76813 matches found
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: Bluetooth: For qca devices, a bug was fixed where a NULL pointer dereferencing occurred in cases where no SERVICE mode was set. Qualcomm ROME controllers can be registered through the Bluetooth interface. In this case, the HCI...
Astra Linux – Vulnerability found in Linux 6.1, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: ALSA: hda/cs8409: Fixed possible NULL dereferencing. If sndhdagenaddkctl fails to allocate memory and returns NULL, then a NULL pointer dereferencing will occur in the next line. Since the dolphinfixups function is a hdafixup...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: prevents dereferencing of a NULL pointer if ATI is not supported. acpievaluateobject may return AENOTFOUND failure, which would result in dereferencing buffer.pointer obj when buffer.pointer is NULL. Although this...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: BPF: Properly handles malformed BPFCORETYPEIDLOCAL relocation records. In the case of a malformed relocation record of the BPFCORETYPEIDLOCAL type that references a non-existent BTF type, the function bpfcorecalcreloinsn may caus...
Astra Linux – Vulnerability in krb5
The Key Distribution Center KDC in MIT Kerberos 5 also known as krb5 before version 1.18.5 and 1.19.x before version 1.19.3 has a NULL pointer dereference in the kdc/dotgsreq.c file, due to a FAST inner body that lacks a server field...
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: net/smc: A NULL pointer dereferencing issue was addressed in smcpnetfindib. The devname function was called with dev.parent as an argument, but without performing a NULL-check before using it. This issue was resolved by checking...
Astra Linux – Vulnerability in Linux 5.10, Linux
In the Linux kernel, the following vulnerability has been resolved: net-sysfs: added a check to ensure netdevice is present before using speedshow. When disabling the netdevice or during system shutdown, a panic may occur when accessing the sysfs path, because the device has already been removed...
Astra Linux – Vulnerability in Linux, Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: NFS: Fixed a potential NULL dereference in nfsgetclient. None of the callers is expected to receive a NULL return value from nfsgetclient. Therefore, this code will result in an Oops error. It’s better to return an error pointer....
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: clk: bcm: rpi: A NULL check has been added in raspberrypiclkregister. devmkasprintf returns NULL when memory allocation fails. Currently, raspberrypiclkregister does not check for this case, which results in a NULL pointer being...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: WireGuard: netlink: Access the device through ctx instead of peer. The previous commit fixed a bug that resulted in a NULL peer-device being dereferenced. In terms of performance, it is actually easier and faster to obtain the...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: atm: clip: Fixed a potential nullptrderef issue in toatmarpd. Atmarpd is protected by RTNL since commit f3a0592b37b8 “ATM: clip causes unregister hang”. However, this protection is insufficient because toatmarpd is called...
Astra Linux – Vulnerability in Poppler
A issue was discovered in Poppler 0.71.0. There is a NULL pointer dereference in goo/GooString.h, which can lead to a denial of service. This issue is evident in utils/pdfdetach.cc, where it does not validate the filename of an embedded file before constructing a save path...
Astra Linux – Vulnerability found in Linux 6.1, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: coresight: trbe: Returning NULL pointer in case of allocation failures When the TRBE driver fails to allocate a buffer, it currently returns the error code “-ENOMEM”. However, the caller etmsetupaux only checks for a NULL pointer...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: net/tcp: Fixed a NULL pointer dereference issue when using TCP-AO with TCPREPAIR. A NULL pointer dereference can occur in the tcpaofinishconnect function during a connect system call on a socket that has a TCP-AO key added and...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: ovl: Null pointer dereferencing was fixed in ovlpermission. The related processes are as follows: pathlookupat, linkpathwalk, inodepermission, ovlpermission, ovlipathrealinode, &realpath, path-dentry = ovlidentryupperinode,...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1
In the Linux kernel, the following vulnerabilities have been resolved: btrfs: Correctly handled csum tree errors with rescue=ibadroots. BUG There is a syzbot-based reproducer that can cause the kernel to crash. The call trace is as follows with some debug output added: DEBUG: rescue=ibadroots...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: mlxsw: spectrum: Protect the driver from buggy firmware When processing port up/down events generated by the device’s firmware, the driver attempts to protect itself from events reported for non-existent local ports. However, it...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: mfd: macsmc: Initialize mutex The mutex of the struct applesmc is initialized in applesmcprobe. Using the mutex in an uninitialized state surprisingly resulted only in occasional NULL pointer dereferences in calls to applesmcread...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: crypto: authencesn – Rejects AADs that are too short assoclen 8 to match the ESP/ESN specification. authencesn assumes that the AAD is in the ESP/ESN format. When the length of assoclen is shorter than the minimum expected length...
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: ATA: libata-transport: fixed the double call to atahostput in atatportadd In the error path in atatportadd, when calling putdevice, atatportrelease is called. This function decreases the refcount of ‘ap-host’. Then, atahostput is...