GSD-2023-1002418 net/usb: kalmia: Don't pass act_len in usb_bulk_msg error path

net/usb: kalmia: Don't pass actlen in usbbulkmsg error path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.306 by commit...

GSD-2023-1002394 ASoC: SOF: Intel: hda-dai: fix possible stream_tag leak

ASoC: SOF: Intel: hda-dai: fix possible streamtag leak This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.232 by commit...

GSD-2023-1002366 RDMA/irdma: Fix potential NULL-ptr-dereference

RDMA/irdma: Fix potential NULL-ptr-dereference This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.94 by commit...

GSD-2023-1002251 trace_events_hist: add check for return value of 'create_hist_field'

traceeventshist: add check for return value of 'createhistfield' This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.272 by commit...

GSD-2023-1002244 drm/virtio: Fix GEM handle creation UAF

drm/virtio: Fix GEM handle creation UAF This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.229 by commit...

GSD-2023-1002212 HID: betop: check shape of output reports

HID: betop: check shape of output reports This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.231 by commit...

GSD-2023-1002203 ipv4: prevent potential spectre v1 gadget in fib_metrics_match()

ipv4: prevent potential spectre v1 gadget in fibmetricsmatch This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.231 by commit...

GSD-2023-1002198 bpf: Skip task with pid=1 in send_signal_common()

bpf: Skip task with pid=1 in sendsignalcommon This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.231 by commit...

GSD-2023-1002195 drm/virtio: Fix GEM handle creation UAF

drm/virtio: Fix GEM handle creation UAF This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.164 by commit...

GSD-2023-1002180 btrfs: always report error in run_one_delayed_ref()

btrfs: always report error in runonedelayedref This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.165 by commit...

GSD-2023-1002173 misc: fastrpc: Don't remove map on creater_process and device_release

misc: fastrpc: Don't remove map on createrprocess and devicerelease This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.165 by commit...

GSD-2023-1002167 usb: gadget: f_ncm: fix potential NULL ptr deref in ncm_bitrate()

usb: gadget: fncm: fix potential NULL ptr deref in ncmbitrate This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.165 by commit...

GSD-2023-1002137 x86/i8259: Mark legacy PIC interrupts with IRQ_LEVEL

x86/i8259: Mark legacy PIC interrupts with IRQLEVEL This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.166 by commit...

GSD-2023-1002120 regulator: da9211: Use irq handler when ready

regulator: da9211: Use irq handler when ready This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.89 by commit...

GSD-2023-1002119 net/sched: act_mpls: Fix warning during failed attribute validation

net/sched: actmpls: Fix warning during failed attribute validation This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.89 by commit...

GSD-2023-1002116 io_uring/io-wq: only free worker if it was allocated for creation

iouring/io-wq: only free worker if it was allocated for creation This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.89 by commit...

GSD-2023-1002089 reset: uniphier-glue: Fix possible null-ptr-deref

reset: uniphier-glue: Fix possible null-ptr-deref This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.91 by commit...

GSD-2023-1002054 riscv/kprobe: Fix instruction simulation of JALR

riscv/kprobe: Fix instruction simulation of JALR This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.91 by commit...

GSD-2023-1002018 s390/cpum_sf: add READ_ONCE() semantics to compare and swap loops

s390/cpumsf: add READONCE semantics to compare and swap loops This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.7 by commit...

GSD-2023-1001984 io_uring: lock overflowing for IOPOLL

iouring: lock overflowing for IOPOLL This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.7 by commit 7fc3990dad04a677606337ebc61964094d6cb41b...