31 matches found
Astra Linux – Vulnerability in Linux 6.12
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix deadlock when freeing cgroup storage The commit bc235cdb423a “bpf: Prevent deadlock from recursive bpftaskstorageget|delete” first introduced deadlock prevention for fentry/fexit programs attaching to bpftaskstorage...
Astra Linux – Vulnerability in Linux 6.12
In the Linux kernel, the following vulnerability has been resolved: s390/ism: Added a release function for struct device. According to the devicerelease function in /drivers/base/core.c, a device without a release function is considered a faulty device and must be fixed. The current code releases...
Astra Linux – Vulnerability in Linux 6.12
In the Linux kernel, the following vulnerability has been resolved: ksmbd: prevents the connection from being released during the oplock break notification. The ksmbdwork object can be freed after the connection is released. The rcount of ksmbdconn is incremented to indicate that the requests are...
Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12
In the Linux kernel, the following vulnerability has been resolved: ksmbd: Added a bounds check for the create lease context. A missing bounds check was added for the create lease context...
Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12
In the Linux kernel, the following vulnerability has been resolved: crypto: null – Use spin locks instead of mutexes. Since the null algorithm may be freed in the softirq context through afalg, using spin locks instead of mutexes helps protect the default null algorithm...
Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12
In the Linux kernel, the following vulnerability has been resolved: Media: Venus: HFI – Add a check to handle OOB writes in the SFR region. The value of sfr-bufsize is stored in shared memory and can be modified by malicious users. OOB write operations are possible when the buffer size is increas...
Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12
In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: fixed the nested key length validation in the set action. It is not safe to access nlalenovskey if the data is smaller than the netlink header. Ensure that the attribute is valid first...
Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12
In the Linux kernel, the following vulnerabilities have been resolved: Tracing: Fixed a use-after-free in printgraphfunctionflags during tracer switching. Kairui reported a Use-After-Free issue in printgraphfunctionflags during ftrace stress testing 1. This issue can be reproduced by putting a...
Astra Linux – Vulnerability in Linux 6.12
In the Linux kernel, the following vulnerabilities have been resolved: PM: hibernate: Avoid deadlock in hibernatecompressorparamset syzbot reported a deadlock in locksystemsleep see below. The write operation to "/sys/module/hibernate/parameters/compressor" conflicts with the registration of the...
Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12
In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: Prevention of division by zero The user can set any speed value. If the speed is greater than UINTMAX/8, a division by zero is possible. Found by the Linux Verification Center linuxtesting.org with SVACE...
PT-2024-36920 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel version 6.12 Description: A flaw in the Linux kernel's unpin user pages function assumes it handles NULL pages in the pages array, which is not the case. This issue can cause a kernel NULL pointer dereference. The problem arises...