GSD-2023-1001723 drm/msm/dp: do not complete dp_aux_cmd_fifo_tx() if irq is not for aux transfer

drm/msm/dp: do not complete dpauxcmdfifotx if irq is not for aux transfer This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.7 by commit...

Important: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

SUSE-SU-2023:0146-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-3344: Fixed a flaw found in the KVM's AMD nested virtualization SVM. A malicious L1 guest could purposely fail to intercept the shutdown of a cooperativ...

ALSA-2023:0334 Important: kernel security and bug fix update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: watch queue race condition can lead to privilege escalation CVE-2022-2959 kernel: memory corruption in AX88179178A based USB ethernet device. CVE-2022-2964 kernel: i915: Incorrect GPU TLB...

GSD-2023-1001312 clk: st: Fix memory leak in st_of_quadfs_setup()

clk: st: Fix memory leak in stofquadfssetup This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.163 by commit...

GSD-2023-1001299 eventpoll: add EPOLL_URING_WAKE poll wakeup flag

eventpoll: add EPOLLURINGWAKE poll wakeup flag This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.162 by commit...

PT-2023-33957 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.87 Description: The issue concerns the ext4 file system. It involves checking and asserting if marking a no delete evicting inode dirty can lead to potential security vulnerabilities. The actual impact and...

Important: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

RLSA-2023:0101 Important: kernel security and bug fix update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: memory corruption in AX88179178A based USB ethernet device. CVE-2022-2964 kernel: i915: Incorrect GPU TLB flush can lead to random memory access CVE-2022-4139 For more details about the...

DEBIAN-CVE-2022-2196

A regression exists in the Linux Kernel within KVM: nVMX that allowed for speculative execution attacks. L2 can carry out Spectre v2 attacks on L1 due to L1 thinking it doesn't need retpolines or IBPB after running L2 due to KVM L0 advertising eIBRS support to L1. An attacker at L2 with code...

OESA-2023-1012 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. fs/ksmbd/smb2misc.c has an out-of-bounds read and OOPS for SMB2TREECONNECT.CVE-2022-47938 An issue was discovered in ksmbd in the Linux kernel...

Out-of-bounds

In sprdsysdump driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in kernel...

CVE-2022-39116

In sprdsysdump driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in kernel...

CVE-2022-39118

CVE-2022-39118 affects the sprd_sysdump driver, where a missing bounds check can lead to an out-of-bounds write and potentially local denial of service in the kernel. The primary sources consistently describe this issue as a local vulnerability with a MEDIUM severity (CVSS 3.1: AV:L/AC:L/PR:L/UI:...

Unbreakable Enterprise kernel security update

4.1.12-124.70.2 - proc: procskipspaces shouldn't think it is working on C strings Linus Torvalds Orabug: 34882781 CVE-2022-4378 - proc: avoid integer type confusion in getproclong Linus Torvalds Orabug: 34882781 CVE-2022-4378 - netfilter: nfconntrackirc: Fix forged IP logic David Leadbeater Orabu...

OESA-2022-2147 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In l2capchanput of l2capcore, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2022:4616-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:4616-1 advisory. - A flaw was found in hw. Mis-trained branch predictions for return instructions may allow arbitrary speculati...

SUSE-SU-2022:4617-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-4378: Fixed stack overflow in doprocdointvec bsc1206207. - CVE-2022-42328: Guests could trigger denial of service via the netback driver bsc1206114. ...

CVE-2022-47939

An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. fs/ksmbd/smb2pdu.c has a use-after-free and OOPS for SMB2TREEDISCONNECT...

SUSE-SU-2022:4580-1 Security update for the Linux Kernel (Live Patch 26 for SLE 15 SP2)

This update for the Linux Kernel 5.3.18-15020024112 fixes several issues. The following security issues were fixed: - CVE-2022-43945: Fixed a buffer overflow in the NFSD implementation bsc1205128. - CVE-2022-4378: Fixed stack overflow in doprocdointvec bsc1206207. - CVE-2022-4139: Fixed an issue...