18102 matches found
Astra Linux – Vulnerability in ktexteditor, Kate
The LSP Language Server Protocol plugin in KDE Kate before 21.12.2 and KTextEditor before 5.91.0 attempts to execute the associated LSP server binary when opening a file of a given type. If this binary is absent from the PATH, it will attempt to run the LSP server binary in the directory of the...
Astra Linux – Vulnerability in FontForge
FontForge 20190801 has a use-after-free in SFDGetFontMetaData in sfd.c...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: scsi: qedf: Add stagwork to all the vports A call trace was observed when creating NPIV ports. Only 32 out of 64 ports are shown as online. The stagwork was not initialized for the vports; therefore, it needs to be initialized...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: media:airspy: Fixed a memory leak in the airspy probe. The commit ca9dc8d06ab6 “media:airspy: Respect DMA coherence rules” moves the buf variable from the stack to the heap. However, this action only frees buf in the error-handli...
Astra Linux – Vulnerability in Linux, Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: sit: Do not call ipip6devfree from sitinitnet. ipip6devfree is a member function of dev-privdestructor; it has already been called by registernetdevice in case of errors. An alternative approach would be to make ipip6devfree...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: TCP: Fixed issues related to data races around sysctltcpl3mdevaccept. When reading sysctltcpl3mdevaccept, it can be changed concurrently. Therefore, we need to add READONCE to its readers...
Astra Linux – Vulnerability found in Linux 5.15, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: A null check was added for the setoutputgamma function pointer in the dcn30setoutputtransferfunc function. This change ensures that the setoutputgamma function pointer is not null before dereferencing it...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerabilities have been resolved: KVM: x86: Acquiring kvm-srcu when handling KVMSETVCPUEVENTS Acquire kvm-srcu when processing KVMSETVCPUEVENTS. When SMM mode is toggled, KVM will forcibly leave the nested VMX/SVM state. Leaving such a state also results in...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerabilities have been resolved: drm/amdgpu: fixed a situation where dereference operations occurred after a null check. Check the pointer hive before using it...
Astra Linux – Vulnerability in libsoup2.4
GNOME libsoup before version 3.6.0 allowed HTTP request smuggling in certain configurations, because '\0' characters at the end of header names were ignored. In other words, a header with the format "Transfer-Encoding\0: chunked" was treated the same as a header with the format "Transfer-Encoding...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: Nilfs2: Fixed a kernel bug caused by the lack of clearing of the “checked” flag. Syzbot reported that in directory operations, after Nilfs2 detects filesystem corruption and becomes read-only, blockwritebeginint may fail the BUGO...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: landlock: Handle weird files A corrupted filesystem e.g., bcachefs might return weird files. Instead of throwing a warning and allowing access to such files, treat them as regular files...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: do not attempt to communicate with a dead firmware. This fix addresses the issue where the firmware might be inactive. The changes include: badstate = 0 WARNING: CPU: 10 PID: 702 at...
Astra Linux – Vulnerability found in Linux 5.15, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: x86/bhi: Avoid warnings in the DB handler due to BHI mitigation When BHI mitigation is enabled, if SYSENTER is invoked with the TF flag set, then entrySYSENTERcompat uses CLEARBRANCHHISTORY and calls clearbhbloop before the TF fl...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: xfrm: removes the intermediate secpath entry in packet handling mode when using offload mode. Packets processed by hardware include the secpath as a way to inform the XFRM core code that this path has already been handled. This...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: netlink: terminate outstanding dump on socket close netlink supports iterative dumping of data. It provides the following operations: - start – Optional Initiates the dumping process. - dump – The actual dumping process; this...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: nilfs2: The issue related to the null-ptr-deref in the blockdirtybuffer tracepoint has been fixed. When using the “block:blockdirtybuffer” tracepoint, the markbufferdirty function may cause a NULL pointer dereference, or a genera...
Astra Linux – Vulnerability in ffmpeg, ffmpeg5
FFmpeg 7.0 is vulnerable to Buffer Overflow. There is a negative-size-param bug at libavcodec/mpegvideoenc.c:1216:21 in loadinputpicture in FFmpeg7.0...
Astra Linux – Vulnerability in glusterfs
In Gluster GlusterFS 11.0, there is a use-after-free in the file xlators/cluster/dht/src/dht-common.c at the dhtsetxattrmdscbk function...
Astra Linux – Vulnerability in gst-plugins-good1.0
GStreamer is a library for constructing graphs of media-handling components. A vulnerability related to uninitialized stack variables has been identified in the gstmatroskademuxaddwvpkheader function within matroska-demux.c. When the size is less than 4, the program calls gstbufferunmap with an...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: Tracing: It was determined that processstring also allows arrays. To address a common bug where TRACEEVENT’s TPfastassign assigns the address of an allocated string to the ring buffer and then references it in TPPrintk, which can...
Astra Linux – Vulnerability found in Linux 6.1, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: bnxtre: Avoid undefined behavior in bnxtqpliballocinithwq. Undefined behavior occurs when bnxtqpliballocinithwq is called with hwqattr-auxdepth != 0 and hwqattr-auxstride == 0. In that case, rounduppowoftwohwqattr-auxstride is...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Avoid memcpy field-spanning write warnings When the “storcli2 show” command is executed for eHBA-9600, the mpi3mr driver prints this warning message: memcpy: A field-spanning write size 128 was detected in the singl...
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: igb: Do not bring the device up after a non-fatal error The commit 004d25060c78 “igb: Fix igbdown hung on surprise removal” changed igbioerrordetected to ignore non-fatal pcie errors, in order to avoid tasks hanging that can occu...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: ocfs2: Free inode when ocfs2getinitinode fails The syzbot is reporting busy inodes after unmount, for commit 9c89fe0af826. “ocfs2: Handle error from dquotinitialize” forgot to call iput when newinode succeeded and dquotinitialize...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: xen/netfront: fixed a crash that occurred when removing a device. When removing a netfront device immediately after a suspend/resume cycle, it is possible that the queues have not been re-established, resulting in a crash during...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerabilities have been resolved: ksmbd: discard write access to the directory open The mayopen function does not allow a directory to be opened with write access. However, certain write flags set by clients result in adding write access on the server, making...
Astra Linux – Vulnerability in openjpeg2
A heap-based buffer overflow was detected in openjpeg, specifically at line 379:42 in color.c:420 when decompressing a specially crafted .j2k file. An attacker could exploit this vulnerability to execute arbitrary code with the permissions of the application compiled against openjpeg...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: rds: tcp: Fixed an issue where a use-after-free occurred in net in reqsktimerhandler. syzkaller reported a warning regarding the netns tracker 0, followed by KASAN, SPLAT 1, and another ref tracker warning 1. syzkaller was unable...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: Fixed an issue where the nftcountersenabled counter might underflow during the nftablesaddchain function. The syzbot reports that the nftcountersenabled counter might underflow at nftablesaddchain1. The issue...
Astra Linux – Vulnerability in Linux 5.10, Linux
In the Linux kernel, the following vulnerability has been resolved: ALSA: emu10k1: Fixed an out-of-bounds access in sndemu10k1pcmchannelalloc The voice allocator sometimes begins allocating from near the end of the array, and then wraps around. However, sndemu10k1pcmchannelalloc accesses the newl...
Astra Linux – Vulnerability in Linux
JIT compilers in the Linux kernel from version 5.11.12 have incorrect calculations of branch displacements, allowing them to execute arbitrary code within the kernel context. This issue affects the files arch/x86/net/bpfjitcomp.c and arch/x86/net/bpfjitcomp32.c...
Astra Linux – Vulnerability in Mariadb 10.3
It was discovered that MariaDB versions 10.2 to 10.7 contain a segmentation fault due to the component Exectimetracker::getloops/Filesorttracker::reportuse/filesort...
Astra Linux – Vulnerability in Chromium
Type confusion in Blink Layout in Google Chrome prior to 99.0.4844.51 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: PCI: hv: Fixed double calls to idafree in the hvpciprobe error path. If hvpciprobe fails after storing the domain number in hbus-bridge-domainNr, a call to free this domainNr is made via pciBusReleaseEmulDomainNr. However, during...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: gpio: sifive: Fix the refcount leak in sifivegpioprobe. The function ofirqfindparent returns a node pointer with the refcount incremented. We should use ofnodeput on it when it is no longer needed. Add ofnodeput to avoid the...
Astra Linux – Vulnerability in CGal
There are multiple code execution vulnerabilities in the Nef polygon-parsing functionality of CGAL libcgal CGAL-5.1.1. A specially crafted, malformed file can lead to an out-of-bounds read and type confusion, which may result in code execution. An attacker can provide malicious input to trigger a...
Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Cleaning up a dangling pointer on the bind error path The mtkdrmBind function may fail, in which case drmdevPut is called, destroying the drmdevice object. However, a pointer to that object was still being held by t...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: amdkfd: Using calloc instead of kzalloc to avoid integer overflow. This approach uses calloc instead of performing the multiplication operation, which might lead to integer overflow...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: Bluetooth: Fixed a memory leak in hcireqsyncComplete In the function hcireqsyncComplete, always free the previous sync request state before assigning a reference to a new one...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: bpf: Correctly track subprogram poke descriptors and fix use-after-free Subprograms call mappoketrack, but during program release, there is no hook to call mappokeuntrack. However, during program release, the auxiliary memory and...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: mptcp: never allow the PM to close a listener subflow Currently, when deleting an endpoint, the netlink PM traverses all local MPTCP sockets, regardless of their status. If an MPTCP listener socket is bound to the IP correspondin...
Astra Linux – Vulnerability in Chromium
Before version 89.0.4389.90, using Blink with a "after free" mechanism allowed a remote attacker to potentially exploit heap corruption through a crafted HTML page...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: mailbox: mchp-ipc-sbi: A bug that led to out-of-bounds access was fixed in the mchpipcgetclusteraggrirq function. The clustercfg array is dynamically allocated to hold per-CPU configuration structures. Its size is determined by t...
Astra Linux – Vulnerability in Linux 5.10, Linux
In the Linux kernel, the following vulnerability has been resolved: f2fs: fixed the sanity check on summary information As Wenqing Liu reported in bugzilla: https://bugzilla.kernel.org/showbug.cgi?id=216456 BUG: KASAN: use-after-free in recoverdata+0x63ae/0x6ae0 f2fs Read of size 4 at addr...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: cachefiles: Added missing lock protection when polling. Added missing lock protection in the poll routine when iterating the xarray. Otherwise, even with the RCU read lock held, only the slot of the radix tree is guaranteed to be...
Astra Linux – Vulnerability in Thunderbird
The Matrix JavaScript SDK is the Matrix Client-Server software development kit SDK for JavaScript. Prior to version 19.7.0, an attacker who cooperated with a malicious home server could interfere with the verification process between two users, substituting their own cross-signed user identity wi...
Astra Linux – Vulnerability in Linux 5.10, Linux
In the Linux kernel, the following vulnerabilities have been resolved: rxrpc: Fixed the issue where the listen function sets the backlog to too high for preallocation rings. The listen handler of AFRXRPC allows you to set the backlog to 32 if you increase the sysctl value. However, since the...
Astra Linux – Vulnerability in dojo
All versions of the dojo package are vulnerable to Prototype Pollution through the setObject function...
Astra Linux – Vulnerability in Thunderbird, Firefox
A website could have obscured the full-screen notification by using the file open dialog. This could have caused confusion among users and potentially led to spoofing attacks. This vulnerability affects Firefox 116, Firefox ESR 115.2, and Thunderbird 115.2...