16 matches found
GSD-2022-1007444 cifs: Fix the error length of VALIDATE_NEGOTIATE_INFO message
cifs: Fix the error length of VALIDATENEGOTIATEINFO message This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.220 by commit...
GSD-2022-1007438 UM: cpuinfo: Fix a warning for CONFIG_CPUMASK_OFFSTACK
UM: cpuinfo: Fix a warning for CONFIGCPUMASKOFFSTACK This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.220 by commit...
PT-2022-35630 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.220 Description: The issue concerns an out-of-bounds read in the adp5061 get chg type function. This problem has been identified but its actual impact and potential for attack have not been confirmed...
PT-2022-35665 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions 3.9 through 5.4.219 Description: A refcount leak was discovered in the tegra20 clock init function. The issue was introduced in version 3.9 and is fixed in version 5.4.220. Recommendations: For Linux Kernel versions 3.9...
PT-2022-35642 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.220 Description: The issue is related to the Bluetooth L2CAP protocol in the Linux Kernel. It involves the initialization of delayed works at the l2cap chan create function. The actual impact and attack...
PT-2022-35676 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.220 Description: A potential security issue exists due to a debugfs leak in the mvpp2 module. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions...
PT-2022-35625 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.220 Description: A potential memory leak issue was identified in the xhci alloc stream info function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel...
PT-2022-35663 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.220 Description: A potential refcount leak was discovered in the afu ioctl function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior to...
PT-2022-35687 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.220 Description: A null pointer dereference issue was discovered in the ext4 write info function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versio...
PT-2022-35685 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.220 Description: A use-after-free issue was discovered in the nouveau gem prime import sg table function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kerne...
PT-2022-35689 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.220 Description: The issue concerns a fix for a sanity check on summary information in the f2fs component. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kern...
PT-2022-35696 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.220 Description: The issue is related to a circular deferral regression in the qcom rpm regulator. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel...
PT-2022-35688 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.220 Description: The issue is related to the ext4 file system, where a crash can occur when inline data creation follows a DIO write. The actual impact and attack plausibility have not yet been proven...
PT-2022-35660 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.220 Description: The issue is related to a dangling pnp string in the f printer.c file of the Linux Kernel. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux...
PT-2022-35666 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.220 Description: The issue is related to a refcount leak in the tegra114 clock init function. It was introduced in version v3.10 and fixed in version v5.4.220. The actual impact and attack plausibility have...
PT-2022-35659 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.220 Description: The issue is related to the use of snprintf, which has been replaced with scnprintf. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel...