GSD-2023-1001788 efi: fix NULL-deref in init error path

efi: fix NULL-deref in init error path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.164 by commit...

GSD-2023-1001459 NFSv4.2: Fix a memory stomp in decode_attr_security_label

NFSv4.2: Fix a memory stomp in decodeattrsecuritylabel This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.163 by commit...

GSD-2023-1001216 cpufreq: qcom-hw: Fix memory leak in qcom_cpufreq_hw_read_lut()

cpufreq: qcom-hw: Fix memory leak in qcomcpufreqhwreadlut This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.86 by commit...

GSD-2022-1007920 nvmet: fix a memory leak

nvmet: fix a memory leak This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.9 by commit 382fee1a8b623e2546a3e15e80517389e0e0673e, it was...

GSD-2022-1007749 drm: Fix potential null-ptr-deref in drm_vblank_destroy_worker()

drm: Fix potential null-ptr-deref in drmvblankdestroyworker This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.10 by commit...

GSD-2022-1006838 drm/msm: Make .remove and .shutdown HW shutdown consistent

drm/msm: Make .remove and .shutdown HW shutdown consistent This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.3 by commit...

GSD-2022-1005439 perf/x86/lbr: Enable the branch type for the Arch LBR by default

perf/x86/lbr: Enable the branch type for the Arch LBR by default This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.64 by commit...

GSD-2022-1005344 netfilter: nf_tables: do not allow CHAIN_ID to refer to another table

netfilter: nftables: do not allow CHAINID to refer to another table This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.2 by commit...

CVE-2022-2271

The WP Database Backup WordPress plugin before 5.9 does not escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks when the unfilteredhtml capability is disallowed for example in multisite setup...

GSD-2022-1004431 xen-netfront: restore __skb_queue_tail() positioning in xennet_get_responses()

xen-netfront: restore skbqueuetail positioning in xennetgetresponses This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.53 by commit...

GSD-2022-1004207 net: dsa: qca8k: reset cpu port on MTU change

net: dsa: qca8k: reset cpu port on MTU change This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.18.11 by commit...

GSD-2022-1004199 tracing/histograms: Fix memory leak problem

tracing/histograms: Fix memory leak problem This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.18.13 by commit...

GSD-2022-1003403 ASoC: samsung: Fix refcount leak in aries_audio_probe

ASoC: samsung: Fix refcount leak in ariesaudioprobe This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.46 by commit...

GSD-2022-1003381 ASoC: ti: j721e-evm: Fix refcount leak in j721e_soc_probe_*

ASoC: ti: j721e-evm: Fix refcount leak in j721esocprobe This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.46 by commit...

GSD-2022-1003108 ASoC: ti: j721e-evm: Fix refcount leak in j721e_soc_probe_*

ASoC: ti: j721e-evm: Fix refcount leak in j721esocprobe This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.14 by commit...

GSD-2022-1002143 remoteproc: Fix count check in rproc_coredump_write()

remoteproc: Fix count check in rproccoredumpwrite This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.110 by commit...

GSD-2022-1001950 memory: renesas-rpc-if: fix platform-device leak in error path

memory: renesas-rpc-if: fix platform-device leak in error path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.112 by commit...

GSD-2022-1001841 MIPS: pgalloc: fix memory leak caused by pgd_free()

MIPS: pgalloc: fix memory leak caused by pgdfree This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.33 by commit...

GSD-2022-1001650 memory: renesas-rpc-if: fix platform-device leak in error path

memory: renesas-rpc-if: fix platform-device leak in error path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.35 by commit...

GSD-2022-1001450 scsi: qla2xxx: Fix crash during module load unload test

scsi: qla2xxx: Fix crash during module load unload test This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.16.19 by commit...