13 matches found
GSD-2023-1002094 octeontx2-pf: Avoid use of GFP_KERNEL in atomic context
octeontx2-pf: Avoid use of GFPKERNEL in atomic context This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.91 by commit...
GSD-2023-1002091 dmaengine: ti: k3-udma: Do conditional decrement of UDMA_CHAN_RT_PEER_BCNT_REG
dmaengine: ti: k3-udma: Do conditional decrement of UDMACHANRTPEERBCNTREG This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.91 by commit...
GSD-2023-1002089 reset: uniphier-glue: Fix possible null-ptr-deref
reset: uniphier-glue: Fix possible null-ptr-deref This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.91 by commit...
GSD-2023-1002082 net: enetc: avoid deadlock in enetc_tx_onestep_tstamp()
net: enetc: avoid deadlock in enetctxonesteptstamp This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.91 by commit...
GSD-2023-1002078 net: mdio: validate parameter addr in mdiobus_get_phy()
net: mdio: validate parameter addr in mdiobusgetphy This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.91 by commit...
GSD-2023-1002067 net: stmmac: enable all safety features by default
net: stmmac: enable all safety features by default This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.91 by commit...
GSD-2023-1002061 i2c: designware: use casting of u64 in clock multiplication to avoid overflow
i2c: designware: use casting of u64 in clock multiplication to avoid overflow This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.91 by commit...
GSD-2023-1002058 ipv4: prevent potential spectre v1 gadget in ip_metrics_convert()
ipv4: prevent potential spectre v1 gadget in ipmetricsconvert This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.91 by commit...
GSD-2023-1002054 riscv/kprobe: Fix instruction simulation of JALR
riscv/kprobe: Fix instruction simulation of JALR This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.91 by commit...
GSD-2023-1002053 x86/i8259: Mark legacy PIC interrupts with IRQ_LEVEL
x86/i8259: Mark legacy PIC interrupts with IRQLEVEL This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.91 by commit...
PT-2023-35150 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.91 Description: The issue is related to a double increment of client count in the dma chan get function. This problem was introduced in version v4.0 and is fixed in Linux Kernel version v5.15.91. The actua...
PT-2023-35149 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.91 Description: The issue is related to a potential lockdep problem in the l2tp tunnel register function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kern...
PT-2023-35132 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.91 Description: The issue is related to a use-after-free of a listening socket. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior to...