40 matches found
UBUNTU-CVE-2023-54018
In the Linux kernel, the following vulnerability has been resolved: drm/msm/hdmi: Add missing check for allocorderedworkqueue Add check for the return value of allocorderedworkqueue as it may return NULL pointer and cause NULL pointer dereference in hdmihdcp.c and hdmihpd.c. Patchwork:...
ROS-20241002-01
A vulnerability in the btsdioremove function of the drivers\bluetooth\btsdio.c module of the Bluetooth driver of the kernel of the of the Linux operating system is related to the reuse of previously freed memory due to the state of the race. Exploitation of the vulnerability could allow an attack...
CVE-2021-47214
CVE-2021-47214 affects Linux kernel hugetlb/userfaultfd handling. The fix corrects reservation restoration on userfaultfd error in hugetlb_mcopy_atomic_pte() by treating the is_continue path like pagecache insertion and altering the new_pagecache_page flag (renamed to page_in_pagecache) so restor...
USN-6686-4: Linux kernel (KVM) vulnerabilities
It was discovered that the DesignWare USB3 for Qualcomm SoCs driver in the Linux kernel did not properly handle certain error conditions during device registration. A local attacker could possibly use this to cause a denial of service system crash. CVE-2023-22995 It was discovered that a race...
Amazon Linux 2 : libbpf (ALAS-2023-1969)
The version of libbpf installed on the remote host is prior to 0.5.0-2. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-1969 advisory. A vulnerability was found in Linux Kernel. It has been classified as problematic. This affects the function findprogbysecinsn of the...
GSD-2023-1001993 net/mlx5: Fix command stats access after free
net/mlx5: Fix command stats access after free This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.7 by commit...
GSD-2023-1001086 usb: typec: tcpci: fix of node refcount leak in tcpci_register_port()
usb: typec: tcpci: fix of node refcount leak in tcpciregisterport This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.86 by commit...
GSD-2023-1000628 remoteproc: qcom: q6v5: Fix potential null-ptr-deref in q6v5_wcss_init_mmio()
remoteproc: qcom: q6v5: Fix potential null-ptr-deref in q6v5wcssinitmmio This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.16 by commit...
GSD-2022-1007213 mm: hugetlb: fix UAF in hugetlb_handle_userfault
mm: hugetlb: fix UAF in hugetlbhandleuserfault This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.150 by commit...
GSD-2022-1007061 staging: vt6655: fix some erroneous memory clean-up loops
staging: vt6655: fix some erroneous memory clean-up loops This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.75 by commit...
GSD-2022-1006590 ipvlan: Fix out-of-bound bugs caused by unset skb->mac_header
ipvlan: Fix out-of-bound bugs caused by unset skb-macheader This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.146 by commit...
GSD-2022-1004954 ALSA: seq: Fix data-race at module auto-loading
ALSA: seq: Fix data-race at module auto-loading This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.8 by commit...
GSD-2022-1002313 drm/amdgpu: fix off by one in amdgpu_gfx_kiq_acquire()
drm/amdgpu: fix off by one in amdgpugfxkiqacquire This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.238 by commit...
GSD-2022-1000919 net: arcnet: com20020: Fix null-ptr-deref in com20020pci_probe()
net: arcnet: com20020: Fix null-ptr-deref in com20020pciprobe This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.270 by commit...
GSD-2022-1000041 usb: gadget: f_fs: Clear ffs_eventfd in ffs_data_clear.
usb: gadget: ffs: Clear ffseventfd in ffsdataclear. This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.90 by commit...
GSD-2021-1002299 usb: typec: tipd: Remove WARN_ON in tps6598x_block_read
usb: typec: tipd: Remove WARNON in tps6598xblockread This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.82 by commit...
UVI-2021-1002272 usb: typec: tipd: Remove WARN_ON in tps6598x_block_read
usb: typec: tipd: Remove WARNON in tps6598xblockread This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.162 by commit...
UVI-2021-1002164 KVM: arm64: Fix host stage-2 PGD refcount
KVM: arm64: Fix host stage-2 PGD refcount This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15 by commit...
GSD-2021-1001769 net: mdiobus: Fix memory leak in __mdiobus_register
net: mdiobus: Fix memory leak in mdiobusregister This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.4.290 by commit...
GSD-2021-1001277 tty: serial: 8250: serial_cs: Fix a memory leak in error handling path
tty: serial: 8250: serialcs: Fix a memory leak in error handling path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.52 by commit...