Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: - In net: The variable sk-skfamily was read once in the function skmcloop. - syzbot is frequently using IPV6ADDRFORM; it managed to trigger the WARNONONCE1 function in skmcloop. We have many more similar issues that need to be...

CVE-2023-53831 net: read sk->sk_family once in sk_mc_loop()

In the Linux kernel, the following vulnerability has been resolved: net: read sk-skfamily once in skmcloop syzbot is playing with IPV6ADDRFORM quite a lot these days, and managed to hit the WARNONONCE1 in skmcloop We have many more similar issues to fix. WARNING: CPU: 1 PID: 1593 at...

vsock: Update rx_bytes on read_skb()

...

DEBIAN-CVE-2024-50169

In the Linux kernel, the following vulnerability has been resolved: vsock: Update rxbytes on readskb Make sure virtiotransportincrxpkt and virtiotransportdecrxpkt calls are balanced i.e. virtiovsocksock::rxbytes doesn't lie after vsocktransport::readskb. While here, also inform the peer that we'v...

The vulnerability of the `_dbus_read_socket_with_unix_fds` function in the `dbus/dbus-sysdeps-unix.c` component of the D-Bus interprocess communication system, related to improper resource release, allows a malicious actor to cause a service failure.

The vulnerability of the dbusreadsocketwithunixfds function in the dbus/dbus-sysdeps-unix.c component of the D-Bus interprocess communication system is related to incorrect handling of exceeding the number of file descriptors. Exploiting this vulnerability allows an attacker to cause a service...