18 matches found
GSD-2022-1005062 kprobes: don't call disarm_kprobe() for disabled kprobes
kprobes: don't call disarmkprobe for disabled kprobes This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.6 by commit...
GSD-2022-1005058 rose: check NULL rose_loopback_neigh->loopback
rose: check NULL roseloopbackneigh-loopback This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.6 by commit...
GSD-2022-1005053 net/mlx5: Disable irq when locking lag_lock
net/mlx5: Disable irq when locking laglock This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.6 by commit...
GSD-2022-1005049 net: Fix data-races around weight_p and dev_weight_[rt]x_bias.
net: Fix data-races around weightp and devweightrtxbias. This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.6 by commit...
GSD-2022-1005048 net: Fix data-races around netdev_tstamp_prequeue.
net: Fix data-races around netdevtstampprequeue. This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.6 by commit...
GSD-2022-1005043 net: Fix a data-race around sysctl_net_busy_read.
net: Fix a data-race around sysctlnetbusyread. This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.6 by commit...
GSD-2022-1005039 net: Fix a data-race around netdev_unregister_timeout_secs.
net: Fix a data-race around netdevunregistertimeoutsecs. This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.6 by commit...
GSD-2022-1005038 net: Fix a data-race around gro_normal_batch.
net: Fix a data-race around gronormalbatch. This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.6 by commit...
GSD-2022-1005037 btrfs: fix space cache corruption and potential double allocations
btrfs: fix space cache corruption and potential double allocations This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.6 by commit...
GSD-2022-1005034 btrfs: fix possible memory leak in btrfs_get_dev_args_from_path()
btrfs: fix possible memory leak in btrfsgetdevargsfrompath This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.6 by commit...
GSD-2022-1005030 bootmem: remove the vmemmap pages from kmemleak in put_page_bootmem
bootmem: remove the vmemmap pages from kmemleak in putpagebootmem This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.6 by commit...
GSD-2022-1005028 mm/mprotect: only reference swap pfn page if type match
mm/mprotect: only reference swap pfn page if type match This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.6 by commit...
GSD-2022-1005027 mm/hugetlb: avoid corrupting page->mapping in hugetlb_mcopy_atomic_pte
mm/hugetlb: avoid corrupting page-mapping in hugetlbmcopyatomicpte This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.6 by commit...
GSD-2022-1005026 s390: fix double free of GS and RI CBs on fork() failure
s390: fix double free of GS and RI CBs on fork failure This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.6 by commit...
GSD-2022-1005021 binder_alloc: add missing mmap_lock calls when using the VMA
binderalloc: add missing mmaplock calls when using the VMA This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.6 by commit...
GSD-2022-1005020 arm64/sme: Don't flush SVE register state when allocating SME storage
arm64/sme: Don't flush SVE register state when allocating SME storage This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.6 by commit...
GSD-2022-1005015 bpf: Don't use tnum_range on array range checking for poke descriptors
bpf: Don't use tnumrange on array range checking for poke descriptors This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.6 by commit...
PT-2022-33301 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.19.6 Description: A data-race issue exists around sysctl net busy read. The actual impact and attack plausibility have not yet been proven. It was introduced in version v3.11 and fixed in Linux Kernel version...