224356 matches found
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerabilities have been resolved: s390/zcrypt: Fixed a memory leak when CCA cards are used as accelerators. Tests revealed that a memory leak occurs when CCA cards are used as accelerators for clear-key RSA requests ME and CRT. With the recent modifications to...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerabilities have been resolved: - Media: qcom: camss: vfe: Fixed an out-of-bounds access in vfeisrregupdate. The vfeisr function iterates using MSMVFEIMAGEMASTERSNUM7 as the loop boundary and passes the index to vfeisrregupdate. However, the vfe-line array i...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: btrfs: fixed an incorrect return value after changing the leaf in lookupextentdataref After commit 1618aa3c2e01 “btrfs: simplified return variables in lookupextentdataref”, the err and ret variables were merged into a single ret...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Validation of doorbelloffset during user queue creation. The function amdgpuuserqgetdoorbellindex passes the user-provided doorbelloffset to amdgpudoorbellindexonbar without proper checking. An arbitrarily large...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: ipv6: ioam: Fixed a heap buffer overflow in ioam6fillTraceData. In the receive path, ioam6fillTraceData uses trace-nodelen to determine how much data to write for each node. It relies on this field directly from the incoming...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: ipc4-topology: Corrected the allocation size for bytes controls. The size of the data behind scontrol-ipccontroldata for bytes controls is as follows: 1 sizeofstruct sofipc4controldata + // kernel-only struct 2...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerabilities have been resolved: mm/hugetlb: restored global reservations to the subpool The commit a833a693a490 "mm: hugetlb: fixed an incorrect fallback for the subpool" fixed this issue. Additionally, a underflow error was addressed in hstate-resvhugepages...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: drm/tests: shmem: Hold the reservation lock during the purge operation. The reservation lock of the GEM object must be held during calls to the purge operation of that object. The tests use drmgemshmempurgelocked, which caused...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: iio: accel: adxl380: Avoid reading more entries than are present in the FIFO. The interrupt handler reads FIFO entries in batches of N samples, where N is the number of scan elements that have been enabled. However, the sensor...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fixed a NULL pointer dereference in dcn401inithw. dcn401inithw assumes that updatebwboundingbox is valid when entering the update path. However, the current condition: !fams2enable && updatebwboundingbox ||...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: smb: server: The use of smbdirectsocket.sendio.bcredits has been addressed. It turns out that our code would corrupt the stream of reassabled data transfer messages when we trigger an immediate empty send. To fix this issue, we...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: CGX: fix bitmap leaks The RX/TX flow-control bitmaps rxfcpfvfbmap and txfcpfvfbmap are allocated by cgxlmacinit, but never freed in cgxlmacexit. Unbinding and rebinding the driver therefore triggers a kmemleak:...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: usb: misc: usbio: Fixed the URB memory leak that occurred during submission failures. When usbsubmiturb fails in usbioprobe, the previously allocated URB is never freed, resulting in a memory leak. This issue has been fixed by...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerabilities have been resolved: Wifi: rtw89 – Fixed the potential zero-beacon-interval issue in beacon tracking. During fuzz testing, it was discovered that bssconf-beaconint might be zero, which could lead to a division-by-zero error in subsequent...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: PM: sleep: The spurious WARNON message was removed from pmrestoregfpmask. Commit 35e4a69b2003f “PM: sleep: Allow pmrestrictgfpmask stacking” introduced a refcount-based GFP mask management mechanism. This mechanism would issue a...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerabilities have been resolved: drm/i915/vrr: Configure VRR timings after enabling TRANSDDIFUNCCTL It appears that the ICL may hang when using an MCE if we set TRANSVRRVMAX/FLIPLINE before enabling TRANSDDIFUNCCTL. Personally, I was only able to reproduce a...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: PCI: hv: Fixed double calls to idafree in the hvpciprobe error path. If hvpciprobe fails after storing the domain number in hbus-bridge-domainnr, a call to free this domainnr is made via pcibusreleaseemuldomainnr. However, during...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: net/sched: actskbedit: fix divide-by-zero in tcfskbedithash Commit 38a6f0865796 “net: sched: support hash selecting tx queue” added support for SKBEDITFTXQSKBHASH. The inclusive range size is computed as follows: mappingmod =...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: schedext: Redundant cssput calls have been removed from scxcgroupinit. The iterator cssforeachdescendantpre iterates through the cgroup hierarchy under cgrouplock. It does not increment the reference counts on css structs that ar...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: rxrpc: Only drop the call reference if one has been acquired. The function rxrpcinputpacketonconn can process a packet for the client after the current client call on the channel has already been terminated. In this case, chan-ca...