22 matches found
GSD-2022-1007142 RISC-V: Make port I/O string accessors actually work
RISC-V: Make port I/O string accessors actually work This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.75 by commit...
GSD-2022-1007103 Bluetooth: hci_{ldisc,serdev}: check percpu_init_rwsem() failure
Bluetooth: hcildisc,serdev: check percpuinitrwsem failure This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.75 by commit...
GSD-2022-1007069 fpga: prevent integer overflow in dfl_feature_ioctl_set_irq()
fpga: prevent integer overflow in dflfeatureioctlsetirq This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.75 by commit...
GSD-2022-1007047 rcu: Avoid triggering strict-GP irq-work when RCU is idle
rcu: Avoid triggering strict-GP irq-work when RCU is idle This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.75 by commit...
GSD-2022-1007010 blk-throttle: prevent overflow while calculating wait time
blk-throttle: prevent overflow while calculating wait time This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.75 by commit...
PT-2022-35402 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.75 Description: A potential memory leak issue has been identified. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior to v5.15.75, update t...
PT-2022-35339 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.75 Description: The issue is related to the drm/msm/dpu component, specifically with the index dpu kms-hw vbif using vbif idx. The actual impact and attack plausibility have not yet been proven...
PT-2022-35291 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.75 Description: The issue is related to the xfrm component, specifically with the update of ipcomp scratches when freed. The actual impact and attack plausibility have not yet been proven. Recommendations:...
PT-2022-35260 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.75 Description: A bug in the musb gadget.c file causes an rxstate overflow. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior to v5.15.75,...
PT-2022-35292 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.75 Description: The issue is related to a potential data-race around tcp md5sig pool populated in the TCP protocol. The actual impact and attack plausibility have not yet been proven. Recommendations: For...
PT-2022-35267 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.75 Description: The issue is related to a hung condition when a signal interrupts the nbd start device ioctl function. The actual impact and attack plausibility have not yet been proven. Recommendations: F...
PT-2022-35397 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.75 Description: The issue concerns the RISC-V port I/O string accessors in the Linux Kernel, which may have potential security implications. The actual impact and attack plausibility have not yet been...
PT-2022-35300 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.75 Description: The issue is related to a shift-out-of-bounds problem in the intel rapl component of the powercap module. The actual impact and potential for attack have not been confirmed. Recommendations...
PT-2022-35268 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.75 Description: The issue concerns an out-of-bounds read in the adp5061 get chg type function. This problem has been identified but its actual impact and potential for attack have not been confirmed...
PT-2022-35258 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.75 Description: A potential memory leak was identified in the rtw init cmd priv function of the rtl8723bs driver. The actual impact and attack plausibility have not yet been proven. Recommendations: For...
PT-2022-35294 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to 5.15.75 Description: The issue is related to the ethernet driver in the Linux Kernel, specifically the ti: davinci mdio module. A workaround has been added for an errata, but the actual impact and attack...
PT-2022-35405 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.75 Description: The issue is related to io uring/af unix, where registered files gc is deferred to io uring release. The actual impact and attack plausibility have not yet been proven. Recommendations: For...
PT-2022-35348 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.75 Description: The issue is related to a debugfs leak in the mvpp2 module. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior to v5.15.75,...
PT-2022-35257 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.75 Description: The issue is related to the use of kvmalloc for the group descriptor array in ext2. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel...
PT-2022-35378 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.75 Description: A potential use-after-free issue was identified in jbd2 fc wait bufs. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior to...