically allocated memory; this pointer may be NULL in case of failure. Ensure that the allocation was successful by...

Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: power: supply: fixed null pointer dereferencing in powersupplygetbatteryinfo. When kmalloc fails to allocate memory in kasprintf, propname will be NULL. The strcmp function called by ofgetproperty will cause a null pointer...

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerability has been resolved: powerpc/imc-pmu: A null pointer check was added in updateeventsingroup. kasprintf returns a pointer to dynamically allocated memory; this pointer can be NULL in case of failure...

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: mfd: syscon: Fixed a null pointer dereferencing in ofsysconregister. The kasprintf function returns a pointer to dynamically allocated memory; this pointer may be NULL in case of failure...

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerability has been resolved: powerpc/powernv: A null pointer check was added in opalpowercapinit. The kasprintf function returns a pointer to dynamically allocated memory; this pointer may be NULL in case of failure...

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerability has been resolved: powerpc/powernv: Added a null pointer check in opaleventinit. kasprintf returns a pointer to dynamically allocated memory; this pointer may be NULL in case of failure...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: drm: xlnx: zynqmpdpsub: Add a NULL check in zynqmpaudioinit. Calls to devmkasprintf may return null pointers in case of failure. However, some return values were not checked in zynqmpaudioinit. Add a NULL check in zynqmpaudioinit...

Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: Related to overlay: fixing a null pointer dereferencing issue in finddupcsetnodeentry and finddupcsetprop. When kmalloc fails to allocate memory in kasprintf, fn1 or fn2 will be NULL, and strcmp will cause a null pointer...