GSD-2023-1001948 EDAC/highbank: Fix memory leak in highbank_mc_probe()

EDAC/highbank: Fix memory leak in highbankmcprobe This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.9 by commit...

GSD-2023-1001906 drm/drm_vma_manager: Add drm_vma_node_allow_once()

drm/drmvmamanager: Add drmvmanodeallowonce This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.9 by commit...

PT-2023-35174 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.90 Description: The issue is related to the dmaengine: idxd, where the probe fails when the workqueue cannot be enabled. The actual impact and attack plausibility have not yet been proven. Recommendations:...

PT-2023-35167 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions v5.15.75 through v5.15.90 Description: The issue concerns a potential security vulnerability in the Linux Kernel. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel...

GSD-2023-1001824 gsmi: fix null-deref in gsmi_get_variable

gsmi: fix null-deref in gsmigetvariable This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.271 by commit...

GSD-2023-1001794 mm: Always release pages to the buddy allocator in memblock_free_late().

mm: Always release pages to the buddy allocator in memblockfreelate. This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.164 by commit...

PT-2023-34916 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.14.303 Description: The issue is related to the regulator in the Linux Kernel. It is noted that the actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions...

GSD-2023-1001364 r6040: Fix kmemleak in probe and remove

r6040: Fix kmemleak in probe and remove This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.163 by commit...

GSD-2023-1001360 rcu: Fix __this_cpu_read() lockdep warning in rcu_force_quiescent_state()

rcu: Fix thiscpuread lockdep warning in rcuforcequiescentstate This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.163 by commit...

GSD-2023-1001261 ARM: 9256/1: NWFPE: avoid compiler-generated __aeabi_uldivmod

ARM: 9256/1: NWFPE: avoid compiler-generated aeabiuldivmod This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.163 by commit...

GSD-2023-1001238 caif: fix memory leak in cfctrl_linkup_request()

caif: fix memory leak in cfctrllinkuprequest This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.163 by commit...

GSD-2023-1001037 rcu: Fix __this_cpu_read() lockdep warning in rcu_force_quiescent_state()

rcu: Fix thiscpuread lockdep warning in rcuforcequiescentstate This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.86 by commit...

GSD-2023-1000692 scsi: mpt3sas: Fix possible resource leaks in mpt3sas_transport_port_add()

scsi: mpt3sas: Fix possible resource leaks in mpt3sastransportportadd This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.16 by commit...

GSD-2023-1000581 igb: Do not free q_vector unless new one was allocated

igb: Do not free qvector unless new one was allocated This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.16 by commit...

GSD-2023-1000535 clk: st: Fix memory leak in st_of_quadfs_setup()

clk: st: Fix memory leak in stofquadfssetup This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.16 by commit...

GSD-2023-1000185 e100: Fix possible use after free in e100_xmit_prepare

e100: Fix possible use after free in e100xmitprepare This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.82 by commit...

GSD-2023-1000108 udf: Fix preallocation discarding at indirect extent boundary

udf: Fix preallocation discarding at indirect extent boundary This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.85 by commit...

GSD-2022-1008346 ext4: fix warning in 'ext4_da_release_space'

ext4: fix warning in 'ext4dareleasespace' This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.333 by commit...

GSD-2022-1008171 can: af_can: fix NULL pointer dereference in can_rx_register()

can: afcan: fix NULL pointer dereference in canrxregister This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.225 by commit...

GSD-2022-1008051 ata: libata-transport: fix double ata_host_put() in ata_tport_add()

ata: libata-transport: fix double atahostput in atatportadd This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.156 by commit...