721 matches found
Astra Linux - уязвимость в linux, linux-5.10
A memory leak issue was discovered in the TCP source port generation algorithm in the net/ipv4/tcp.c file, due to the small table perturb size. This flaw may allow an attacker to leak information and may cause a denial of service problem...
Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15
In the Linux kernel, the following vulnerability has been resolved: drm/tegra: dsi: Added a check for the return value of offinddevicebynode. Added a check on the return value of offinddevicebynode, and return an error if it fails, in order to avoid NULL pointer dereferencing...
Astra Linux - уязвимость в linux-5.10, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: a potential memory leak has been fixed in mlx5einitreprx. The memory pointed to by the priv-rxres pointer is not freed during the error-prone execution of mlx5einitreprx, which can lead to a memory leak. This issue has...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: An off-by-one error occurred in dmdmuboutbox1lowirq. The condition ARRAYSIZE should be set to = ARRAYSIZE to prevent out-of-bounds access...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: drm/ast: astdp: Fixed the timeout for enabling the video signal. The ASTDP transmitter sometimes takes up to 1 second to enable the video signal, while the timeout is only 200 msec. This results in a kernel error message. The...
Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15
In the Linux kernel, the following vulnerability has been resolved: Wifi: ath9k: Delay all operations related to ath9kwmieventtasklet until initialization is complete. The ath9kwmieventtasklet function used in ath9khtc assumes that all data structures have been fully initialized by the time it...
Astra Linux - уязвимость в linux-5.10, linux
In the Linux kernel, the following vulnerabilities have been resolved: ext4: Fixed the bug in ext4mbuse inodepa. Hulk Robot reported a BUGON: kernel BUG at fs/ext4/mballoc.c:3211! ... RIP: 0010:ext4mbmarkdiskspaceused.cold+0x85/0x136f ... Call Trace: ext4mbnewblocks+0x9df/0x5d30...
Astra Linux - уязвимость в linux-5.10, linux
In the Linux kernel, the following vulnerability has been resolved: TCP: Fixed issues related to data races around sysctltcpmtuprobing. When reading sysctltcpmtuprobing, it can be changed concurrently. Therefore, we need to add READONCE to its readers...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: io-wq: Fixed a memory leak during worker creation. If the CPU mask allocation for a node fails, the memory allocated for the ‘iowqe’ structure of the current node does not get freed during error handling, since it has not yet bee...
Astra Linux - уязвимость в linux-5.10, linux-5.15, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: jbd2: Check ‘jh-btransaction’ before removing it from the checkpoint. The following process will corrupt the ext4 image: Step 1: jbd2journalcommittransaction jbd2journalinsertcheckpointjh, committransaction // Place jh into...
Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15
In the Linux kernel, the following vulnerability has been resolved: net: dcb: The correct policy must be chosen to parse DCBATTRBCN. The dcbnlbcnsetcfg function uses an incorrect policy to parse tbDCBATTRBCN. This issue was introduced in commit 859ee3c43812 “DCB: Add support for DCB BCN”. Please...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: iouring/net: Do not allow overflowing multishot recv. Do not allow overflowing multishot recv CQs; this could lead to unexpected behavior, degrade performance, and in the worst-case scenario, cause the task to terminate due to...
Astra Linux - уязвимость в linux-5.15
In the Linux kernel, the following vulnerabilities have been resolved: mptcp: Do not queue data on closed subflows. Dipanjan reported a critical bug fix at the right time: WARNING: CPU: 1 PID: 10818 at net/ipv4/afinet.c:153 inetsockdestruct+0x6d0/0x8e0 net/ipv4/afinet.c:153 Linked modules:...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: ext4: Error checking was added to ext4extreplaysetiblocks. If the call to ext4mapblocks fails due to a corrupted file system, ext4extreplaysetiblocks may get stuck in an infinite loop. This issue can be reproduced by running...
Astra Linux - уязвимость в linux-5.10, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: tls: Taking a reference to psock after locking rxlock to avoid leaks At the beginning of tlsswrecvmsg, we take a reference to psock, and then call tlsrxreaderlock. If this call fails, we return directly without releasing the...
Astra Linux - уязвимость в linux, linux-6.1, linux-5.15, linux-5.10
In the Linux kernel, the following vulnerabilities have been resolved: BPF: Check rcureadlockTraceheld before calling BPF map helpers. These three BPFmaplookup,update,deleteelem helpers are also available for sleepable BPF programs. Therefore, add the corresponding lock assertions for sleepable B...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerabilities have been resolved: mshv: Error handling in mshvregionpin has been fixed. The current error handling has two issues: Firstly, the pinuserpagesfast function may return a short pin count less than the requested count but greater than zero when it...
Astra Linux - уязвимость в linux-5.10, linux-5.15
In the Linux kernel, the following vulnerability has been resolved: cifs: fixed potential oops in cifsoplockbreak With deferred close, there may be situations where closes occur simultaneously with lease breaks. With the current checks for whether to send the lease response, oplockresponse, this...
Astra Linux - уязвимость в linux, linux-5.15, linux-5.10
In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx4: This issue prevents shift wrapping in the setusersqsize function. The ucmd-logsqbbcount variable is controlled by the user, which means that the shift operation can cause wrapping. This issue can be fixed by using...
Astra Linux - уязвимость в linux-5.10, linux-5.15
In the Linux kernel, the following vulnerabilities have been resolved: drm/msm/adreno: Fixed null pointer access in adrenogpucleanup Fixed the kernel panic caused by null pointer access: 18.504431 Unable to handle kernel NULL pointer dereference at virtual address 0000000000000048 18.513464 Mem...