189 matches found
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: fs/sysv: Null check to prevent the null-ptr-deref bug...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Use the correct encap attribute during invalidation With the introduction of post-action infrastructure, most users of the encap attribute were modified to obtain the correct attribute by calling the mlx5etcgetencapatt...
Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: watchdog: Fixed a memory leak in watchdogcdevregister. The kmemleak report indicates memory leaks in watchdogdevregister. The details are as follows: - Unreferenced object: 0xffff888116233000 size 2048: Command: “modprobe”, PI...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: drm/ttm: Do not leak a resource on eviction error. For eviction errors other than -EMULTIHOP, we were leaking a resource. This issue has been fixed. v2: - Avoid using another “goto” statement. Andi Shyti...
Astra Linux – Vulnerability in Linux, Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: atm: nicstar: Fixed a possible use-after-free in nicstarcleanup The remove path of this module calls deltimer. However, that function does not wait until the timer handler finishes. This means that the timer handler may still be...
Astra Linux – Vulnerability in Linux 5.10, Linux
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkosf: fixed a possible incorrect match in nfosffind. nfosffind incorrectly returns true in case of a mismatch, which leads to copying uninitialized memory areas in nftosf. This can result in leaking stale kerne...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: A leak of userns and mntidmap occurs in opentreeattr2. Once the wantmountsetattr function returns a positive value, it still requires finishmountkattr to release -mntuserns. If domountsetattr fails, it does not change this...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: mptcp: fixed data races related to remoteid. Similar to the previous patch, this issue was addressed by dealing with the data race on remoteid, by adding appropriate ONCE annotations...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: Wifi: mt76: mt7996: Fixed possible OOB access in mt7996tx. There is a possibility of Out-of-Boundary access in the mt7996tx routine if linkid is set to IEEE80211LINKUNSPECIFIED...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: drm/imagination: avoided deadlock on fence release The processing of fence release in the scheduler queue is performed on a workqueue, rather than directly in the release function itself. Deadlock issues have been fixed, such ...
Astra Linux – Vulnerability in Linux 5.10, Linux
In the Linux kernel, the following vulnerabilities have been resolved: net: openvswitch: Fixed a leak in nested actions. When parsing user-provided actions, the openvswitch module may dynamically allocate memory and store pointers in the internal copy of the actions. This memory must be freed whe...
Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1
In the Linux kernel, the following vulnerability has been resolved: i2c: core: Perform atomic i2c transfers when !preemptible is set. Since bae1d3a05a8b, i2c transfers are not atomic if preemption is disabled. However, non-atomic i2c transfers require preemption e.g., during waitforcompletion, wh...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: netfilter: nftables: Clean up the hook list when the offload flag check fails Resuspend the hook list so that nftchainreleasehook has a chance to release the hooks. BUG: Memory leak Unreferenced object 0xffff88810180b100 size...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btintelpcie: Memory allocation for driver-private data was not performed. The issue was that the driver did not allocate memory for the struct btinteldata structure, which is used to store internal data...
Astra Linux – Vulnerability in Linux 5.10
A flaw was discovered in the subsequent getuserpagesfast function within the Linux kernel’s interface for symmetric key cipher algorithms, specifically in the skcipherrecvmsg function of the crypto/algifskcipher.c file. This flaw allows a local user to crash the system...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: drm/amd: Fixed several cases of NULL pointer dereferencing during device cleanup. I also identified a few additional paths where cleanup failures occur due to a NULL version pointer on unsupported hardware. NULL checks have been...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: validate the virtual address and size of the userq buffer. It is necessary to validate the virtual address of the userq object to determine whether it is located in a valid vm mapping...
Astra Linux – Vulnerability in Linux 5.10, Linux
In the Linux kernel, the following vulnerabilities have been resolved: - dm clone: Fixed a UAF Use-after-Free in clonedtr. - Dmclone also has the same UAF issue when dmresume and dmdestroy are executed concurrently. Therefore, the timer is canceled again in clonedtr...
Astra Linux – Vulnerability in Linux 5.10, Linux, Linux 5.15
A flaw related to the use of “free” in the Linux kernel’s integrated infrared receiver/transceiver driver was discovered in the way local users detach RC devices. This flaw could be exploited by local users to crash the system or potentially escalate their privileges on the system...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: btrfs: Fixed a use-after-free on the inode when scanning the root during em shrinking. In the function btrfsscanroot, we access the root of the inode along with fsinfo through a call to btrfsfsclosing. After scheduling the inode...