Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: Memory issue: fslifc – Fixed the issue where private memory was leaked during probe failures. During probe errors, the driver should release the memory allocated for private structures. This issue was fixed by using...

Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: net: fddi: fixed a Use-after-Free UAF issue in fzaprobe. The fp field is private data of netdev, and it cannot be used after the freenetdev call. Using fp after freenetdev can cause a UAF bug. This issue was fixed by moving the...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: gpio: gr gpio: Add a NULL check in gr gpioprobe. The devmkasprintf function can return a NULL pointer if it fails, but this returned value in gr gpioprobe is not checked. Add a NULL check in gr gpioprobe to handle the kernel NULL...

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: ASoC: fsl-asoc-card: Set priv-pdev before using it. The priv-pdev pointer was set after being used in fslasoccardaudmuxinit. This assignment should be moved to the beginning of the probe function, so that sub-functions can...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: Wifi: rtlwifi – Fixed memory leaks and invalid access at the probe error path. The deinitialization is performed in reverse order when the probe fails. When initswvars fails, rtldeinitcore should not be called. This is...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: amd: Fixed a memory leak in amdsofacpprobe The driver uses kasprintf to initialize the fwcode,databin members of struct acpdevdata, but kfree is never called to deallocate the memory, resulting in a memory leak. This...

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: - dmaengine: ti: edma: Add some null pointer checks to the edmaprobe. - devmkasprintf returns a pointer to dynamically allocated memory; this pointer may be NULL in case of failure. Ensure that the allocation was successful by...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: Staging: bcm2835-camera: Initialize dev in v4l2dev. The commit 42a2f6664e18 “Staging: vc04services: Move global gstate to vchiqstate”” changed mmalinit to pass dev-v4l2dev.dev to vchiqmmalinit. However, nothing was initialized...

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerabilities have been resolved: ASoC: mediatek: mt8173-rt5650: Fixed a refcount leak in the mt8173rt5650devprobe function. The ofparsephandle function returns a node pointer with a refcount incremented. We should use ofnodeput on it when it is no longer...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: spi: spi-qpic-snand: Unregisters the ECC engine upon probe error and device removal. The on-host hardware ECC engine remains registered both when the spiregistercontroller function returns an error, and also upon device removal...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: HID: appletbkbd: Fixed the reference counting of the “appletbbacklight” backlight device. During the appletbkbdprobe process, the probe attempts to retrieve the backlight device by name. When this occurs, the...

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: Video: fbdev: smscufx: Fixed null-ptr-deref in ufxusbprobe I received a report of a null-ptr-deref issue: Bug: NULL pointer dereferencing in the kernel; address: 0000000000000000 … RIP: 0010:fbdestroymodelist+0x38/0x100 … Call...

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerabilities have been resolved: soc: qcom: smsmm: Fixed refcount leaks in qcomsmsmprobe. There are two refcount leaks in qcomsmsmprobe: 1 The localnode variable is escaped from foreachchildofnode at the end of the iteration. We should call ofnodeput for it i...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: gpio: sifive: Fix the refcount leak in sifivegpioprobe. The function ofirqfindparent returns a node pointer with the refcount incremented. We should use ofnodeput on it when it is no longer needed. Add the missing ofnodeput call ...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: dmaengine: sh: rz-dmac: fix device leak on probe failure Make sure to remove the references made when looking up the ICU device during probe failures e.g., probe deferrals...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: The issue related to media:imagination: a potential memory leak was fixed in e5010probe. Additionally, videodevicerelease was added to release the memory allocated by videodevicealloc in case of any issues...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: net: stmmac: fixed leaks in the probe. These two error paths should be cleaned up before returning...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: octeonep: Canceled queued operations in the probe error path. If it fails to obtain the device’s MAC address, octepprobe exits while leaving the delayed intrpolltask queued. When the operation runs later, it constitutes a...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: media: venus: Protection against spurious interrupts during probing. Make sure the interrupt handler is initialized before the interrupt is registered. If the IRQ is registered before hficreate, it’s possible that an interrupt...

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: TCP: Fixed the issue where “tcpmtupprobesuccess” was displayed instead of “wrong sndcwnd”. The syzbot received a new report 1 that pointed to a very old bug. This bug was addressed in the initial support for MTU probing. The...