21 matches found
GSD-2022-1006069 KVM: SVM: Don't BUG if userspace injects an interrupt with GIF=0
KVM: SVM: Don't BUG if userspace injects an interrupt with GIF=0 This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.211 by commit...
GSD-2022-1006040 drm/radeon: fix potential buffer overflow in ni_set_mc_special_registers()
drm/radeon: fix potential buffer overflow in nisetmcspecialregisters This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.211 by commit...
GSD-2022-1006039 i2c: Fix a potential use after free
i2c: Fix a potential use after free This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.211 by commit 871a1e94929a27bf6e2cd99523865c840bbc2d87,...
GSD-2022-1006031 i2c: cadence: Support PEC for SMBus block read
i2c: cadence: Support PEC for SMBus block read This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.211 by commit...
GSD-2022-1006015 RDMA/siw: Fix duplicated reported IW_CM_EVENT_CONNECT_REPLY event
RDMA/siw: Fix duplicated reported IWCMEVENTCONNECTREPLY event This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.211 by commit...
GSD-2022-1005971 usb: cdns3 fix use-after-free at workaround 2
usb: cdns3 fix use-after-free at workaround 2 This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.211 by commit...
PT-2022-34273 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.211 Description: A potential security issue exists in the RDMA/siw component, where a duplicated reported IW CM EVENT CONNECT REPLY event may occur. The actual impact and attack plausibility have not yet be...
PT-2022-34310 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.211 Description: The issue is related to a refcount leak in the bcm kona smc init function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions pri...
PT-2022-34249 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.211 Description: The issue is related to a fix for an address sanitizer warning in raid status. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions...
PT-2022-34262 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions 2.6.23 through 5.4.210 Description: A refcount leak was discovered in the setup msi msg address function. The issue was introduced in version v2.6.23 and fixed in version v5.4.211. The actual impact and attack plausibili...
PT-2022-34284 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.211 Description: The issue is related to a refcount leak in the of flash probe versatile function. The actual impact and attack plausibility have not yet been proven. Recommendations: For versions prior to...
PT-2022-34239 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.211 Description: A memory leak issue exists in the j1939 session destroy function, potentially leading to security vulnerabilities. The actual impact and attack plausibility have not yet been proven...
PT-2022-34325 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions 3.17 through 5.4.210 Description: The issue is related to the KVM x86 component, specifically with the handling of the LTR emulation. The problem arises when marking the TSS busy during this emulation, potentially after...
PT-2022-34232 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.211 Description: The issue is related to a potential crash on an unused port in the mv88e6060 driver. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel...
PT-2022-34244 · Apparmor · Apparmor
Name of the Vulnerable Software and Affected Versions: apparmor versions prior to v5.4.211 Description: The issue is related to a reference count leak in the aa pivotroot function. The actual impact and attack plausibility have not yet been proven. Recommendations: For versions prior to v5.4.211,...
PT-2022-34296 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.211 Description: The issue is related to the registration of an irq at the end of a probe. The actual impact and attack plausibility have not yet been proven. It was introduced in version v4.7 and fixed in...
PT-2022-34252 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.211 Description: The issue is related to the assignment of scpi info in the arm scpi firmware. If the probe fails, scpi info should not be assigned. The actual impact and attack plausibility of this issue...
PT-2022-34298 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions v3.11 through v5.4.210 Description: A potential buffer overflow issue exists in the ni set mc special registers function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux...
PT-2022-34299 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.211 Description: A boundary check issue was discovered in the put entry function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior to...
PT-2022-34242 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.211 Description: The issue is related to the net sched: cls route component. It has been noted that when the handle is 0, removal from the list is necessary. The actual impact and potential for attack have...