Astra Linux - уязвимость в linux, linux-5.15, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: do not trust the firmware’s nChannels value. If the firmware sends us a corrupted MCC response where nChannels is much larger than what the command response can handle, we might copy too much uninitialized...

kernel: wifi: mac80211: Set n_channels after allocating struct cfg80211_scan_request

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: Set nchannels after allocating struct cfg80211scanrequest Make sure that nchannels is set after allocating the struct cfg80211registereddevice::intscanreq member. Seen with syzkaller: UBSAN:...

CVE-2023-53589

CVE-2023-53589 affects the Linux kernel wifi driver (iwlwifi, mvm). The issue arises if the firmware returns a corrupted MCC response with n_channels larger than the command response, potentially causing out-of-bounds reads of uninitialized memory and a crash when n_channels is large enough. The ...

CVE-2023-53589 wifi: iwlwifi: mvm: don't trust firmware n_channels

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: don't trust firmware nchannels If the firmware sends us a corrupted MCC response with nchannels much larger than the command response can be, we might copy far too much uninitialized memory and even crash if t...

DEBIAN-CVE-2025-38013

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: Set nchannels after allocating struct cfg80211scanrequest Make sure that nchannels is set after allocating the struct cfg80211registereddevice::intscanreq member. Seen with syzkaller: UBSAN:...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from not setting nchannels correctly, which could lead to out-of-bounds access to arrays...

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerabilities have been resolved: wifi: mac80211: Set nchannels after allocating the structcfg80211scanrequest structure. Make sure that nchannels is set after allocating the structcfg80211registereddevice::intscanreq member. This issue was identified using...

SUSE CVE-2024-53189

In the Linux kernel, the following vulnerability has been resolved: wifi: nl80211: fix bounds checker error in nl80211parseschedscan The channels array in the cfg80211scanrequest has a countedby attribute attached to it, which points to the nchannels variable. This attribute is used in bounds...

DEBIAN-CVE-2024-47607

GStreamer is a library for constructing graphs of media-handling components. stack-buffer overflow has been detected in the gstopusdecparseheader function within gstopusdec.c'. The pos array is a stack-allocated buffer of size 64. If nchannels exceeds 64, the for loop will write beyond the...

SUSE CVE-2024-38562

In the Linux kernel, the following vulnerability has been resolved: wifi: nl80211: Avoid address calculations via out of bounds array indexing Before request-channels can be used, request-nchannels must be set. Additionally, address calculations for memory after the "channels" array need to be...

DEBIAN-CVE-2024-38562

In the Linux kernel, the following vulnerability has been resolved: wifi: nl80211: Avoid address calculations via out of bounds array indexing Before request-channels can be used, request-nchannels must be set. Additionally, address calculations for memory after the "channels" array need to be...

UBUNTU-CVE-2024-38562

In the Linux kernel, the following vulnerability has been resolved: wifi: nl80211: Avoid address calculations via out of bounds array indexing Before request-channels can be used, request-nchannels must be set. Additionally, address calculations for memory after the "channels" array need to be...