Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: schedext: Preemption between scxclaimexit and the kicking of helper tasks is disabled. scxclaimexit atomically sets the exitkind value, preventing scxerror from triggering further error handling. After claiming exit, the caller...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: i2c: designware: amdisp: Fixed the race condition involving the resume-probe function. The race condition was identified in kernel version 7.0, with the commit code 38fa29b01a6a „i2c: designware: Combine the init functions“...

Astra Linux – Vulnerability in Linux 5.10, Linux

In the Linux kernel, the following vulnerability has been resolved: cxl: fixed a possible null-ptr-deref in cxlguestinitafu|adapter. If deviceregister fails in cxlregisterafu|adapter, the device is not added. In this case, deviceunregister cannot be called in the error path. Otherwise, a...

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerabilities have been resolved: Memory: pl353-smc: Fixed a refcount leak issue in pl353smcprobe. The break in foreachavailablechildofnode requires a corresponding ofnodeput when the reference ‘child’ is no longer used. In this case, we don’t need to call...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: iio: imu: stlsm6dsx: Set buffer sampling frequency for accelerometer only The stlsm6dsxhwfifoodrstore function, which is called when the user space writes the buffer sampling frequency sysfs attribute, calls stlsm6dsxcheckodr,...

Astra Linux - уязвимость в linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: scsi: pm80xx: Avoid leaking tags when processing the OPCINBSETCONTROLLERCONFIG command. The tags allocated for the OPCINBSETCONTROLLERCONFIG command need to be freed when we receive the response...

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: drm/radeon: Check the return value of allocworkqueue in radeoncrtcinit. Check the return value of allocworkqueue in radeoncrtcinit to avoid null-ptr-deref...

Astra Linux - уязвимость в linux-5.10, linux, linux-5.15

A memory leak issue was discovered in the ctnetlinkcreateconntrack function within net/netfilter/nfconntracknetlink.c in the Linux kernel. This issue may allow a local attacker with CAPNETADMIN privileges to trigger a Denial-of-Service DoS attack due to a refcount overflow...

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: net: hns3: Fix for kernel crashes when 1588 messages are received on HIP08 devices. HIP08 devices do not register ptp devices. As a result, hdev-ptp is NULL. However, the hardware can receive 1588 messages and set the HNS3RXDTSVL...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: bonding: Fixed a NULL dereference of the struct bonding.rrtxcounter member. This issue occurs because if a bond is created with an initial mode != zero Round Robin, the memory required for the counter is never allocated. When...

Astra Linux – Vulnerability in Linux 5.10, Linux

In the Linux kernel, the following vulnerability has been resolved: scsi: scsidebug: Fixed an out-of-bound read in respreadcap16 The following warning was observed when running syzkaller: 3813.830724 sgwrite: Data size 65466/242 bytes for the SCSI command 0x9e—guessing data size as 65466/242 byte...

Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: usb:typec:tipd: The WARNON message in tps6598xblockread has been removed. Calling tps6598xblockread with a parameter length greater than allowed can be handled by simply returning an error. There is no need to cause system crashe...

Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: iavf: Freeing qvectors before queues in iavfdisablevf. The iavffreequeues function clears adapter-numactivequeues, which iavffreeqvectors relies on. Therefore, the order of these two function calls in iavfdisablevf needs to be...

Astra Linux - уязвимость в linux

In the Linux kernel, the following vulnerability has been resolved: net: fec: fixed the potential memory leak in fecenetinit. If the memory allocated for cbdbase fails, it should free the memory allocated for the queues; otherwise, a memory leak will occur. And if the memory allocated for the...

Astra Linux - уязвимость в linux

In the Linux kernel, the following vulnerability has been resolved: x86/kvm: Disabling kvmclock on all CPUs during shutdown Currently, we disable kvmclock through the machineshutdown hook. This only occurs for the boot CPU. We need to disable it for all CPUs to prevent memory corruption, especial...

Astra Linux – Vulnerability in Linux

In the Linux kernel, the following vulnerability has been resolved: uiohvgeneric: A memory leak has been fixed in error handling paths. If the vmbusestablishgpadl function fails, the recv|sendgpadl functions will not be updated, and the hvuiocleanup function in the error handling path will not be...

Astra Linux – Vulnerability in Linux

In the Linux kernel, the following vulnerabilities have been resolved: nbd: Fixed NULL pointer in flushworkqueue Open /dev/nbdX first; the configrefs will be 1, and the pointers in nbddevice remain null. Disconnect /dev/nbdX, then reference a NULL recvworkq. The protection provided by configrefs ...

Astra Linux - уязвимость в linux

In the Linux kernel, the following vulnerability has been resolved: md/raid1: Proper handling is implemented to indicate a failure when ending a failed write request. This patch addresses a data corruption bug in raid1 arrays that utilize bitmaps. Without this fix, the bitmap bits for failed I/O...

Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: ipmr,ip6mr: acquiring RTNL before calling ip6mrfreetable in the failure path The ip6mrfreetable function can only be called under an RTNL lock condition. RTNL: assertion failed at net/core/dev.c 10367 WARNING: CPU: 1 PID: 5890 at...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: PM: EM: Fix for NULL pointer dereferencing when the perf domain ID is not found. The devenergymodelnlgetperfdomainsdoit function calls emperfdomaingetbyid, but it does not check the return value before passing it to emnlgetpdsize...