[SECURITY] Fedora 40 Update: rust-mdsh-0.7.0-3.fc40

Markdown shell pre-processor...

DEBIAN-CVE-2021-47553

In the Linux kernel, the following vulnerability has been resolved: sched/scs: Reset task stack state in bringupcpu To hot unplug a CPU, the idle task on that CPU calls a few layers of C code before finally leaving the kernel. When KASAN is in use, poisoned shadow is left around for each of the...

UBUNTU-CVE-2021-47516

In the Linux kernel, the following vulnerability has been resolved: nfp: Fix memory leak in nfpcppareacacheadd In line 800 1, nfpcppareaalloc allocates and initializes a CPP area structure. But in line 807 2, when the cache is allocated failed, this CPP area structure is not freed, which will...

UBUNTU-CVE-2021-47553

In the Linux kernel, the following vulnerability has been resolved: sched/scs: Reset task stack state in bringupcpu To hot unplug a CPU, the idle task on that CPU calls a few layers of C code before finally leaving the kernel. When KASAN is in use, poisoned shadow is left around for each of the...

The vulnerability of the microprogramming software for Siemens SICAM processor module control modules allows a intruder to disclose protected information.

The vulnerability of the microprogramming software of Siemens SICAM processor control modules relates to the unencrypted storage of confidential information. Exploiting this vulnerability can allow an attacker to disclose the protected information...

SUSE CVE-2021-47313

In the Linux kernel, the following vulnerability has been resolved: cpufreq: CPPC: Fix potential memleak in cppccpufreqcpuinit It's a classic example of memleak, we allocate something, we fail and never free the resources. Make sure we free all resources on policy -init failures...

SUSE CVE-2023-52850

In the Linux kernel, the following vulnerability has been resolved: media: hantro: Check whether reset op is defined before use The i.MX8MM/N/P does not define the .reset op since reset of the VPU is done by genpd. Check whether the .reset op is defined before calling it to avoid NULL pointer...

Apache Tomcat 8.0.0.RC1 < 8.0.41

The version of Tomcat installed on the remote host is prior to 8.0.41. It is, therefore, affected by a vulnerability as referenced in the fixedinapachetomcat8.0.41security-8 advisory. - A bug in the error handling of the send file code for the NIO HTTP connector in Apache Tomcat 9.0.0.M1 to...

bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator

Processing specially crafted responses coming from DNSSEC-signed zones can lead to uncontrolled CPU usage, leading to a Denial of Service in the DNSSEC-validating resolver side. This vulnerability applies only for systems where DNSSEC validation is enabled...

kernel: bpf: cpumap: Fix memory leak in cpu_map_update_elem

In the Linux kernel, the following vulnerability has been resolved: bpf: cpumap: Fix memory leak in cpumapupdateelem Syzkaller reported a memory leak as follows: BUG: memory leak unreferenced object 0xff110001198ef748 size 192: comm "syz-executor.3", pid 17672, jiffies 4298118891 age 9.906s hex...

kernel: ACPI: processor: idle: Check acpi_fetch_acpi_dev() return value

In the Linux kernel, the following vulnerability has been resolved: ACPI: processor: idle: Check acpifetchacpidev return value The return value of acpifetchacpidev could be NULL, which would cause a NULL pointer dereference to occur in acpidevicehid. rjw: Subject and changelog edits, added empty...

kernel: ACPI: processor: Check for null return of devm_kzalloc() in fch_misc_setup()

In the Linux kernel, the following vulnerability has been resolved: ACPI: processor: Check for null return of devmkzalloc in fchmiscsetup devmkzalloc may fail, clkdata-name might be NULL and will cause a NULL pointer dereference later. rjw: Subject and changelog edits...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates from a reduction in the idle task preemption count when the CPU is offline...

DEBIAN-CVE-2021-47381

In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: Fix DSP oops stack dump output contents Fix @buf arg given to hexdumptobuffer and stack address used in dump error output...

UBUNTU-CVE-2021-47373

In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v3-its: Fix potential VPE leak on error In itsvpeirqdomainalloc, when itsvpeinit returns an error, there is an off-by-one in the number of VPEs to be freed. Fix it by simply passing the number of VPEs allocated, which...

PT-2024-14768

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue occurs when a system has isolated CPUs via the "isolcpus=" command line parameter, and an attempt is made to offline the last housekeeping CPU. This results in a WARN ON when...

Fluent Bit Heap-based Buffer Overflow

The version of Fluent Bit running on the remote host is prior to 3.0.4. It is, therefore, is affected by a heap-based buffer overflow vulnerability. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C...

AZL-67764 CVE-2024-35995 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: ACPI: CPPC: Use accesswidth over bitwidth for system memory accesses To align with ACPI 6.3+, since bitwidth can be any 8-bit value, it cannot be depended on to be always on a clean 8b boundary. This was uncovered on the Cobalt 1...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a kernel error on a system with only one CPU online, where there is no valid target available to migrate the...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from not having CPU mitigations enabled...