Astra Linux - уязвимость в linux-5.10, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: “block, bfq”: fixed a potential UAF issue related to “bfqq-bic” in “bicsetbfqq”. After the commit “64dc8c732f5c” “block, bfq: fix possible UAF for ‘bfqq-bic’”, “bic-bfqq” will be accessed in “bicsetbfqq”. However, in some context...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: vdpa/mlx5: added validation for the VIRTIONETCTRLMQVQPAIRSSET command When the control vq receives a VIRTIONETCTRLMQVQPAIRSSET command request from the driver, there is currently no validation of the number of queue pairs to be...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables – Disallow anonymous sets with a timeout flag. Anonymous sets are never used with a timeout setting from the user space; therefore, this behavior should be rejected. An exception to this rule is NFTSETEVAL, to...

Astra Linux - уязвимость в linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: can: dev: cansettermination, which allows for GPIO devices that are in a sleeping state to be managed. In commit 6e86a1543c37 “can: dev: provide optional GPIO-based termination support”, GPIO-based termination support was added...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: Bluetooth: MGMT: fixed a crash in setmeshsync and setmeshcomplete. There is a bug: KASAN: a stack-out-of-bounds issue in setmeshsync, caused by memcpy from a poorly declared on-stack flexible array. Another crash occurs in...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: arm64: Fixed a no-op check in setaccessflags, which could lead to errors when detecting SMMU/ATS faults. The function contpteptepsetaccessflags compared the gathered value from ptepget with the requested state to detect no-ops...

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: perf/core: Fixed a data race between perfeventsetoutput and perfmmapclose. Yang Jihing reported a race between perfeventsetoutput and perfmmapclose: CPU1 CPU2 perfmmapclosee2 if atomicdecandtest&e2-rb-mmapcount // 1 - 0 detachres...

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: netfilter: nftables: Use a timestamp to check whether the set element has timed out. A timestamp field is added at the beginning of the transaction; it is stored in the nftablespernetns area. The methods .insert, .deactivate,...

Astra Linux - уязвимость в linux-5.10, linux, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: ALSA: hda/ca0132: fixed a buffer overflow issue in tuningctlset The tuningctlset function might cause a buffer overflow if it does not break from the loop when matching A. static int tuningctlset... for i = 0; i This patch...

Astra Linux - уязвимость в grub2

A flaw was discovered in grub2. When attempting to mount an HFS+ partition, the hfsplus filesystem driver does not correctly set the ERRNO value. This issue may lead to a NULL pointer access...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: powerpc/setmemory: Spinlock recursion in changepageattr was avoided. The commit 1f9ad21c3b38 “powerpc/mm: Implement setmemory routines” included a spinlock call in changepageattr to safely perform the three-step operations...

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: In the fbdev: s3fb module, the value of screensize is calculated based on user input. If an improper value is provided by the user, the value of screensize may be larger than info-screensize, which may lead to the following bug:...

Astra Linux - уязвимость в libde265

It was discovered that Libde265 v1.0.12 contains multiple buffer overflows due to vulnerabilities in the numtilecolumns and numtilerow parameters of the picparameterset::dump function...

Astra Linux - уязвимость в linux-5.10, linux-5.15, linux-6.1, linux

In the Linux kernel, the following vulnerability has been resolved: ocfs2: A potential NULL pointer dereferencing has been fixed in ocfs2setbufferuptodate. During cleanup, if flags do not include OCFS2BHREADAHEAD, it may trigger a NULL pointer dereferencing in the ocfs2setbufferuptodate function,...

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: Bluetooth: MGMT: Fixed a slab-use-after-free read in setpoweredsync. This fix resolves the following crash: BUG: KASAN: Slab-use-after-free in setpoweredsync+0x3a/0xc0, net/bluetooth/mgmt.c:1353. A read of size 8 at address...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: netfilter: nftsetrbtree: Fix for overlapping expiration handling during walks. The lazy garbage collection mechanism during insertion, which should remove entries when the timeout occurs, fails to properly release the remainin...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: net:cpswnew: Execute ndosetrxmode callback in a work queue Commit 1767bb2d47b7 “ipv6: mcast: Don’t hold RTNL for IPV6ADDMEMBERSHIP and MCASTJOINGROUP” removed the RTNL lock for these operations. However, this change triggered the...

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: Do not finalize the CSA in IBSS mode if the state is disconnected When we are not connected to a channel, sending the “switch” announcement doesn’t make any sense. In that case, the BSS list is empty. This causes...

Astra Linux - уязвимость в linux-5.15

A issue was discovered in the Linux kernel before version 6.2. The ntfs3 subsystem does not properly check for correctness during disk reads, resulting in an out-of-bounds read in the ntfssetea function in fs/ntfs3/xattr.c...

Astra Linux - уязвимость в linux-5.10

The nftablesnewset function in net/netfilter/nftablesapi.c in the Linux kernel before version 5.12.13 allows local users to cause a denial of service due to NULL pointer dereferencing and general protection faults, caused by the absence of initialization for nftsetelemexpralloc. A local user can...