Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: avoided invalid memory access via nodeonlineNUMANONODE. KASAN reports: 4.668325 T0 BUG: KASAN: wild-memory-access in dmarparseonerhsa arch/x86/include/asm/bitops.h:214, arch/x86/include/asm/bitops.h:226,...

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: ath9khtc: fixed potential out-of-bounds access due to an invalid rxstatus-rskeyix parameter being passed to testbit. The rxstatus-rskeyix parameter is eventually passed to testbit, so we need to ensure that it is within the allow...

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: scsi: mpt3sas: Avoid using test/setbit operations on non-allocated memory. There is a potential for out-of-bounds access when using testbit on a single word. The testbit and setbit functions operate on long values, and when testi...

kernel: Linux kernel: ath9k_htc out-of-bounds access vulnerability

A flaw was found in the Linux kernel's ath9khtc component. This vulnerability allows a local attacker to cause a denial of service or potentially disclose sensitive information via passing untrusted data to testbit...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990427)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990427 advisory. In the Linux kernel, the following vulnerability has been resolved: ath9khtc: fix potential out of bounds access with invalid rxstatus-rskeyix The rxstatus-rskeyix...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-380509)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-380509 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: mpt3sas: Avoid test/setbit operating in non-allocated memory There is a potential...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-387861)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-387861 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: mpt3sas: Avoid test/setbit operating in non-allocated memory There is a potential...

DEBIAN-CVE-2022-50093

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: avoid invalid memory access via nodeonlineNUMANONODE KASAN reports: 4.668325 T0 BUG: KASAN: wild-memory-access in dmarparseonerhsa arch/x86/include/asm/bitops.h:214 arch/x86/include/asm/bitops.h:226...

CVE-2022-50093

CVE-2022-50093 affects the Linux kernel IOMMU VT-d code. The issue arises from using arch_test_bit() with a possibly invalid first argument when NUMA is disabled, causing a potential wild memory access after node_online() returns NUMA_NO_NODE. The fix adds an explicit check for node != NUMA_NO_NO...

kernel: pwm: Fix double shift bug

REJECTED CVE A double shift vulnerability was identified in the Linux kernel's pwm subsystem. The issue involves passing a shifted value instead of a bit number to set/testbit functions, resulting in a double shift e.g., BITBIT1. While this doesn't cause problems for values 0 or 1, values of 5 or...

SUSE CVE-2022-49503

In the Linux kernel, the following vulnerability has been resolved: ath9khtc: fix potential out of bounds access with invalid rxstatus-rskeyix The "rxstatus-rskeyix" eventually gets passed to testbit so we need to ensure that it is within the bitmap. drivers/net/wireless/ath/ath9k/common.c:46...

DEBIAN-CVE-2022-49503

In the Linux kernel, the following vulnerability has been resolved: ath9khtc: fix potential out of bounds access with invalid rxstatus-rskeyix The "rxstatus-rskeyix" eventually gets passed to testbit so we need to ensure that it is within the bitmap. drivers/net/wireless/ath/ath9k/common.c:46...

UBUNTU-CVE-2022-49503

In the Linux kernel, the following vulnerability has been resolved: ath9khtc: fix potential out of bounds access with invalid rxstatus-rskeyix The "rxstatus-rskeyix" eventually gets passed to testbit so we need to ensure that it is within the bitmap. drivers/net/wireless/ath/ath9k/common.c:46...

CVE-2022-49503 ath9k_htc: fix potential out of bounds access with invalid rxstatus->rs_keyix

In the Linux kernel, the following vulnerability has been resolved: ath9khtc: fix potential out of bounds access with invalid rxstatus-rskeyix The "rxstatus-rskeyix" eventually gets passed to testbit so we need to ensure that it is within the bitmap. drivers/net/wireless/ath/ath9k/common.c:46...

CVE-2022-49503

CVE-2022-49503 is a Linux kernel issue in ath9k_htc where rxstatus->rs_keyix can escape bounds when it is passed to test_bit(), risking out-of-bounds access in the bitmap. The condition is triggered in drivers/net/wireless/ath/ath9k/common.c:46 within ath9k_cmn_rx_accept(). The vulnerability s...

kernel: pwm: Fix double shift bug

REJECTED CVE A double shift vulnerability was identified in the Linux kernel's pwm subsystem. The issue involves passing a shifted value instead of a bit number to set/testbit functions, resulting in a double shift e.g., BITBIT1. While this doesn't cause problems for values 0 or 1, values of 5 or...

kernel: pwm: Fix double shift bug

REJECTED CVE A double shift vulnerability was identified in the Linux kernel's pwm subsystem. The issue involves passing a shifted value instead of a bit number to set/testbit functions, resulting in a double shift e.g., BITBIT1. While this doesn't cause problems for values 0 or 1, values of 5 or...

SUSE CVE-2024-40901

In the Linux kernel, the following vulnerability has been resolved: scsi: mpt3sas: Avoid test/setbit operating in non-allocated memory There is a potential out-of-bounds access when using testbit on a single word. The testbit and setbit functions operate on long values, and when testing or settin...

DEBIAN-CVE-2024-40901

In the Linux kernel, the following vulnerability has been resolved: scsi: mpt3sas: Avoid test/setbit operating in non-allocated memory There is a potential out-of-bounds access when using testbit on a single word. The testbit and setbit functions operate on long values, and when testing or settin...