4640 matches found
PT-2023-35101 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.93 Description: The issue is related to out-of-bounds reads in the wifi brcmfmac driver. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior...
Unbreakable Enterprise kernel security update
4.14.35-2047.522.3 - ALSA: pcm: oss: Fix race at SNDCTLDSPSYNC Sasha Levin Orabug: 34653896 CVE-2022-3303 - net/rds: Fill in rdsexthdrsize gaps Gerd Rausch Orabug: 34979172 - net/rds: Trigger rdssendhsping more than once Gerd Rausch Orabug: 34607787 - Revert 'RDS: TCP: Track peer's connection...
SUSE-SU-2023:0320-1 Security update for the Linux Kernel RT (Live Patch 1 for SLE 15 SP4)
This update for the Linux Kernel 5.14.21-150400155 fixes one issue. The following security issue was fixed: - CVE-2022-4379: Fixed a use-after-free vulnerability in nfs4file.c:nfs42sscopen bsc1206209...
SUSE-SU-2023:0267-1 Security update for the Linux Kernel (Live Patch 25 for SLE 15 SP3)
This update for the Linux Kernel 5.3.18-1503005998 fixes several issues. The following security issues were fixed: - CVE-2022-3424: Fixed use-after-free in grusetcontextoption, grufault and gruhandleusercallos that could lead to kernel panic bsc1204167. - CVE-2022-2602: Fixed a local privilege...
CVE-2022-38675
In gpu driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in kernel...
SUSE-SU-2023:0250-1 Security update for the Linux Kernel (Live Patch 32 for SLE 12 SP5)
This update for the Linux Kernel 4.12.14-122124 fixes several issues. The following security issues were fixed: - CVE-2022-3424: Fixed use-after-free in grusetcontextoption, grufault and gruhandleusercallos that could lead to kernel panic bsc1204167. - CVE-2022-3565: Fixed use-after-free in...
GSD-2023-1001723 drm/msm/dp: do not complete dp_aux_cmd_fifo_tx() if irq is not for aux transfer
drm/msm/dp: do not complete dpauxcmdfifotx if irq is not for aux transfer This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.7 by commit...
Important: Red Hat Security Advisory: kernel security and bug fix update
An update for kernel is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...
SUSE-SU-2023:0146-1 Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-3344: Fixed a flaw found in the KVM's AMD nested virtualization SVM. A malicious L1 guest could purposely fail to intercept the shutdown of a cooperativ...
ALSA-2023:0334 Important: kernel security and bug fix update
The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: watch queue race condition can lead to privilege escalation CVE-2022-2959 kernel: memory corruption in AX88179178A based USB ethernet device. CVE-2022-2964 kernel: i915: Incorrect GPU TLB...
GSD-2023-1001312 clk: st: Fix memory leak in st_of_quadfs_setup()
clk: st: Fix memory leak in stofquadfssetup This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.163 by commit...
GSD-2023-1001299 eventpoll: add EPOLL_URING_WAKE poll wakeup flag
eventpoll: add EPOLLURINGWAKE poll wakeup flag This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.162 by commit...
PT-2023-33957 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.87 Description: The issue concerns the ext4 file system. It involves checking and asserting if marking a no delete evicting inode dirty can lead to potential security vulnerabilities. The actual impact and...
Important: Red Hat Security Advisory: kernel security and bug fix update
An update for kernel is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...
RLSA-2023:0101 Important: kernel security and bug fix update
The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: memory corruption in AX88179178A based USB ethernet device. CVE-2022-2964 kernel: i915: Incorrect GPU TLB flush can lead to random memory access CVE-2022-4139 For more details about the...
DEBIAN-CVE-2022-2196
A regression exists in the Linux Kernel within KVM: nVMX that allowed for speculative execution attacks. L2 can carry out Spectre v2 attacks on L1 due to L1 thinking it doesn't need retpolines or IBPB after running L2 due to KVM L0 advertising eIBRS support to L1. An attacker at L2 with code...
OESA-2023-1012 kernel security update
The Linux Kernel, the operating system core itself. Security Fixes: An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. fs/ksmbd/smb2misc.c has an out-of-bounds read and OOPS for SMB2TREECONNECT.CVE-2022-47938 An issue was discovered in ksmbd in the Linux kernel...
Out-of-bounds
In sprdsysdump driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in kernel...
CVE-2022-39116
In sprdsysdump driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in kernel...
CVE-2022-39118
CVE-2022-39118 affects the sprd_sysdump driver, where a missing bounds check can lead to an out-of-bounds write and potentially local denial of service in the kernel. The primary sources consistently describe this issue as a local vulnerability with a MEDIUM severity (CVSS 3.1: AV:L/AC:L/PR:L/UI:...