CVE-2022-50581 hfs: fix OOB Read in __hfs_brec_find

In the Linux kernel, the following vulnerability has been resolved: hfs: fix OOB Read in hfsbrecfind Syzbot reported a OOB read bug: ================================================================== BUG: KASAN: slab-out-of-bounds in hfsstrcmp+0x117/0x190 fs/hfs/string.c:84 Read of size 1 at addr...

CVE-2022-50301

In the Linux kernel, the following vulnerability has been resolved: iommu/omap: Fix buffer overflow in debugfs There are two issues here: 1 The "len" variable needs to be checked before the very first write. Otherwise if omap2iommudumpctx with "bytes" less than 32 it is a buffer overflow. 2 The...

SUSE CVE-2021-47606

In the Linux kernel, the following vulnerability has been resolved: net: netlink: afnetlink: Prevent empty skb by adding a check on len. Adding a check on len parameter to avoid empty skb. This prevents a division error in netemenqueue function which is caused when skb-len=0 and skb-datalen=0 in...

GSD-2022-1008170 tipc: fix the msg->req tlv len check in tipc_nl_compat_name_table_dump_header

tipc: fix the msg-req tlv len check in tipcnlcompatnametabledumpheader This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.225 by commit...

GSD-2022-1007947 tipc: fix the msg->req tlv len check in tipc_nl_compat_name_table_dump_header

tipc: fix the msg-req tlv len check in tipcnlcompatnametabledumpheader This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.79 by commit...

CVE-2020-11833

In /SM8250QMaster/android/vendor/oppocharger/oppo/chargeric/oppomp2650.c, the function mp2650datalogwrite in mp2650datalogwrite does not check the parameter len which causes a vulnerability...