1233 matches found
GSD-2022-1006331 swiotlb: avoid potential left shift overflow
swiotlb: avoid potential left shift overflow This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.9 by commit...
GSD-2022-1006310 ext4: add EXT4_INODE_HAS_XATTR_SPACE macro in xattr.h
ext4: add EXT4INODEHASXATTRSPACE macro in xattr.h This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.326 by commit...
GSD-2022-1006216 clk: qcom: ipq8074: dont disable gcc_sleep_clk_src
clk: qcom: ipq8074: dont disable gccsleepclksrc This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.291 by commit...
GSD-2022-1006194 loop: Check for overflow while configuring loop
loop: Check for overflow while configuring loop This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.292 by commit...
GSD-2022-1006127 tee: add overflow check in register_shm_helper()
tee: add overflow check in registershmhelper This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.256 by commit...
GSD-2022-1006034 drm/msm/mdp5: Fix global state lock backoff
drm/msm/mdp5: Fix global state lock backoff This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.211 by commit...
GSD-2022-1005961 um: add "noreboot" command line option for PANIC_TIMEOUT=-1 setups
um: add "noreboot" command line option for PANICTIMEOUT=-1 setups This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.211 by commit...
GSD-2022-1005802 can: j1939: j1939_session_destroy(): fix memory leak of skbs
can: j1939: j1939sessiondestroy: fix memory leak of skbs This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.138 by commit...
GSD-2022-1005727 net/af_packet: check len when min_header_len equals to 0
net/afpacket: check len when minheaderlen equals to 0 This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.141 by commit...
GSD-2022-1005676 md-raid: destroy the bitmap after destroying the thread
md-raid: destroy the bitmap after destroying the thread This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.61 by commit...
GSD-2022-1005608 mtd: parsers: ofpart: Fix refcount leak in bcm4908_partitions_fw_offset
mtd: parsers: ofpart: Fix refcount leak in bcm4908partitionsfwoffset This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.61 by commit...
GSD-2022-1005505 netfilter: nf_tables: possible module reference underflow in error path
netfilter: nftables: possible module reference underflow in error path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.63 by commit...
PT-2022-33839 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.61 Description: The issue is related to a potential security vulnerability in the jbd2 module of the Linux Kernel. The problem arises when a journal is aborted, leading to an assertion failure. The actual...
PT-2022-34037 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.138 Description: The issue is related to a potential buffer overflow in debugfs due to malformed user input. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux...
PT-2022-34216 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.211 Description: The issue concerns a potential security problem with the ext4 file system, specifically related to handling corrupted directories. The actual impact and likelihood of an attack have not bee...
PT-2022-34239 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.211 Description: A memory leak issue exists in the j1939 session destroy function, potentially leading to security vulnerabilities. The actual impact and attack plausibility have not yet been proven...
PT-2022-34175 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.137 Description: The issue is related to a warning in the isl29028 remove function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior to...
PT-2022-34365 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to 4.19.256 Description: The issue is related to the Linux Kernel, specifically concerning the ipq8074 component. It involves a potential security vulnerability where the gcc sleep clk src is not properly disabled...
PT-2022-34479 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.14.291 Description: The issue concerns a locking problem in the get phb number function. The actual impact and potential for attack have not been proven yet. Recommendations: For versions prior to v4.14.291,...
PT-2022-34252 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.211 Description: The issue is related to the assignment of scpi info in the arm scpi firmware. If the probe fails, scpi info should not be assigned. The actual impact and attack plausibility of this issue...