GSD-2022-1007363 mm,hugetlb: take hugetlb_lock before decrementing h->resv_huge_pages

mm,hugetlb: take hugetlblock before decrementing h-resvhugepages This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.223 by commit...

GSD-2022-1007347 kernfs: fix use-after-free in __kernfs_remove

kernfs: fix use-after-free in kernfsremove This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.223 by commit...

GSD-2022-1007345 kcm: annotate data-races around kcm->rx_psock

kcm: annotate data-races around kcm-rxpsock This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.223 by commit...

GSD-2022-1007342 ALSA: aoa: i2sbus: fix possible memory leak in i2sbus_add_dev()

ALSA: aoa: i2sbus: fix possible memory leak in i2sbusadddev This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.223 by commit...

GSD-2022-1007341 openvswitch: switch from WARN to pr_warn

openvswitch: switch from WARN to prwarn This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.223 by commit...

GSD-2022-1007339 net/mlx5: Fix possible use-after-free in async command interface

net/mlx5: Fix possible use-after-free in async command interface This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.223 by commit...

PT-2022-35603 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.223 Description: A null pointer dereference issue was found in the tipc topsrv accept function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions...

PT-2022-35594 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.223 Description: The issue is related to a possible use-after-free in the async command interface of net/mlx5. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux...