Astra Linux - уязвимость в linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: mmc: sdhci-msm: pervent access to suspended controller The generic sdhci code registers the LED device and uses the host-runtimesuspended flag to protect access to it. The sdhci-msm driver does not set this flag, which results in...

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: mmc: sdhci-pci: A possible memory leak caused by the missing pcidevput has been fixed. pcigetdevice will increase the reference count of the returned pcidev. We need to use pcidev PUT to decrease the reference count before amdpro...

Qemu: sdhci: heap buffer overflow in sdhci_write_dataport()

...

DEBIAN-CVE-2024-42242

In the Linux kernel, the following vulnerability has been resolved: mmc: sdhci: Fix maxsegsize for 64KiB PAGESIZE blkqueuemaxsegmentsize ensured: if maxsize maxsegmentsize PAGESIZE return -EINVAL; The change from one to the other, exposed sdhci which was setting maximum segment size too low in so...

QEMU heap buffer overflow vulnerability (CNVD-2020-54916)

QEMU is a set of simulation processors written by Fabrice Bellard and distributed with source code under the GPL license, widely used on the GNU/Linux platform. A security vulnerability exists in QEMU, which originates in hw/sd/sdhci.c that triggers a memory corruption, which triggers a denial of...

QEMU 'hw/sd/sdhci.c' Denial of Service Vulnerability

QEMU aka Quick Emulator is a suite of analog processor software developed by French programmer Fabrice Bellard. QEMU suffers from a denial of service vulnerability. An attacker could exploit this vulnerability to cause a QEMU instance to crash, resulting in a denial of service condition...