Astra Linux - уязвимость в linux-5.15, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: ASoC: fslmqs – moveofnodeput has been moved to the correct location. ofnodeput should have been executed immediately after mqspriv-regmap = sysconnodetoregmapgprnp;. Otherwise, it causes a reference leak during the successful...

Astra Linux - уязвимость в linux-5.10, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: bpf: Fixed a reference count leak in bpfprogtestrunxdp syzbot reports: unregisternetdevice: Waiting for sit0 to become available. Usage count = 2. A debug printk patch revealed that a reference count is obtained at...

Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: iio: mma8452: Fixed the issue with triggering references. The mma8452 driver directly assigns a trigger to the struct iiodev. When the IIO core uses this trigger, it calls iiotriggerput to decrement the reference count by 1...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: fs/namespace: The reference leak in grabrequestedmntns has been fixed. lookupmntns already takes a reference to mntns. grabrequestedmntns does not need to take an additional reference...

Astra Linux - уязвимость в linux-5.10

A flaw was discovered in btrfsgetrootref in fs/btrfs/disk-io.c within the btrfs filesystem of the Linux kernel, due to a double decrement of the reference count. This issue may allow a local attacker with user privileges to crash the system or may lead to the leakage of internal kernel informatio...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: ASoC: mediatek: mt8195: Fixed error handling in mt8195mt6359rt1019rt5682devprobe. The devicenode pointer is returned by ofparsephandle, with the refcount incremented. We should use ofnodeput on it after that operation. This...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: regulator: fp9931: Fixed a runtime reference leak in fp9931hwmonread. In fp9931hwmonread, if regmapread fails, the function returns an error code without calling pmruntimeputautosuspend, resulting in a PM reference leak...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: Platform/x86: x86-android-tablets: Devices are unregistered in reverse order. Not all subsystems support the removal of a device when there are still consumers referencing that device. An example of this is the regulator subsyste...

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: smb: client: Fixed a refcount leak for cifssbtlink. Fixed three inconsistencies related to the refcount of cifssbtlink. The comments for cifssbtlink indicate that cifsputtlink must be called after successful calls to...

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Fixed a reference count leak in pprnotifier. According to the comments for pcigetdomainbusandslot, it returns a PCI device with a reference count that increments after use. The caller must decrement the reference count...

Astra Linux - уязвимость в linux-5.10, linux, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: mfd: arizona: Use pmruntimeresumeandget to prevent refcnt leak In arizonaclk32kenable, we should use pmruntimeresumeandget. pmruntimegetsync will increase the refcnt even when it returns an error...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Avoid using sksocket after free when sending messages. The sk-sksocket is not locked or referenced in the backlog thread. During the call to skbsendsock, there is a race condition involving the release of sksocket...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: ceph: The reference to cephstring should be placed correctly after the asynccreate attempt. The reference obtained by tryprepasynccreate is currently being leaked. Make sure we place it correctly...

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: “aoe”: fixed the potential use-after-free issue in multiple locations. Regarding the fix for CVE-2023-6270, f98364e92662 “aoe: fixed the potential use-after-free issue in aoecmdcfgpkts” modifies the behavior so that the tx...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: s390/zcrypt: fix reference counting on zcrypt card objects Tests with hot-plugging crytpo cards on KVM guests with debug kernel build revealed a use after free for the load field of the struct zcryptcard. The reason was an...

Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: ixgbe: fixed the PCI device reference count leak. As stated in the comments for pcigetdomainbusandslot, it returns a PCI device with the reference count incremented. After using this device, the caller must decrement the...

Astra Linux - уязвимость в linux-6.1, linux-5.10, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: smb: Client side – fixed a potential deadlock that could occur when releasing mids. All callers of releasemid seem to hold a reference to @mid. Therefore, there is no need to call krefput&mid-refcount, releasemid under...

Astra Linux - уязвимость в linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fixed the race condition issue caused by session lookup and expiration. The reference count of the session was incremented within the lock during the lookup operation, thereby avoiding the race condition related to session...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: xen: Fixed the issue where resources were not properly released in xenbusdevprobe This patch addresses a issue with the xenbusdevprobe function. In this function, within the if err branch at line 313, the program incorrectly...

Astra Linux - уязвимость в linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: netfilter: A use-after-free issue in getinfo has been fixed. The unloading of the ip6tablenat module caused a refcnt warning due to a UAF. The call trace is as follows: WARNING: CPU: 1 PID: 379 at kernel/module/main.c:853...