Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: The TID is decremented during error handling for RX peer frag setup. Currently, the TID is not decremented before peer cleanup, during the error handling phase of the ath12kdprxpeerfragsetup function. This could lea...

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: ceph parselongname: strrchr expects a NUL-terminated string … And parselongname does not guarantee this. That’s why it uses kmemdupnul to create an NUL-terminated string for the argument passed to kstrtou64; The problem is that...

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: Wifi: mt76: mt7925: Fixed the nullptrderef issue in mt7925thermalinit. devmkasprintf returns NULL when there is an error. Currently, mt7925thermalinit does not check for this case, resulting in a NULL pointer dereference. Add a...

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: Input: ims-pcu – check the record size in imspcuflashfirmware. The “len” variable comes from the firmware, and we generally don’t trust the firmware. However, it’s always better to double-check. If the “len” is too large, it coul...

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Avoid potential use-of-memory errors in devlosstmocallbk. Smatch detected a potential use-of-memory of an ndlp object in devlosstmocallbk during driver unloading or fatal error handling. The issue was fixed by...

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: ksmbd: The issue of a refcount leak causing resources not being released has been fixed. When ksmbdconnreleasingopinfo-conn returns true, the refcount was not decremented properly, resulting in a refcount leak. This prevents the...

Astra Linux - уязвимость в linux-6.12

In the Linux kernel, the following vulnerability has been resolved: smc: Fix various oops due to inetsock type confusion. syzbot reported weird splats 01 in cipsov4socksetattr while freeing inetsksk-inetopt. The address was freed multiple times even though it was read-only memory...

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: NFSv4: A deadlock occurs when recovering state on a file that has been renamed. If a file is renamed and scheduled for deletion upon closing, a server reboot may trigger an open reclaim operation. This can lead to a race conditio...

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerabilities have been resolved: md: fixed the UAF issue when iterating the allmddevs list While iterating the allmddevs list from mdnotifyreboot and mdexit, listforeachentry Safe is used. This can lead to a race condition with deletint, causing a UAF: t1:...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: ila: blocking BH in ilaoutput As explained in commit 1378817486d6 “tipc: blocking BH before using dstcache”, the net/core/dstcache.c helper functions need to be called with blocking BH disabled. ilaoutput is called from...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: BPF: Fixed an issue where reservations were advanced beyond their limit in the ringbuf structure. The BPF ring buffer is internally implemented as a circular buffer of a power-of-2 size, with two logical and ever-increasing...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: s390/sclp: Fixed the issue where sclpinit fails and does not clean up properly. If sclpinit fails, it only partially cleans up resources. If there are multiple failed calls to sclpinit, sclpstatechangeevent will be added multiple...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: RDMA/restrack: Fixed potential invalid address access issues. The kernname of the struct rdmarestrackentry was set to KBUILDMODNAME in the ibcreatecq function. If the module exits but forgets to remove this rdmarestrackentry, ...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: usb: atm: cxacru: fix endpoint checking in cxacrubind Syzbot is still reporting a rather old issue 1 that occurs due to incomplete checking of existing USB endpoints. As a result, incorrect endpoint types may be used during the...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: ipv6: Fixed a potential race condition in fib6 Droppcpufrom. syzbot detected a race condition in fib6 Droppcpufrom 1. If the compiler reads the value more than once ppcpurt, the second reading might result in NULL, especially ...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: afunix: Fixed data race conditions in unixreleasesock/unixstreamsendmsg. A data race condition was identified in afunix. In one data path, the write function unixreleasesock atomically writes to sk-skshutdown using WRITEONCE...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: ima: Avoid blocking in the RCU read-side critical section. A panic occurs in imamatchpolicy: BUG: Unable to handle a NULL pointer dereferencing in the kernel at 0000000000000010. PGD 42f873067 P4D 0 Oops: 0000 1 SMP NOPTI CPU:...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: dm cache: Fixed potential out-of-bounds access during the first resume. Out-of-bounds access occurs when the fast device is unexpectedly expanded before the first resume of the cache table. This happens because expanding the fast...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: USB: dwc3: core: Remove the lock of the OTG mode during gadget suspension/resumption to avoid deadlock. When the CONFIGUSBDWC3DUALROLE configuration is selected, and the system is triggered to enter suspension using the following...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: USB: serial: ioedgeport: fix use after free in debug printk The line “devdbg&urb-dev-dev, …” occurs after the function usbfreeurburb. This is a use after free of the “urb” pointer. To avoid this issue, store the “dev” pointer at...