19 matches found
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. Linux kernel has a security vulnerability that stems from a faulty 6 GHz scan build...
CVE-2024-50159 firmware: arm_scmi: Fix the double free in scmi_debugfs_common_setup()
In the Linux kernel, the following vulnerability has been resolved: firmware: armscmi: Fix the double free in scmidebugfscommonsetup Clang static checkerscan-build throws below warning: | drivers/firmware/armscmi/driver.c:line 2915, column 2 | Attempt to free released memory. When...
CVE-2024-40928
CVE-2024-40928 – Linux kernel ethtool statistics fix : The issue arises from a null function pointer in ethtool_get_phy_stats when performing phy stats ioctl. The patch fixes the error handling by returning -EOPNOTSUPP when ops->get_ethtool_phy_stats is NULL, preventing a null-dereference in n...
CVE-2024-40928 net: ethtool: fix the error condition in ethtool_get_phy_stats_ethtool()
In the Linux kernel, the following vulnerability has been resolved: net: ethtool: fix the error condition in ethtoolgetphystatsethtool Clang static checker scan-build warning: net/ethtool/ioctl.c:line 2233, column 2 Called function pointer is null null dereference. Return '-EOPNOTSUPP' when...
CVE-2024-36030 octeontx2-af: fix the double free in rvu_npc_freemem()
In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: fix the double free in rvunpcfreemem Clang static checkerscan-build warning: drivers/net/ethernet/marvell/octeontx2/af/rvunpc.c:line 2184, column 2 Attempt to free released memory. npcmcamrsrcsdeinit has released...
CVE-2024-26799
A vulnerability was found in the Qualcomm ASoC ALSA System on Chip driver for the Linux kernel, where an uninitialized pointer dmactl could be used in certain conditions. This issue occurs when an invalid driver ID daiid is encountered, leading to potential use of uninitialized memory. Mitigation...
CVE-2024-26799
In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: Fix uninitialized pointer dmactl In the case where lpassgetdmactlhandle is called and the driver id daiid is invalid the pointer dmactl is not being assigned a value, and dmactl contains a garbage value since it has n...
CVE-2024-26799
In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: Fix uninitialized pointer dmactl In the case where lpassgetdmactlhandle is called and the driver id daiid is invalid the pointer dmactl is not being assigned a value, and dmactl contains a garbage value since it has n...
CVE-2024-26799 ASoC: qcom: Fix uninitialized pointer dmactl
In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: Fix uninitialized pointer dmactl In the case where lpassgetdmactlhandle is called and the driver id daiid is invalid the pointer dmactl is not being assigned a value, and dmactl contains a garbage value since it has n...
CVE-2024-26799 ASoC: qcom: Fix uninitialized pointer dmactl
In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: Fix uninitialized pointer dmactl In the case where lpassgetdmactlhandle is called and the driver id daiid is invalid the pointer dmactl is not being assigned a value, and dmactl contains a garbage value since it has n...
CVE-2024-26799
In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: Fix uninitialized pointer dmactl In the case where lpassgetdmactlhandle is called and the driver id daiid is invalid the pointer dmactl is not being assigned a value, and dmactl contains a garbage value since it has n...
SUSE CVE-2021-47009
In the Linux kernel, the following vulnerability has been resolved: KEYS: trusted: Fix memory leak on object td Two error return paths are neglecting to free allocated object td, causing a memory leak. Fix this by returning via the error return path that securely kfree's td. Fixes clang scan-buil...
CVE-2021-47009 KEYS: trusted: Fix memory leak on object td
In the Linux kernel, the following vulnerability has been resolved: KEYS: trusted: Fix memory leak on object td Two error return paths are neglecting to free allocated object td, causing a memory leak. Fix this by returning via the error return path that securely kfree's td. Fixes clang scan-buil...
SUSE CVE-2014-2893
The GetHTMLRunDir function in the scan-build utility in Clang 3.5 and earlier allows local users to obtain sensitive information or overwrite arbitrary files via a symlink attack on temporary directories with predictable names...
PT-2024-11113 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A memory leak has been identified in the Linux kernel, specifically in the trusted key module. The issue arises from two error return paths that fail to free the allocated object td,...
CVE-2014-2893
The GetHTMLRunDir function in the scan-build utility in Clang 3.5 and earlier allows local users to obtain sensitive information or overwrite arbitrary files via a symlink attack on temporary directories with predictable names...
Information disclosure
The GetHTMLRunDir function in the scan-build utility in Clang 3.5 and earlier allows local users to obtain sensitive information or overwrite arbitrary files via a symlink attack on temporary directories with predictable names...
UBUNTU-CVE-2014-2893
The GetHTMLRunDir function in the scan-build utility in Clang 3.5 and earlier allows local users to obtain sensitive information or overwrite arbitrary files via a symlink attack on temporary directories with predictable names...
CVE-2014-2893
CVE-2014-2893 affects the GetHTMLRunDir function in the scan-build utility of Clang up to version 3.5 (and earlier). The issue permits local users to disclose sensitive information or overwrite arbitrary files via a symlink attack on temporary directories with predictable names. Exploitation deta...