GSD-2022-1002995 lkdtm/bugs: Don't expect thread termination without CONFIG_UBSAN_TRAP

lkdtm/bugs: Don't expect thread termination without CONFIGUBSANTRAP This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.15 by commit...

GSD-2022-1002992 macsec: fix UAF bug for real_dev

macsec: fix UAF bug for realdev This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.15 by commit 78933cbc143b82d02330e00900d2fd08f2682f4e, it...

GSD-2022-1002989 watchdog: rzg2l_wdt: Fix 32bit overflow issue

watchdog: rzg2lwdt: Fix 32bit overflow issue This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.15 by commit...

GSD-2022-1002986 watchdog: rzg2l_wdt: Fix 'BUG: Invalid wait context'

watchdog: rzg2lwdt: Fix 'BUG: Invalid wait context' This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.15 by commit...

GSD-2022-1002971 tcp: tcp_rtx_synack() can be called from process context

tcp: tcprtxsynack can be called from process context This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.15 by commit...

GSD-2022-1002969 ubi: ubi_create_volume: Fix use-after-free when volume creation failed

ubi: ubicreatevolume: Fix use-after-free when volume creation failed This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.15 by commit...

GSD-2022-1002965 ax25: Fix ax25 session cleanup problems

ax25: Fix ax25 session cleanup problems This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.15 by commit...

GSD-2022-1002964 scsi: sd: Fix potential NULL pointer dereference

scsi: sd: Fix potential NULL pointer dereference This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.15 by commit...

GSD-2022-1002958 netfilter: nf_tables: memleak flow rule from commit path

netfilter: nftables: memleak flow rule from commit path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.15 by commit...

GSD-2022-1002953 af_unix: Fix a data-race in unix_dgram_peer_wake_me().

afunix: Fix a data-race in unixdgrampeerwakeme. This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.15 by commit...

GSD-2022-1002948 bpf, arm64: Clear prog->jited_len along prog->jited

bpf, arm64: Clear prog-jitedlen along prog-jited This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.15 by commit...

GSD-2022-1002944 tcp: use alloc_large_system_hash() to allocate table_perturb

tcp: use alloclargesystemhash to allocate tableperturb This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.15 by commit...

GSD-2022-1002942 xen: unexport __init-annotated xen_xlate_map_ballooned_pages()

xen: unexport init-annotated xenxlatemapballoonedpages This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.15 by commit...

GSD-2022-1002941 net: mdio: unexport __init-annotated mdio_bus_init()

net: mdio: unexport init-annotated mdiobusinit This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.15 by commit...

GSD-2022-1002939 ip_gre: test csum_start instead of transport header

ipgre: test csumstart instead of transport header This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.15 by commit...

GSD-2022-1002918 tracing: Fix sleeping function called from invalid context on RT kernel

tracing: Fix sleeping function called from invalid context on RT kernel This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.15 by commit...

GSD-2022-1002917 iommu/arm-smmu-v3: check return value after calling platform_get_resource()

iommu/arm-smmu-v3: check return value after calling platformgetresource This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.15 by commit...

GSD-2022-1002916 iommu/arm-smmu: fix possible null-ptr-deref in arm_smmu_device_probe()

iommu/arm-smmu: fix possible null-ptr-deref in armsmmudeviceprobe This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.15 by commit...

GSD-2022-1002913 mips: cpc: Fix refcount leak in mips_cpc_default_phys_base

mips: cpc: Fix refcount leak in mipscpcdefaultphysbase This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.15 by commit...

GSD-2022-1002908 iio: dummy: iio_simple_dummy: check the return value of kstrdup()

iio: dummy: iiosimpledummy: check the return value of kstrdup This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.15 by commit...