GSD-2022-1005514 btrfs: unset reloc control if transaction commit fails in prepare_to_relocate()

btrfs: unset reloc control if transaction commit fails in preparetorelocate This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.63 by commit...

GSD-2022-1005486 scsi: lpfc: Prevent buffer overflow crashes in debugfs with malformed user input

scsi: lpfc: Prevent buffer overflow crashes in debugfs with malformed user input This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.63 by...

GSD-2022-1005484 scsi: lpfc: Fix possible memory leak when failing to issue CMF WQE

scsi: lpfc: Fix possible memory leak when failing to issue CMF WQE This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.63 by commit...

PT-2022-33768 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.63 Description: A potential security issue has been identified in the Linux Kernel, related to the fs/ntfs3 component. The actual impact and attack plausibility have not yet been proven. Recommendations: F...

PT-2022-33785 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: apparmor versions prior to v5.15.63 Description: A memory leak issue exists in the aa simple write to buffer function. The actual impact and attack plausibility have not yet been proven. Recommendations: For versions prior to v5.15.63, update...

PT-2022-33734 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.63 Description: The issue is related to a cleanup problem in the .remove function after pm runtime get sync failed. The actual impact and attack plausibility have not yet been proven. Recommendations: For...

PT-2022-33769 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.63 Description: The issue is related to a potential security vulnerability in the Linux Kernel, specifically in the kbuild dummy-tools component. It involves avoiding a tmpdir leak in dummy gcc. The actual...

PT-2022-33737 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.63 Description: The issue is related to the dmaengine, specifically the dw-axi-dmac, where it does not properly handle errors, potentially leading to information disclosure. The actual impact and attack...

PT-2022-33730 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.63 Description: The issue is related to the detection of uninitialized lists in the Linux Kernel. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel...

PT-2022-33790 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.63 Description: The issue concerns the tracing/eprobes feature in the Linux Kernel, where eprobes should not be allowed to use $stack or % for registers. The actual impact and attack plausibility of this...