Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: nfc: nci: added flushworkqueue to prevent UAF. Our detector identified a bug caused by concurrent use-after-free when detaching a NCI device. The main reason for this bug is the unexpected scheduling between the delayed mechanism...

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: hid: cp2112: Fix duplicate workqueue initialization Previously, the cp2112 driver called INITDELAYEDWORK within cp2112 gpioirqstartup, resulting in duplicate initializations of the workqueue during subsequent IRQ starts after an...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: net: microchip: sparx5: Fixed a potential null-ptr-deref in sparxstatsinit and sparx5start. sparxstatsinit calls createsinglethreadworkqueue, without checking the return value; this may result in NULL being returned. A...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: ixgbevf: Fixed a resource leak in ixgbevfinitmodule. ixgbevfinitmodule no longer destroys the workqueue created by createsinglethreadworkqueue when pciregisterdriver fails. Added destroyworkqueue in the failure path to prevent...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: Wifi: ath10k: avoiding NULL pointer errors during sdio removal When running ‘rmmod ath10k’, ath10ksdioremove will free the sdioworkqueue by calling destroyworkqueue. However, if CONFIGINITONFREEDEFAULTON is set to yes, a kernel...

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: locking/wwmutex/test: Fixed potential corruption of the workqueue. In some cases, when running with the test-wwmutex code, I observed odd behaviors where, sometimes, flushworkqueue seemed to return before all work threads had...

Astra Linux - уязвимость в linux-5.10, linux, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: Wifi: iwl4965 – Added a check for the return value of the createsinglethreadworkqueue function. The check is added to prevent NULL pointer dereferencing...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: BPF: Fixed a deadlock between rcutasks Trace and eventmutex. The following deadlock was also fixed: CPU A freeevent perfkprobedestroy mutexlock&eventmutex perfTraceEventUnreg synchronizercuTasksTrace There are several paths in...

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: core: flush gadget workqueue after device removal The devicedel function can cause new work to be scheduled in the gadget-workqueue. This issue is observed, for example, with the dwc3 driver, as follows: c devicedel...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: iwlwifi: Added a missing check for allocorderedworkqueue. Also added a check on the return value of allocorderedworkqueue, as it might return a NULL pointer...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: io-wq: Fixed a memory leak during worker creation. If the CPU mask allocation for a node fails, the memory allocated for the ‘iowqe’ structure of the current node does not get freed during error handling, since it has not yet bee...

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: drm/msm/hdmi: Added a missing check for allocorderedworkqueue. Added a check on the return value of allocorderedworkqueue, as it may return a NULL pointer, causing a NULL pointer dereferencing in hdmihdcp.c and hdmihpd.c. Patch...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fixed a slab-use-after-free issue in hdcpwork Reason A slab-use-after-free error occurs when HDCP is destroyed, but the propertyvalidatedwork queue is still running. How Cancel the delayed work when destroying th...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: drm/imagination: avoided deadlock during fence release The processing of fence release in the scheduler queue is performed on a workqueue, rather than directly in the release function. This fix resolves deadlock issues such as...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: tpm: tpmvtpmproxy: fixed a race condition in the creation of /dev/vtpmx. The /dev/vtpmx becomes visible before 'workqueue' is initialized, which can lead to memory corruption in the worst-case scenario. This issue was addresse...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: crypto: qat – Flushes misc workqueue during device shutdown Repeated loading and unloading of a device-specific QAT driver, such as qat4xxx, in a tight loop can lead to a crash due to a use-after-free scenario. This occurs when a...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: net/mlx5: Fixed a deadlock between the devlink lock and esw-wq. When esw-workqueue executes eswfunctionschangedeventhandler, eswvfschangedeventhandler acquires the devlink lock. The code at eswvfschangedeventhandler calls...

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: PCI: pnvphp: Clean up allocated IRQs on unplug When the root of a nested PCIe bridge configuration is unplugged, the pnvphp driver leaks the allocated IRQ resources for the child bridges’ hotplug event notifications, resulting in...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: Nouveau: The offload fence uevents function is now processed via the workqueue. This should prevent a deadlock between the fctx lock and the irq lock. The processing of uevents is offloaded from the irq to the workqueue...

Astra Linux - уязвимость в linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: char: xillybus: Do not destroy the workqueue from work items running on it. This issue was triggered by a decrease in the value of kref. The destroyworkqueue function might be called from within a work item to destroy its own...