77237 matches found
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerabilities have been resolved: ASoC: simple-card-utils: Fixed the pointer check in graphutilParseLinkDirectionation. Now, it checks whether the passed pointers are valid before writing to them. This also fixes a USBAN warning: UBSAN: Invalid-load in...
Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15
In the Linux kernel, the following vulnerabilities have been resolved: tipc: Fixed NULL pointer dereferencing in tipcmonreinitself syzbot reported: tipc: The node number was set to 1055423674 Oops: General protection fault, likely due to a non-canonical address 0xdffffc0000000000: 0000 1 SMP KASA...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerabilities have been resolved: perf/x86: Fixed NULL pointer access and potential loss of PEBS records When the function intelpmudrainpebsicl is called to drain PEBS records, the function perfeventoverflow may be called to process the last PEBS record. Durin...
Astra Linux - уязвимость в linux-6.1
In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: The issue of destroying KFD debugfs after destroying KFD wq has been addressed. Since the KFD proc content was moved to the kernel debugfs, we cannot destroy KFD debugfs before calling kfdprocessDestroywq. Moving...
Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15
In the Linux kernel, the following vulnerabilities have been resolved: Bluetooth: Fixed null-ptr-deref in l2capsockresumecb. syzbot reported null-ptr-deref in l2capsockresumecb. 0 l2capsockresumecb has a similar issue that was fixed in commit 1bff51ea59a9 “Bluetooth: fixed use-after-free errors i...
Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15
In the Linux kernel, the following vulnerabilities have been resolved: drm/nouveau: prime: fix ttmbodelayeddelete oops Fixed an oops in ttmbodelayeddelete that occurs due to a dangling pointer being referenced: Oops: General Protection Fault, likely for a non-canonical address 0x6b6b6b6b6b6b6b7b:...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: ixgbevf: added the missing negotiatefeatures operation to the Hyper-V ops table. The commit a7075f501bd3 “ixgbevf: fixed mailbox API compatibility by negotiating supported features” added the .negotiatefeatures callback to...
Astra Linux - уязвимость в linux-6.1
In the Linux kernel, the following vulnerability has been resolved: PM / devfreq: mtk-cci: Fixed the potential error pointer dereferencing in the probe function. The drv-sramreg pointer could potentially be set to ERRPTR-EPROBEDEFER, which would lead to an error pointer dereferencing. Use...
Astra Linux - уязвимость в hdf5
HDF5 versions 1.14.3 and earlier contain a buffer overflow vulnerability in H5Olinfodecode, which leads to corruption of the instruction pointer and causes denial of service or potential code execution...
Astra Linux - уязвимость в linux-6.1
In the Linux kernel, the following vulnerabilities have been resolved: block, bfq: fixed the UAF in bfqlimitdepth Setting the newly allocated bfqq to bic or removing freed bfqq from bic is both protected by bfqd-lock. However, bfqlimitdepth dereferences bfqq from bic without the lock, which can...
Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15
In the Linux kernel, the following vulnerability has been resolved: scsi: qla4xxx: This issue prevents the possible dereferencing of error pointers. The qla4xxxgetepfwdb function is supposed to return NULL on error, but qla4xxxepconnect returns error pointers. Passing these error pointers will le...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: phy: usb: sunplus: Fix for a potential null-ptr-dereference in spusb PhyProbe. spusb PhyProbe will call platformgetresourcebyname, which may fail and return NULL. devmioremap will use usbphy-moon4resmem-start as an input, which m...
Astra Linux - уязвимость в libde265
It was discovered that libde265 v1.0.10 contains a NULL pointer dereferencing in the ffhevcputunweightedpred8sse function at sse-motion.cc. This vulnerability allows attackers to cause a Denial of Service DoS attack through a crafted input file...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: pinctrl: mediatek: eint: Fixed invalid pointer dereferencing for v1 platforms The commit 3ef9f710efcb “pinctrl: mediatek: Added EINT support for multiple addresses” introduced an access to the ‘soc’ field of the struct mtkpinctrl...
Astra Linux - уязвимость в linux
A issue was discovered in the Linux kernel through version 5.11.x. The kernel/bpf/verifier.c file contains unwanted out-of-bounds speculation during pointer arithmetic operations, which allows for side-channel attacks that circumvent Spectre mitigations and extract sensitive information from kern...
Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15
In the Linux kernel, the following vulnerabilities have been resolved: RDMA/rtrs: Ensure that the ‘ibsge list’ is accessible. The declaration of the ‘ibsge list’ variable was moved outside the ‘alwaysinvalidate’ block to ensure that it remains accessible for use throughout the function. Previousl...
Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15
In the Linux kernel, the following vulnerabilities have been resolved: bcache: fixed a NULL pointer in cachesetFlush 1. LINE1794 – LINE1887 contains code related to the function of bchcachesetalloc. 2. LINE2078 – LINE2142 contains code related to the function of registercacheset. 3. The function...
Astra Linux - уязвимость в linux, linux-5.15, linux-5.10
In the Linux kernel, the following vulnerability has been resolved: dm flakey: fixed an crash caused by an invalid table line. This command will cause a crash when using a NULL pointer dereference: dmsetup create flakey --table "0 blockdev --getsize /dev/ram0 flakey /dev/ram0 0 0 1 2 corruptbioby...
Astra Linux - уязвимость в linux-5.10, linux-5.15, linux-6.1
In the Linux kernel, the following vulnerabilities have been resolved: media: dvb-usb-v2: gl861: Fixed nullptrderef in gl861i2cmasterxfer In gl861i2cmasterxfer, msg is controlled by the user. When msgi.buf is null and msgi.len is zero, previous checks on msgi.buf will still be performed. Maliciou...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Added a null check in resourcelogpipetopologyupdate REASON When switching from “Extend” to “Second Display Only”, we sometimes call resourcegetotgmasterforstream on an eDP stream, even though the eDP is...