CVE-2024-49920 drm/amd/display: Check null pointers before multiple uses

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check null pointers before multiple uses WHAT & HOW Poniters, such as streamenc and dc-bwvbios, are null checked previously in the same function, so Coverity warns "implies that streamenc and dc-bwvbios might be...

CVE-2024-49907 drm/amd/display: Check null pointers before using dc->clk_mgr

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check null pointers before using dc-clkmgr WHY & HOW dc-clkmgr is null checked previously in the same function, indicating it might be null. Passing "dc" to "dc-hwss.applyidlepoweroptimizations", which dereferenc...

CVE-2024-49907 drm/amd/display: Check null pointers before using dc->clk_mgr

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check null pointers before using dc-clkmgr WHY & HOW dc-clkmgr is null checked previously in the same function, indicating it might be null. Passing "dc" to "dc-hwss.applyidlepoweroptimizations", which dereferenc...

CVE-2024-49891 scsi: lpfc: Validate hdwq pointers before dereferencing in reset/errata paths

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Validate hdwq pointers before dereferencing in reset/errata paths When the HBA is undergoing a reset or is handling an errata event, NULL ptr dereference crashes may occur in routines such as lpfcsliflushiorings,...

DEBIAN-CVE-2024-47728

In the Linux kernel, the following vulnerability has been resolved: bpf: Zero former ARGPTRTOLONG,INT args in case of error For all non-tracing helpers which formerly had ARGPTRTOLONG,INT as input arguments, zero the value for the case of an error as otherwise it could leak memory. For tracing, i...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from improper access checking of null pointers in the drm/amd/display component...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a null pointer dereference that could be caused by improper validation of hardware queue pointers by the scs...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a regression in the scsi wd33c93 driver in the handling of scsi pointer values...

PT-2024-31745 · Unknown · Trusted Firmware-M

Name of the Vulnerable Software and Affected Versions: Trusted Firmware-M versions through 2.1.0 Description: An issue was discovered where user-provided mailbox messages contain a pointer to a list of input arguments in vec and output arguments out vec that are never validated. Each argument lis...

CVE-2024-45746

An issue was discovered in Trusted Firmware-M through 2.1.0. User provided and controlled mailbox messages contain a pointer to a list of input arguments invec and output arguments outvec. These list pointers are never validated. Each argument list contains a buffer pointer and a buffer length...

Linaro Trusted Firmware-M 安全漏洞

Linaro Trusted Firmware-M Tf-M is a reference implementation of the Platform Security Architecture Psa IoT security framework from Linaro, UK. A security vulnerability exists in Linaro Trusted Firmware-M version 2.1.0, which stems from not validating user-supplied pointers to invec and outvec...

RLSA-2024:7136 Important: git-lfs security update

Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing the file contents on a remote server. Security Fixes: encoding/gob: golang: Calling Decoder.Decode on a message which contains deeply nested structure...

AZL-49792 CVE-2024-46835 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix smatch static checker warning adev-gfx.imu.funcs could be NULL...

UBUNTU-CVE-2024-46835

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix smatch static checker warning adev-gfx.imu.funcs could be NULL...

kernel: KVM: arm64: Disassociate vcpus from redistributor region on teardown

A vulnerability was found in the Linux kernel's KVM for ARM64 within the vgic-init.c, vgic-mmio-v3.c, and vgic.h files. The virtual vCPUs may retain dangling pointers in a redistributor region after they have been torn down, leading to potential memory corruption...

kernel: KVM: arm64: Disassociate vcpus from redistributor region on teardown

A vulnerability was found in the Linux kernel's KVM for ARM64 within the vgic-init.c, vgic-mmio-v3.c, and vgic.h files. The virtual vCPUs may retain dangling pointers in a redistributor region after they have been torn down, leading to potential memory corruption...

CVE-2024-8375

There exists a use after free vulnerability in Reverb. Reverb supports the VARIANT datatype, which is supposed to represent an arbitrary object in C++. When a tensor proto of type VARIANT is unpacked, memory is first allocated to store the entire tensor, and a ctor is called on each instance...

CVE-2024-8375

CVE-2024-8375 affects Google DeepMind Reverb. A use-after-free vulnerability arises when unpacking a tensor proto of type VARIANT: memory is allocated for the tensor, objects are constructed, then tensor_content is copied into pre-allocated memory, overwriting vtable pointers. This enables an att...

SUSE CVE-2024-46755

In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: Do not return unused priv in mwifiexgetprivbyid mwifiexgetprivbyid returns the priv pointer corresponding to the bssnum and bsstype, but without checking if the priv is actually currently in use. Unused priv pointe...

Reverb 安全漏洞

Reverb is an efficient and easy-to-use data storage and transfer system open-sourced by Google DeepMind. Reverb has a security vulnerability that stems from when unpacking a tensor prototype of type VARIANT overwrites the bytes in tensorcontent with vtable pointers to all previously allocated...