208 matches found
CVE-2026-46263
CVE-2026-46263: Linux kernel DRM/AMD display component fix for out-of-bounds access in stream_enc_regs. The issue stems from eng_id being used directly as an index into stream_enc_regs[] (size 5); eng_id can be 5 (ENGINE_ID_DIGF) or negative, risking memory past the end. A bounds check using ARRA...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: OPP: Fixed a potential null pointer dereference in devpmoppgetrequiredpstate. The “opp” pointer is dereferenced before the ISERRORNULL check. This issue was fixed by removing the dereference of the “opp” pointer from the cache an...
Astra Linux - уязвимость в linux-5.10, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: Media: MediTech; vcodec: Fixed the H264 multi-stateless decoder’s match warning. A match static checker warning was also fixed in vdech264reqmultiif.c. This issue causes the kernel to crash when fb is NULL...
Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15
In the Linux kernel, the following vulnerability has been resolved: media: tuners: qt1010: Replace BUGON with a regular error. BUGON is unnecessary here, and it also causes confusion in the smatch function. Replacing BUGON with an error return will help resolve this issue. Warning:...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: clk: mediatek: fix ofiomap memory leak Matching reports: drivers/clk/mediatek/clk-mtk.c:583 mtkclksimpleprobe warning: ‘base’ from ofiomap is not released on lines: 496. This problem was also found in linux-next. In...
Astra Linux - уязвимость в linux-6.1
In the Linux kernel, the following vulnerabilities have been resolved: drm/amdgpu: Fixed the smatch static checker warning adev-gfx.imu.funcs could be NULL...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: Media: MediTech; vcodec: Fixed the H264 stateless decoder’s “smatch” warning. A “smatch static checker” warning was also fixed in vdech264reqif.c. This issue causes the kernel to crash when fb is NULL...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerabilities have been resolved: crypto: marvell/octeontx – prevents integer overflows The value of “codelength” comes from the firmware file. If your firmware is untrusted, there’s likely very little you can do to protect yourself. Nevertheless, we still try...
Astra Linux - уязвимость в linux-5.15, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: PCI: Endpoint: Fixed error handling in vpciscanbus Smatch complains about inconsistent NULL checking in vpciscanbus: drivers/pci/endpoint/functions/pci-epf-vntb.c:1024 vpciscanbus error: We previously assumed that 'vpcibus' could...
Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1
In the Linux kernel, the following vulnerabilities have been resolved: drm/amd/display: Fixed a potential index out of bounds issue in the color transformation function. The issue of index out of bounds occurred when the index ‘i’ exceeded the number of transfer function points TRANSFERFUNCPOINTS...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: crypto: ccp – Fixed the issue of dereferencing an uninitialized error pointer. Fixed the warnings related to smatch. drivers/crypto/ccp/sev-dev.c:1312 sevplatforminitlocked Error: We previously assumed that ‘error’ could be null...
CVE-2026-31690 firmware: thead: Fix buffer overflow and use standard endian macros
In the Linux kernel, the following vulnerability has been resolved: firmware: thead: Fix buffer overflow and use standard endian macros Addresses two issues in the TH1520 AON firmware protocol driver: 1. Fix a potential buffer overflow where the code used unsafe pointer arithmetic to access the...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013545)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013545 advisory. In the Linux kernel, the following vulnerability has been resolved: ptpqoriq: fix memory leak in probe Smatch complains that: drivers/ptp/ptpqoriq.c ptpqoriqprobe...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-010934)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010934 advisory. In the Linux kernel, the following vulnerability has been resolved: xen/privcmd: Fix a possible warning in privcmdioctlmmapresource As 'kdata.num' is user-controlled...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-013332)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013332 advisory. In the Linux kernel, the following vulnerability has been resolved: media: tuners: qt1010: replace BUGON with a regular error BUGON is unnecessary here, and in...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007471)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007471 advisory. In the Linux kernel, the following vulnerability has been resolved: xen/privcmd: Fix a possible warning in privcmdioctlmmapresource As 'kdata.num' is user-controlled...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005750)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005750 advisory. In the Linux kernel, the following vulnerability has been resolved: media: platform: mediatek: vpu: fix NULL ptr dereference If pdev is NULL, then it is still...
Azure Linux 3.0 Security Update: kernel (CVE-2024-47752)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-47752 advisory. - In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: Fix H264...
Azure Linux 3.0 Security Update: kernel (CVE-2024-47754)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-47754 advisory. - In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: Fix H264 multi...
Azure Linux 3.0 Security Update: kernel (CVE-2024-47753)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-47753 advisory. - In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: Fix VP8 statele...