Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: clk: rs9: Reserve 8 struct clkhw slots for 9FGV0841 The 9FGV0841 has 8 outputs and registers 8 struct clkhw structures. Ensure that there are 8 slots available for these newly registered clkhw pointers. Otherwise, out-of-bounds...

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: perf/core: Abrupt exit if the requested AUX area is out of bounds. When using perf-record with a large AUX area, for example 4GB, the following error occurs: bash perf record -C 0 -m ,4G -e armspe0// -- sleep 1 Failed to mmap wit...

Astra Linux - уязвимость в linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: Net: Fix for crashes when configuring gsomaxsize/gsoipv4maxsize. Configuring gsomaxsize/gsoipv4maxsize can lead to an underflow in skdstgsomaxsize, which may trigger a BUGON crash, because sk-skgsomaxsize would be much larger tha...

Astra Linux - уязвимость в xrdp

xrdp is an open-source RDP server. Versions of xrdp prior to 0.10.0 have a vulnerability that allows attackers to make an infinite number of login attempts. The number of maximum login attempts is supposed to be limited by a configuration parameter MaxLoginRetry in /etc/xrdp/sesman.ini. However,...

Astra Linux - уязвимость в linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: ipv4: Use RCU protection in iprtupdatepmtu. iprtupdatepmtu must use RCU protection to ensure that the network structure it reads does not disappear...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Stop amdgpudm initialize when link nums greater than maxlinks Reason The Coverity report indicates an OVERRUN warning. There are only maxlinks elements within dc-links. The number of links can reach...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: clamping the maximum hashtable size to INTMAX The maximum size of the conntrack hashtable should be set to INTMAX. Otherwise, it is possible to encounter a WARNONONCE error in kvmallocnodenoprof when resizin...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: erofs: fixed an issue where the invalid algorithm was used for encoded extents. The current algorithm sanity checks do not properly apply to newly encoded extents. We need to unify the algorithm checks with the...

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: Fixed out-of-bounds access during parseadvmonitorpattern In the parseadvmonitorpattern function, the value of the 'length' variable is currently limited to HCIMAXEXTADLENGTH251. The size of the 'value' array in t...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Checks the validity of “numcpu” from user space. The maximum supported CPU number is EIOINTCROUTEMAXVCPUS. For the irchip EIOINTC, validation of the CPU number is added to prevent array pointer overflow...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: rcu-tasks: Fixed an issue where a non-existent percpu rtpcp variable was accessed in rcutasksneedgpcb. For kernels built with CONFIGFORCENRCPUS=y, nrcpuids is defined as NRCPUS instead of the number of possible CPUs. This can cau...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: mmc: sdhci: The issue of setting maxsegsize to 64KiB PAGESIZE has been fixed. blkqueuemaxsegmentsize: It is ensured that: if maxsize maxsegmentsize PAGESIZE return -EINVAL; This change exposes the vulnerability in sdhci, which...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Harden depth calculation functions A vulnerability was identified where the operating system can pass in U32MAX as the size of SQ/RQ/SRQ. This can lead to integer overflow and truncation of the SQ/RQ/SRQ depth values...

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: usb: typec: altmodes/displayport: do not index invalid pin Assignments A poorly implemented DisplayPort Alt Mode port partner may indicate that its pin assignment capabilities exceed the maximum value, DPPINASSIGNF. In this case,...

Astra Linux - уязвимость в linux

In the Linux kernel, the following vulnerabilities have been resolved: NFS: Fixed an incorrect limit in the filelayoutdecodelayout function. The value of "sizeofstruct nfsfh" is two bytes too large, which could lead to memory corruption. The correct value should be NFSMAXFHSIZE, as that is the si...

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: TCP: Fixed a shift-out-of-bounds issue in dctcpupdatealpha. In dctcpupdatealpha, we use a module parameter dctcpshiftg, as follows: alpha -= minnotzeroalpha, alpha dctcpshiftg; ... deliveredce...

Astra Linux - уязвимость в erlang

Erlang/OTP is a set of libraries for the Erlang programming language. Prior to versions OTP-27.3.1, OTP-26.2.5.10, and OTP-25.3.2.19, a maliciously formed KEX init message could result in high memory usage. The implementation does not verify the RFC specified limits on the length of algorithm nam...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: PCI: kirin – A buffer overflow issue was addressed in kirinpcieparseport. Within kirinpcieparseport, the value of pcie-numslots is compared to pcie-gpioidreset.size which is equal to MAXPCISLOTS. This comparison is correct;...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: A upper-bound check has been added to user inputs in the signal ioctl function. Extremely large input values in amdgpuuserqsignalioctl can lead to a Out-of-Memory error OOM. This vulnerability could be exploited...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: Bluetooth: hcisync: fixed a stack buffer overflow in hcilebigcreatesync. The hcilebigcreatesync function uses DEFINEFLEX to allocate a struct hcicplebigcreatesync on the stack, with 0x11 17 slots available. However, conn-numbi...