30 matches found
Astra Linux - уязвимость в linux, linux-5.10
In the Linux kernel, the following vulnerability has been resolved: can: sja1000: fix use after free in emspcmciaaddcard If the last channel is not available, then “dev” is freed. Fortunately, we can simply use “pdev-irq” instead. Also, we should check whether at least one channel was set up...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989733)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989733 advisory. In the Linux kernel, the following vulnerability has been resolved: can: sja1000: fix use after free in emspcmciaaddcard If the last channel is not available then de...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986706)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986706 advisory. In the Linux kernel, the following vulnerability has been resolved: can: sja1000: fix use after free in emspcmciaaddcard If the last channel is not available then de...
EUVD-2023-57863
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2021-47521
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - can: sja1000: fix use after free in emspcmciaaddcard If the last channel is not available then dev is freed. Fortunately, we can just use pdev-irq instead. Also...
CVE-2023-5563
The SJA1000 CAN controller driver backend automatically attempt to recover from a bus-off event when built with CONFIGCANAUTOBUSOFFRECOVERY=y. This results in calling ksleep in IRQ context, causing a fatal exception...
CLSA-2024-1718973513 Fix of 21 CVEs
CVE-url: https://ubuntu.com/security/CVE-2024-26777 - fbdev: sis: Error out if pixclock equals zero CVE-url: https://ubuntu.com/security/CVE-2021-47542 - net: qlogic: qlcnic: Fix a NULL pointer dereference in qlcnic83xxaddrings CVE-url: https://ubuntu.com/security/CVE-2021-47518 - nfc: fix...
The vulnerability of the ems_pcmcia_add_card() function in the Philips/NXP SJA1000 device driver for the Linux operating system allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the emspcmciaaddcard function in the drivers/net/can/sja1000/emspcmcia.c file of the Philips/NXP SJA1000 device driver in the Linux kernel is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the...
SUSE CVE-2021-47521
In the Linux kernel, the following vulnerability has been resolved: can: sja1000: fix use after free in emspcmciaaddcard If the last channel is not available then "dev" is freed. Fortunately, we can just use "pdev-irq" instead. Also we should check if at least one channel was set up...
CVE-2021-47521
In the Linux kernel, the following vulnerability has been resolved: can: sja1000: fix use after free in emspcmciaaddcard If the last channel is not available then "dev" is freed. Fortunately, we can just use "pdev-irq" instead. Also we should check if at least one channel was set up...
DEBIAN-CVE-2021-47521
In the Linux kernel, the following vulnerability has been resolved: can: sja1000: fix use after free in emspcmciaaddcard If the last channel is not available then "dev" is freed. Fortunately, we can just use "pdev-irq" instead. Also we should check if at least one channel was set up...
CVE-2021-47521
In the Linux kernel, the following vulnerability has been resolved: can: sja1000: fix use after free in emspcmciaaddcard If the last channel is not available then "dev" is freed. Fortunately, we can just use "pdev-irq" instead. Also we should check if at least one channel was set up...
UBUNTU-CVE-2021-47521
In the Linux kernel, the following vulnerability has been resolved: can: sja1000: fix use after free in emspcmciaaddcard If the last channel is not available then "dev" is freed. Fortunately, we can just use "pdev-irq" instead. Also we should check if at least one channel was set up...
CVE-2021-47521 can: sja1000: fix use after free in ems_pcmcia_add_card()
In the Linux kernel, the following vulnerability has been resolved: can: sja1000: fix use after free in emspcmciaaddcard If the last channel is not available then "dev" is freed. Fortunately, we can just use "pdev-irq" instead. Also we should check if at least one channel was set up...
CVE-2021-47521
CVE-2021-47521 affects the Linux kernel via can: sja1000: fix use after free in ems_pcmcia_add_card(). The fix ensures that when the last channel is unavailable, dev is freed and pdev->irq can be used instead, with an additional check that at least one channel was set up. In the available docu...
CVE-2021-47521 can: sja1000: fix use after free in ems_pcmcia_add_card()
In the Linux kernel, the following vulnerability has been resolved: can: sja1000: fix use after free in emspcmciaaddcard If the last channel is not available then "dev" is freed. Fortunately, we can just use "pdev-irq" instead. Also we should check if at least one channel was set up...
CVE-2023-5563
The SJA1000 CAN controller driver backend automatically attempt to recover from a bus-off event when built with CONFIGCANAUTOBUSOFFRECOVERY=y. This results in calling ksleep in IRQ context, causing a fatal exception...
CVE-2023-5563
The SJA1000 CAN controller driver backend automatically attempt to recover from a bus-off event when built with CONFIGCANAUTOBUSOFFRECOVERY=y. This results in calling ksleep in IRQ context, causing a fatal exception...
CVE-2023-5563
CVE-2023-5563 affects Zephyr RTOS, specifically the SJA1000 CAN controller driver backend. When built with CONFIG_CAN_AUTO_BUS_OFF_RECOVERY=y, the driver attempts to recover from a bus-off event by calling k_sleep() in IRQ context, which leads to a fatal exception. The linked documents confirm th...
CVE-2023-5563
The SJA1000 CAN controller driver backend automatically attempt to recover from a bus-off event when built with CONFIGCANAUTOBUSOFFRECOVERY=y. This results in calling ksleep in IRQ context, causing a fatal exception...