4825 matches found
UBUNTU-CVE-2023-53598
In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: Range check CHDBOFF and ERDBOFF If the value read from the CHDBOFF and ERDBOFF registers is outside the range of the MHI register space then an invalid address might be computed which later causes a kernel panic...
UBUNTU-CVE-2023-53609
In the Linux kernel, the following vulnerability has been resolved: scsi: Revert "scsi: core: Do not increase scsidevice's iorequestcnt if dispatch failed" The "atomicinc&cmd-device-iorequestcnt" in scsiqueuerq would cause kernel panic because cmd-device may be freed after returning from...
UBUNTU-CVE-2023-53538
In the Linux kernel, the following vulnerability has been resolved: btrfs: insert tree mod log move in pushnodeleft There is a fairly unlikely race condition in tree mod log rewind that can result in a kernel panic which has the following trace: 530.569 BTRFS critical device sda3: unable to find...
UBUNTU-CVE-2023-53580
In the Linux kernel, the following vulnerability has been resolved: USB: Gadget: core: Help prevent panic during UVC unconfigure Avichal Rakesh reported a kernel panic that occurred when the UVC gadget driver was removed from a gadget's configuration. The panic involves a somewhat complicated...
CVE-2023-53609 scsi: Revert "scsi: core: Do not increase scsi_device's iorequest_cnt if dispatch failed"
In the Linux kernel, the following vulnerability has been resolved: scsi: Revert "scsi: core: Do not increase scsidevice's iorequestcnt if dispatch failed" The "atomicinc&cmd-device-iorequestcnt" in scsiqueuerq would cause kernel panic because cmd-device may be freed after returning from...
CVE-2023-53609
CVE-2023-53609 affects Linux kernel’s SCSI subsystem. The vulnerability stems from atomic_inc(&cmd->device->iorequest_cnt) in scsi_queue_rq(), which could access a freed scsi_device after scsi_dispatch_cmd() returns, risking kernel panic. The patch reverts the changes introduced by commit c...
CVE-2023-53609 scsi: Revert "scsi: core: Do not increase scsi_device's iorequest_cnt if dispatch failed"
In the Linux kernel, the following vulnerability has been resolved: scsi: Revert "scsi: core: Do not increase scsidevice's iorequestcnt if dispatch failed" The "atomicinc&cmd-device-iorequestcnt" in scsiqueuerq would cause kernel panic because cmd-device may be freed after returning from...
CVE-2023-53598 bus: mhi: host: Range check CHDBOFF and ERDBOFF
In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: Range check CHDBOFF and ERDBOFF If the value read from the CHDBOFF and ERDBOFF registers is outside the range of the MHI register space then an invalid address might be computed which later causes a kernel panic...
CVE-2023-53598 bus: mhi: host: Range check CHDBOFF and ERDBOFF
In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: Range check CHDBOFF and ERDBOFF If the value read from the CHDBOFF and ERDBOFF registers is outside the range of the MHI register space then an invalid address might be computed which later causes a kernel panic...
CVE-2023-53580 USB: Gadget: core: Help prevent panic during UVC unconfigure
In the Linux kernel, the following vulnerability has been resolved: USB: Gadget: core: Help prevent panic during UVC unconfigure Avichal Rakesh reported a kernel panic that occurred when the UVC gadget driver was removed from a gadget's configuration. The panic involves a somewhat complicated...
CVE-2023-53580
CVE-2023-53580 : In the Linux kernel, a deadlock could occur when unbinding a UVC gadget driver because gadget_unbind_driver() holds udc->connect_lock while invoking the driver’s unbind(), while usb_gadget_deactivate() also tries to acquire that lock. The fix removes the mutex around the unbin...
CVE-2023-53580 USB: Gadget: core: Help prevent panic during UVC unconfigure
In the Linux kernel, the following vulnerability has been resolved: USB: Gadget: core: Help prevent panic during UVC unconfigure Avichal Rakesh reported a kernel panic that occurred when the UVC gadget driver was removed from a gadget's configuration. The panic involves a somewhat complicated...
CVE-2023-53573 clk: rs9: Fix suspend/resume
In the Linux kernel, the following vulnerability has been resolved: clk: rs9: Fix suspend/resume Disabling the cache in commit 2ff4ba9e3702 "clk: rs9: Fix I2C accessors" without removing cache synchronization in resume path results in a kernel panic as map-cacheops is unset, due to REGCACHENONE...
CVE-2023-53573 clk: rs9: Fix suspend/resume
In the Linux kernel, the following vulnerability has been resolved: clk: rs9: Fix suspend/resume Disabling the cache in commit 2ff4ba9e3702 "clk: rs9: Fix I2C accessors" without removing cache synchronization in resume path results in a kernel panic as map-cacheops is unset, due to REGCACHENONE...
CVE-2023-53573
CVE-2023-53573 affects the Linux kernel (clk: rs9) and was resolved by enabling the flat cache again during suspend/resume. The issue occurred when disabling the cache in the commit for clk: rs9: Fix I2C accessors without removing cache synchronization in the resume path, causing a kernel panic b...
CVE-2023-53563 cpufreq: amd-pstate-ut: Fix kernel panic when loading the driver
In the Linux kernel, the following vulnerability has been resolved: cpufreq: amd-pstate-ut: Fix kernel panic when loading the driver After loading the amd-pstate-ut driver, amdpstateutcheckperf and amdpstateutcheckfreq use cpufreqcpuget to get the policy of the CPU and mark it as busy. In these...
CVE-2023-53563
CVE-2023-53563 relates to the Linux kernel amd-pstate-ut driver. The root cause is that after calling amd_pstate_ut_check_perf() and amd_pstate_ut_check_freq(), the code uses cpufreq_cpu_get() to obtain the CPU policy but fails to release it with cpufreq_policy_put, causing the policy to remain b...
CVE-2023-53563 cpufreq: amd-pstate-ut: Fix kernel panic when loading the driver
In the Linux kernel, the following vulnerability has been resolved: cpufreq: amd-pstate-ut: Fix kernel panic when loading the driver After loading the amd-pstate-ut driver, amdpstateutcheckperf and amdpstateutcheckfreq use cpufreqcpuget to get the policy of the CPU and mark it as busy. In these...
CVE-2023-53542 ARM: dts: exynos: Use Exynos5420 compatible for the MIPI video phy
In the Linux kernel, the following vulnerability has been resolved: ARM: dts: exynos: Use Exynos5420 compatible for the MIPI video phy For some reason, the driver adding support for Exynos5420 MIPI phy back in 2016 wasn't used on Exynos5420, which caused a kernel panic. Add the proper compatible...
CVE-2023-53542 ARM: dts: exynos: Use Exynos5420 compatible for the MIPI video phy
In the Linux kernel, the following vulnerability has been resolved: ARM: dts: exynos: Use Exynos5420 compatible for the MIPI video phy For some reason, the driver adding support for Exynos5420 MIPI phy back in 2016 wasn't used on Exynos5420, which caused a kernel panic. Add the proper compatible...