PT-2023-33365 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.227 Description: A potential security issue has been identified in the Linux Kernel, related to the ASoC: soc-pcm component. The actual impact and attack plausibility have not yet been proven...

PT-2023-33087 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.15 Description: The issue is related to the addition of a sentinel to the quirks table in the PCI mt7621 driver. It was introduced in version v5.5 and fixed in version v6.0.15. The actual impact and attack...

PT-2023-33115 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions v5.12 through v6.0.12 Description: The issue concerns a NULL pointer dereference in the can rcv filter function. This problem was introduced in version v5.12 and is fixed in version v6.0.13. The actual impact and potenti...

PT-2023-34172 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.86 Description: The issue is related to a possible use-after-free UAF in the snic tgt create function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel...

GSD-2022-1007900 net: microchip: sparx5: Fix potential null-ptr-deref in sparx_stats_init() and sparx5_start()

net: microchip: sparx5: Fix potential null-ptr-deref in sparxstatsinit and sparx5start This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.80 ...

GSD-2022-1007881 kprobes: Skip clearing aggrprobe's post_handler in kprobe-on-ftrace case

kprobes: Skip clearing aggrprobe's posthandler in kprobe-on-ftrace case This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.80 by commit...

PT-2022-36012 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.9 Description: A potential memory leak issue was identified in the 'add widget node' function of the ALSA hda module. The actual impact and attack plausibility have not yet been proven. Recommendations: For...

PT-2022-36286 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.156 Description: The issue concerns an invalid length check when fetching device IDs. This problem was introduced in version v5.3 and is fixed in version v5.10.156. The actual impact and attack plausibilit...

PT-2022-36063 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.8 Description: The issue is related to the ext4 file system, where a directory entry with an invalid rec len can trigger a BUG ON condition. The actual impact and potential for exploitation have not been...

PT-2022-35962 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.10 Description: The issue is related to the blk-cgroup in the Linux Kernel, where the parent is not properly pinned in blkcg css online. The actual impact and attack plausibility have not yet been proven...

PT-2022-36571 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.14.299 Description: The issue is related to ulist leaks in error paths of qgroup self tests in the btrfs filesystem. The actual impact and attack plausibility have not yet been proven. Recommendations: For...

AZL-11483 CVE-2022-45884 affecting package kernel for versions less than 5.15.122.1-2

An issue was discovered in the Linux kernel through 6.0.9. drivers/media/dvb-core/dvbdev.c has a use-after-free, related to dvbregisterdevice dynamically allocating fops...

Exploit for Improper Input Validation in Imagemagick

Container Escape Exploit This is a container escape exploit t...

GSD-2022-1007532 ext4: fix null-ptr-deref in ext4_write_info

ext4: fix null-ptr-deref in ext4writeinfo This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.262 by commit...

GSD-2022-1007106 bpf: Propagate error from htab_lock_bucket() to userspace

bpf: Propagate error from htablockbucket to userspace This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.75 by commit...

GSD-2022-1007062 tty: serial: fsl_lpuart: disable dma rx/tx use flags in lpuart_dma_shutdown

tty: serial: fsllpuart: disable dma rx/tx use flags in lpuartdmashutdown This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.75 by commit...

GSD-2022-1006995 selinux: enable use of both GFP_KERNEL and GFP_ATOMIC in convert_context()

selinux: enable use of both GFPKERNEL and GFPATOMIC in convertcontext This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.76 by commit...

GSD-2022-1006984 udp: Update reuse->has_conns under reuseport_lock.

udp: Update reuse-hasconns under reuseportlock. This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.76 by commit...

GSD-2022-1006804 tty: serial: fsl_lpuart: disable dma rx/tx use flags in lpuart_dma_shutdown

tty: serial: fsllpuart: disable dma rx/tx use flags in lpuartdmashutdown This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.3 by commit...

GSD-2022-1006768 wifi: rtw89: free unused skb to prevent memory leak

wifi: rtw89: free unused skb to prevent memory leak This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.3 by commit...