Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: arcnet: Add a NULL check in com20020pciprobe. devmkasprintf returns NULL when memory allocation fails. Currently, com20020pciprobe does not check for this case, resulting in a NULL pointer being dereferenced. Add a NULL check aft...

Astra Linux - уязвимость в linux-6.1, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: bpf: devmap: Provide rxq after a redirect. rxq contains a pointer to the device from which the redirect occurred. Currently, the BPF program executed after a redirect via BPFMAPTYPEDEVMAP does not set this pointer. This is...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: Media: dvb-frontends: w7090p: Fixed the nullptrderef issue in w7090ptunerwriteserpar and w7090ptunerreadserpar. In w7090ptunerwriteserpar, msg is controlled by the user. When msg0.buf is null and msg0.len is zero, previous...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: vsock: Fixed the transportg2h,h2g TOCTOU issue. The calls to vsockfindcid and vsockdevdoioctl may race with module unloading. transportg2h,h2g may become NULL after the NULL check. Introduced vsocktransportlocalcid to prevent ...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: mm/damon/core: The damofilter-list field is not initialized from the damosnewfilter function. damosnewfilter does not initialize the list field of the newly allocated filter object. However, the DAMON sysfs interface and...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: Wifi: mt76: mt7915: Fixed nullptrderef in mt7915mmiowedinit The devmioremap function returns NULL upon error. Currently, mt7915mmiowedinit does not check for this case, resulting in a NULL pointer dereference. This issue must be...

Astra Linux - уязвимость в linux-5.10, linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: schhtb: Make htbdeactivate idempotent. Alan reported a NULL pointer dereference in htbnextrbnode after we made htbqlennotify idempotent. It turned out that this issue introduced some regression in the following scenario:...

Astra Linux - уязвимость в linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: media: mtk-vcodec: There is a potential null pointer dereference issue in the SCP code. The return value of devmkzalloc needs to be checked to avoid NULL pointer dereferences. This is similar to the CVE-2022-3113 vulnerability...

Astra Linux - уязвимость в linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: archtopology: Corrected the error check in topologyparsecpucapacity. Corrected the incorrect use of PTRERRORZERO in topologyparsecpucapacity, which caused the code to proceed with NULL clock pointers. The current logic uses...

Astra Linux - уязвимость в linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: facm: Refactor the bind path to use free After a bind/unbind cycle, the acm-notifyreq remains stale. If a subsequent bind fails, the unified error handling mechanism attempts to free this stale request, resulting in ...

Astra Linux - уязвимость в linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: dm: A NULL pointer dereference occurred in dmsuspend. There is a race condition between the suspension of the dm device and the loading of tables, which can lead to a NULL pointer dereference. This issue occurs when the suspensio...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: net: vxlan: Prevent NULL dereferencing in vxlanxmitone. Neither sock4 nor sock6 pointers are guaranteed to be non-NULL in vxlanxmitone, especially if the iface is disabled. This can lead to the following NULL dereferencias: -...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: PCI: Endpoint – Avoid creating sub-groups asynchronously The asynchronous creation of sub-groups by a delayed operation could lead to a NULL pointer dereference when the driver directory is removed before the operation completes...

Astra Linux - уязвимость в linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: A null pointer check was added in modhdcphdcp1createsession. The function modhdcphdcp1createsession calls the function getfirstactivedisplay, but does not check its return value. If the display list is empty, the...

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerability has been resolved: can: netlink: canchangelink: fixed the NULL pointer dereference in struct canpriv::dosetmode. Andrei Lalaev reported a NULL pointer dereference when a CAN device is restarted from a Bus Off state, and the driver does not implemen...

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: net/tunnel: Wait until all skuserdata readers complete their operations before releasing the sock. There is a race condition in vxlan where, when deleting a vxlan device during packet reception, there is a possibility that the so...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: Wifi: ath12k: The ab pointer is passed directly to ath12kdptxgetencaptype. In ath12kdptxgetencaptype, the arvif parameter is only used to retrieve the ab pointer. During the vdev delete sequence, arvif-ar might become NULL, which...

Astra Linux - уязвимость в linux, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: Wifi: wfx: Fixed a possible NULL pointer dereferencing in wfxsetmfpap. Since 'ieee80211beaconget' may return NULL, wfxsetmfpap should check the return value before examining the skb data. Therefore, the latter function should...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: Purge vif txq in ieee80211dostop After ieee80211dostop, the SKB from vif’s txq may still be processed. In fact, another concurrent vif scheduleandwaketxq call could cause those packets to be dequeued see...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Errors are now handled in mlx5chainscreatetable. In mlx5chainscreatetable, the return values of mlx5getfdbsubns and mlx5getflownamespace must be checked to prevent NULL pointer dereferences. If either function fails, th...