18102 matches found
Astra Linux – Vulnerability in Apache2
A properly crafted method sent via HTTP/2 will bypass validation and be forwarded by modproxy, which can lead to request splitting or cache poisoning. This issue affects Apache HTTP Server versions 2.4.17 to 2.4.48...
Astra Linux – Vulnerability in Linux, Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Immediately reset the MMU context when the SMM flag is cleared The MMU context must be reset immediately when the SMM flag of the vCPU is cleared, so that the SMM flag in the MMU context is always synchronized with the...
Astra Linux – Vulnerability in Linux
In the Linux kernel, the following vulnerabilities have been resolved: NFC: nci: fixed a memory leak in nciallocatedevice The nfcmrvldisconnect function fails to free the hcidev field in the struct ncidev. This issue was fixed by freeing hcidev in ncifreedevice. BUG: Memory leak Unreferenced obje...
Astra Linux – Vulnerability in Linux
In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: A sysfs leak was fixed in allociommu. The iommudevicesysfsadd function is called before this, so it must be cleaned up in subsequent errors...
Astra Linux – Vulnerability in Linux
In the Linux kernel, the following vulnerability has been resolved: iio: adc: ad7124 – Fixed a potential overflow issue due to non-sequential channel numbers. Channel numbering must start at 0, and there should be no gaps between channels. Otherwise, it’s possible to exceed the available storage...
Astra Linux – Vulnerability in Linux
In the Linux kernel, the following vulnerabilities have been resolved: NFS: Fixed an incorrect limit in the filelayoutdecodelayout function. The value of sizeofstruct nfsfh is two bytes too large, which could lead to memory corruption. The correct value should be NFSMAXFHSIZE, as that is the size...
Astra Linux – Vulnerability in Linux
In the Linux kernel, the following vulnerability has been resolved: drm/meson: fixed the crash that occurs during shutdown when the component is not probed. When the main component is not probed—for example, when the dw-hdmi module is not yet loaded or in a probe defer state—the following crash...
Astra Linux – Vulnerability in Linux
In the Linux kernel, the following vulnerability has been resolved: net: dsa: mt7530: Fix VLAN traffic leaks The PCRMATRIX field was set to all 1’s when VLAN filtering is enabled, but it wasn’t reset when VLAN filtering was disabled. This could lead to traffic leaks: ip link add br0 type bridge...
Astra Linux – Vulnerability in Linux
In the Linux kernel, the following vulnerability has been resolved: Net layer: dsa: fixed a crash that occurs when -getssetcount fails. If ds-ops-getssetcount fails, the “count” value becomes negative, resulting in error codes like -EOPNOTSUPP. Since “i” is a unsigned int, the negative error code...
Astra Linux – Vulnerability in Linux
In the Linux kernel, the following vulnerability has been resolved: i2c: i801: Do not generate an interrupt during bus reset. Now that the i2c-i801 driver supports interrupts, setting the KILL bit in an attempt to recover from a timed-out transaction triggers an interrupt. Unfortunately, the...
Astra Linux – Vulnerability in Linux
In the Linux kernel, the following vulnerabilities have been resolved: mld: Fixed a panic that occurred in mldnewpack. mldnewpack does not allow for the allocation of higher-order pages; only order-0 allocations are allowed. If the headroom size is too large, a kernel panic may occur in skbput...
Astra Linux – Vulnerability in Linux
In the Linux kernel, the following vulnerability has been resolved: net: lantiq – Fix for memory corruption in the RX ring. In situations where memory allocation or DMA mapping fails, an invalid address may be programmed into the descriptor. This can lead to memory corruption. If memory allocatio...
Astra Linux – Vulnerability in Linux
In the Linux kernel, the following vulnerability has been resolved: PID: Taking a reference when initializing cadpid During boot, kernelinitfreeable initializes cadpid to the struct pid of the init task. Later, we may change cadpid via sysctl. When this happens, procdocadpid will increment the...
Astra Linux – Vulnerability in Linux
In the Linux kernel, the following vulnerability has been resolved: ocfs2: Fixed data corruption caused by fallocate. When fallocate creates holes in the inode size, if the original size is located in the middle of the last cluster, then the portion of the block from the original size to the end ...
Astra Linux – Vulnerability in Linux
In the Linux kernel, the following vulnerability has been resolved: x86/kvm: Disabling kvmclock on all CPUs during shutdown Currently, we disable kvmclock through the machineshutdown hook, and this only applies to the boot CPU. We need to disable it for all CPUs to prevent memory corruption,...
Astra Linux – Vulnerability in Linux
In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: avoid overflows in nfthashbuckets The number of buckets being stored in 32-bit variables requires ensuring that no overflows occur in nfthashbuckets. syzbot injected a size == 0x40000000 and reported: UBSAN:...
Astra Linux – Vulnerability in Linux
In the Linux kernel, the following vulnerability has been resolved: userfaultfd: The page is released in the error path to avoid BUGON. Consider the following sequence of events: 1. The userspace sends a UFFD ioctl, which ultimately calls shmemmfillatomicpte. We successfully account the blocks, a...
Astra Linux – Vulnerability in Linux
In the Linux kernel, the following vulnerabilities have been resolved: nbd: Fixed NULL pointer in flushworkqueue Open /dev/nbdX first; the configrefs will be 1, and the pointers in nbddevice remain null. Disconnect /dev/nbdX, then reference a NULL recvworkq. The protection provided by configrefs ...
Astra Linux – Vulnerability in Linux
In the Linux kernel, the following vulnerability has been resolved: perf/core: Fixed the unconditional use of the securitylockeddown function. Currently, the lockdown state is queried unconditionally, even though its result is only used if the PERFSAMPLEREGSINTR bit is set in attr.sampletype. Whi...
Astra Linux – Vulnerability in Linux
In the Linux kernel, the following vulnerability has been resolved: mmc: uniphier-sd: A resource leak has been fixed in the remove function. A call to tmiommchostfree is missing from the remove function. This is to balance the call to tmiommchostalloc in the probe. This issue occurs in the error...
Astra Linux – Vulnerability in Linux
In the Linux kernel, the following vulnerabilities have been resolved: cifs: Return the correct error code from smb2getenckey Avoid a warning if the error is passed back up: 440700.376476 CIFS VFS: \otters.example.com cryptmessage: Could not get encryption key 440700.386947 ------------ Cut here...
Astra Linux – Vulnerability in Linux
In the Linux kernel, the following vulnerability has been resolved: virtiofs: fixed a memory leak in virtiofsprobe When the same tag was accidentally passed twice to qemu, kmemleak ended up reporting a memory leak in virtiofs. Additionally, looking at the log, I noticed the following error which...
Astra Linux – Vulnerability in Linux
In the Linux kernel, the following vulnerabilities have been resolved: media: staging/intel-ipu3: Fixed error handling for setfmt operations. If an error occurs during the setfmt operation, do not overwrite the previous sizes with the invalid configuration. Without this patch, v4l2-compliance wil...
Astra Linux – Vulnerability in Linux
In the Linux kernel, the following vulnerabilities have been resolved: locking/qrwlock: Fixed the ordering in queuedwritelockslowpath While this code is executed with waitlock held, a reader can acquire the lock without holding waitlock. The writer side loops checking the value using...
Astra Linux – Vulnerability in Linux
In the Linux kernel, the following vulnerabilities have been resolved: ARM: footbridge: fixed PCI interrupt mapping Since commit 30fdfb929e82 "PCI: added a call to pciassignirq in pcideviceprobe", the PCI code will call the IRQ mapping function whenever a PCI driver is probed. If these functions...
Astra Linux – Vulnerability in Linux
In the Linux kernel, the following vulnerability has been resolved: i2c: img-scb – fixed a reference leak when pmruntimegetsync fails. The PM reference count is not expected to be incremented upon a return from the functions imgi2cxfer and imgi2cinit. However, pmruntimegetsync will still incremen...
Astra Linux – Vulnerability in Linux
In the Linux kernel, the following vulnerability has been resolved: i2c: sprd: fixed a reference leak when pmruntimegetsync fails. The PM reference count is not expected to be incremented upon returning from sprdi2cmasterxfer and sprdi2cremove. However, pmruntimegetsync will still increment the P...
Astra Linux – Vulnerability in Jetty9
In Eclipse Jetty 9.4.6.v20170531 to 9.4.36.v20210114 inclusive, as well as 10.0.0 and 11.0.0, when Jetty handles a request containing multiple Accept headers with a large number of “quality” i.e., q parameters, the server may enter a Denial-of-Service DoS state due to high CPU usage in processing...
Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1
In the Linux kernel, the following vulnerabilities have been resolved: gtp: Fixed use-after-free and null-ptr-deref issues in gtpnewlink. The gtplinkops operation structure for the subsystem must be registered after registering the gtpnetops pernet operation structure. Syzkaller encountered a...
Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1
In the Linux kernel, the following vulnerability has been resolved: Wifi: mac80211 – A race condition has been fixed when enabling fast-xmit. fast-xmit must only be enabled after the station has been uploaded to the driver. Otherwise, it might pass the yet-to-be-uploaded station through drvtx cal...
Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1
In the Linux kernel, the following vulnerability has been resolved: fbdev: savage: An error will occur if pixclock equals zero. The user-space program can pass any value to the driver through the ioctl interface. If the driver does not check the value of pixclock, a divide-by-zero error may occur...
Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1
In the Linux kernel, the following vulnerability has been resolved: ext4: Avoid allocating blocks from a group with a corrupted block bitmap in ext4mbtrybestfound. Determine whether the group block bitmap is corrupted before using acbex in ext4mbtrybestfound to prevent allocating blocks from a...
Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1
In the Linux kernel, the following vulnerability has been resolved: dm-crypt: Do not modify the data when using authenticated encryption. It was stated that authenticated encryption could produce invalid tags when the data being encrypted was modified 1. Therefore, this issue can be addressed by...
Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1
In the Linux kernel, the following vulnerabilities have been resolved: gtp: Fixed use-after-free and null-ptr-deref issues in gtpgenldumppdp. The gtpnetops pernet operations structure for the subsystem must be registered before registering the generic netlink family. Syzkaller encountered a...
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: USB: Roles – Fixed NULL pointer issue when referencing the module’s reference. In the current design, the USB role class driver will obtain a reference to the module of the usbroleswitch object after the user selects the...
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: RDMA/srpt: Support for specifying the srptserviceguid parameter. The current behavior is that setting this parameter while loading the ibsrpt kernel module triggers a kernel crash. BUG: Kernel NULL pointer dereferencing, address:...
Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1
In the Linux kernel, the following vulnerability has been resolved: arp: Prevent overflow in arpreqget. Syzkaller reported an overflow during the write operation in arpreqget. 0 When the ioctlSIOCGARP function is called, arpreqget retrieves a neighbor entry and copies neigh-ha to struct...
Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1
In the Linux kernel, the following vulnerability has been resolved: ext4: Fixed a double-free of blocks due to incorrect movedlen values during extent movements. In ext4moveextents, movedlen is updated only when all movements are successfully executed. It also discards preallocations for originod...
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: sr9800: Added a check for usbnetgetendpoints. Added a check for usbnetgetendpoints and returned an error if it fails, in order to transfer the error...
Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1
In the Linux kernel, the following vulnerability has been resolved: phy: ti: phy-omap-usb2: Fixed NULL pointer dereferencing for SRP. If the external PHY working together with phy-omap-usb2 does not implement sendsrp, we may still attempt to call it. This can occur on an idle Ethernet device that...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15
A race condition was detected in the Linux kernel’s media/xc4000 device driver, specifically in the xc4000getfrequency function. This can lead to a return value overflow issue, potentially causing malfunctions or denial-of-service problems...
Astra Linux – Vulnerability found in Linux 6.1, Linux 5.15, Linux 5.10
Integer overflow or wrap-up vulnerability in the Linux kernel on Linux, x86, and ARM md, raid, raid5 modules allows for forced integer overflow...
Astra Linux – Vulnerability found in Linux 5.15, Linux 6.1
The Cross-Privilege Spectre v2 vulnerability allows attackers to bypass all deployed mitigations, including the recently introduced FineIBT, and to leak arbitrary Linux kernel memory on Intel systems...
Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1
A flaw was discovered in the Linux kernel’s NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packets when using NVMe over TCP. This can lead to the NVMe driver dereferencing a NULL pointer, resulting in kernel panic and a denial of service...
Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1
A flaw was discovered in the Linux kernel’s NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packets when using NVMe over TCP. This can lead to the NVMe driver dereferencing a NULL pointer, resulting in kernel panic and a denial of service...
Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1
A flaw was discovered in the Linux kernel’s NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packets when using NVMe over TCP. This can lead to the NVMe driver dereferencing a NULL pointer, resulting in kernel panic and a denial of service...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: drm/tegra: dsi: Added a check for the return value of offinddevicebynode. Added a check on the return value of offinddevicebynode, and return an error if it fails, in order to avoid NULL pointer dereferencing...
Astra Linux – Vulnerability in Linux 6.1, Linux, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: KVM: s390: vsie: fix race condition during shadow creation Currently, it is possible to encounter a crash when kvms390vsiegmapnotifier is called, with gmap-private being set to zero. This issue arises because we add gmap-private ...
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: PM / devfreq: Synchronize devfreqmonitorstart/stop There is a risk that frequent changes to the governor, performed in a loop, may lead to corruption of the timer list. Specifically, the timer cancellation process, which occurs...
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: disallow timeout for anonymous sets These parameters have never been used in the user space; therefore, disallow them...