14 matches found
GSD-2023-1000059 ARM: 9266/1: mm: fix no-MMU ZERO_PAGE() implementation
ARM: 9266/1: mm: fix no-MMU ZEROPAGE implementation This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.13 by commit...
GSD-2023-1000055 mm/khugepaged: take the right locks for page table retraction
mm/khugepaged: take the right locks for page table retraction This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.13 by commit...
GSD-2023-1000042 drm/shmem-helper: Remove errant put in error path
drm/shmem-helper: Remove errant put in error path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.13 by commit...
GSD-2023-1000039 HID: core: fix shift-out-of-bounds in hid_report_raw_event
HID: core: fix shift-out-of-bounds in hidreportrawevent This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.13 by commit...
GSD-2023-1000035 netfilter: conntrack: fix using __this_cpu_add in preemptible
netfilter: conntrack: fix using thiscpuadd in preemptible This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.13 by commit...
GSD-2023-1000033 netfilter: ctnetlink: fix compilation warning after data race fixes in ct mark
netfilter: ctnetlink: fix compilation warning after data race fixes in ct mark This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.13 by commit...
GSD-2023-1000023 net: wwan: iosm: fix memory leak in ipc_mux_init()
net: wwan: iosm: fix memory leak in ipcmuxinit This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.13 by commit...
GSD-2023-1000013 net: thunderbolt: fix memory leak in tbnet_open()
net: thunderbolt: fix memory leak in tbnetopen This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.13 by commit...
PT-2023-33127 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.13 Description: The issue is related to a race condition with cookie lru and use cookie. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior ...
PT-2023-33108 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.13 Description: The issue is related to a potential security vulnerability in the Bluetooth functionality. It is noted that the actual impact and attack plausibility have not yet been proven. The...
PT-2023-33105 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.13 Description: A potential memory leak was identified in the otx2 init tc function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior to...
PT-2023-33137 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.13 Description: The issue is related to a function prototype mismatch in the snd seq expand var event function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux...
GHSA-QJJJ-7G7H-54V3 ThinkPHP deserialization vulnerability
ThinkPHP v6.0.13 was discovered to contain a deserialization vulnerability via the component League\Flysystem\Cached\Storage\Psr6Cache. This vulnerability allows attackers to execute arbitrary code via a crafted payload...
CVE-2022-38352
ThinkPHP v6.0.13 was discovered to contain a deserialization vulnerability via the component League\Flysystem\Cached\Storage\Psr6Cache. This vulnerability allows attackers to execute arbitrary code via a crafted payload...