DEBIAN-CVE-2024-56697

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix the memory allocation issue in amdgpudiscoverygetnpsinfo Fix two issues with memory allocation in amdgpudiscoverygetnpsinfo for memranges: - Add a check for allocation failure to avoid dereferencing a null pointer...

DEBIAN-CVE-2024-56679

In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: handle otx2mboxgetrsp errors in otx2common.c Add error pointer check after calling otx2mboxgetrsp...

UBUNTU-CVE-2024-56679

In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: handle otx2mboxgetrsp errors in otx2common.c Add error pointer check after calling otx2mboxgetrsp...

CVE-2024-56697 drm/amdgpu: Fix the memory allocation issue in amdgpu_discovery_get_nps_info()

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix the memory allocation issue in amdgpudiscoverygetnpsinfo Fix two issues with memory allocation in amdgpudiscoverygetnpsinfo for memranges: - Add a check for allocation failure to avoid dereferencing a null pointer...

CVE-2024-56697 drm/amdgpu: Fix the memory allocation issue in amdgpu_discovery_get_nps_info()

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix the memory allocation issue in amdgpudiscoverygetnpsinfo Fix two issues with memory allocation in amdgpudiscoverygetnpsinfo for memranges: - Add a check for allocation failure to avoid dereferencing a null pointer...

CVE-2024-56679 octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_common.c

In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: handle otx2mboxgetrsp errors in otx2common.c Add error pointer check after calling otx2mboxgetrsp...

CVE-2024-56634

In the Linux kernel, the following vulnerability has been resolved: gpio: grgpio: Add NULL check in grgpioprobe devmkasprintf can return a NULL pointer on failure,but this returned value in grgpioprobe is not checked. Add NULL check in grgpioprobe, to handle kernel NULL pointer dereference error...

CVE-2024-56670 usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: userial: Fix the issue that gsstartio crashed due to accessing null pointer Considering that in some extreme cases, when userial driver is accessed by multiple threads, Thread A is executing the open operation and...

CVE-2024-56662 acpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl

In the Linux kernel, the following vulnerability has been resolved: acpi: nfit: vmalloc-out-of-bounds Read in acpinfitctl Fix an issue detected by syzbot with KASAN: BUG: KASAN: vmalloc-out-of-bounds in cmdtofunc drivers/acpi/nfit/ core.c:416 inline BUG: KASAN: vmalloc-out-of-bounds in...

CVE-2024-56634

CVE-2024-56634 concerns a Linux kernel flaw in the GPIO grgpio driver: grgpio_probe can dereference a NULL after devm_kasprintf() returns NULL. The fix adds an explicit NULL check in grgpio_probe to prevent kernel NULL pointer dereference. Public advisories (e.g., Astra Linux and Debian/SEL advis...

CVE-2024-56634 gpio: grgpio: Add NULL check in grgpio_probe

In the Linux kernel, the following vulnerability has been resolved: gpio: grgpio: Add NULL check in grgpioprobe devmkasprintf can return a NULL pointer on failure,but this returned value in grgpioprobe is not checked. Add NULL check in grgpioprobe, to handle kernel NULL pointer dereference error...

CVE-2024-53199

CVE-2024-53199 affects the Linux kernel ASoC: imx-audmix driver. The bug was that devm_kasprintf() can return NULL on failure and imx_audmix_probe() did not check for it, risking a NULL pointer dereference. A NULL-check was added in imx_audmix_probe() to mitigate. The public-facing details specif...

CVE-2024-53154 clk: clk-apple-nco: Add NULL check in applnco_probe

In the Linux kernel, the following vulnerability has been resolved: clk: clk-apple-nco: Add NULL check in applncoprobe Add NULL check in applncoprobe, to handle kernel NULL pointer dereference error...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-47749)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-47749 advisory. - In the Linux kernel, the following vulnerability has been resolved: RDMA/cxgb4: Added NULL check for...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-49907)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-49907 advisory. - In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check null pointers...

DEBIAN-CVE-2024-53078

In the Linux kernel, the following vulnerability has been resolved: drm/tegra: Fix NULL vs ISERR check in probe The iommupagingdomainalloc function doesn't return NULL pointers, it returns error pointers. Update the check to match...

UBUNTU-CVE-2024-53078

In the Linux kernel, the following vulnerability has been resolved: drm/tegra: Fix NULL vs ISERR check in probe The iommupagingdomainalloc function doesn't return NULL pointers, it returns error pointers. Update the check to match...

OESA-2024-2423 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: usb: typec: ucsi: Fix null pointer dereference in trace ucsiregisteraltmode checks ISERR for the alt pointer and treats NULL as valid. When CONFIGTYPECDPALTMODE ...

kernel: powerpc/powernv: Add a null pointer check to scom_debug_init_one()

In the Linux kernel, the following vulnerability has been resolved: powerpc/powernv: Add a null pointer check to scomdebuginitone The Linux kernel CVE team has assigned CVE-2023-52690 to this issue. Upstream advisory: https://lore.kernel.org/linux-cve-announce/2024051753-CVE-2023-52690-f225@gregk...

SUSE CVE-2024-50260

In the Linux kernel, the following vulnerability has been resolved: sockmap: fix a NULL pointer dereference in sockmaplinkupdateprog The following race condition could trigger a NULL pointer dereference: sockmaplinkdetach: sockmaplinkupdateprog: mutexlock&sockmapmutex; ... sockmaplink-map = NULL;...