18095 matches found
Astra Linux – Vulnerability in exiv2
Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An inefficient algorithm quadratic complexity was found in Exiv2 versions v0.27.3 and earlier. This inefficient algorithm occurs when Exiv2 is used to write metadata into a...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: sched/psi: The use of kernfs polling functions for PSI trigger polling was incorrect. Destroying the psitriggerdestroy in cgroupfilerelease causes a Use-After-Free UAF issue when a cgroup is removed from a polling process. This...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: xhci: sideband: do not dereference a freed ring when removing a sideband endpoint. xhcisidebandremoveendpoint incorrectly assumes that the endpoint is running and has a valid transfer ring. Lianqin reported a crash during...
Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: l2tp: Avoid possible recursive deadlock in l2tptunnelregister When a file descriptor of the pppol2tp socket is passed as a file descriptor of the UDP socket, a recursive deadlock occurs in l2tptunnelregister. This situation can b...
Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: xhci: dbc: Fixed a memory leak in xhciallocdbc If DbC is already in use, the memory allocated for the xhcidbc struct does not get freed before returning NULL, resulting in a memory leak...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: ftrace: Fix recursive locking directmutex in ftracemodifydirectcaller Naveen reported recursive locking of directmutex with sample ftrace-direct-modify.ko: 74.762406 WARNING: possible recursive locking detected 74.762887 6.0.0-rc...
Astra Linux – Vulnerability in ffmpeg
A denial-of-service vulnerability exists in FFmpeg 4.2 due to a memory leak in the ffv4l2m2mcreatecontext function in v4l2m2m.c...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: smb: server: The use of smbdirectsocketrecvio.credits.available has been removed. The logic for managing recv credits by counting posted recvio and granted credits is flawed. This is because the peer might have already consumed a...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: mlx5: Fixed a leak in skb during fifo resync and push operations. During the ptp resync operation, SKBs were popped from the fifo, but they were never freed either by napiconsume or by devkfreeskbany. Added a call to...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: Bluetooth: hciconn: now returns ERRPTR instead of NULL when there is no link. Currently, hciconnectsco returns NULL when there is no link i.e., when hciconnlink returns NULL. scoconnect expects ERRPTR in case of any error see...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: f2fs: Synchronize atomic write aborts To address the race condition between atomic write aborts, I use the inode lock and ensure that the COW inode can be reused throughout the entire lifetime of the atomic file inode...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: slab: Avoid race conditions in allocslabobjexts. If two competing threads enter allocslabobjexts, and one of them fails to allocate the object extension vector, it may override the valid slab-objexts allocated by the other thread...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: vmwballoon: Indicates success when effectively deflating during migration. When migrating a balloon page, we first deflate the old page, and then inflate the new page. However, if inflating the new page succeeds, we effectively...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: UDP: Calling skborphan before skbattemptdeferfree The standard UDP receive path does not use skb-destructor. However, the skmsg layer does use it, as it calls skbsetownersksafe from udpreadskb. This triggers the following warning...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: Wifi: mt76: mt7996: fixed null pointer dereference in mt7996conftx If a link does not have an assigned channel yet, mt7996viflink returns NULL. We still need to store the updated queue settings in that case and apply them later...
Astra Linux – Vulnerability in assimp
A issue was discovered with assimp 5.1.4. A use after free error occurred in the function ColladaParser::ExtractDataObjectFromChannel in the file /code/AssetLib/Collada/ColladaParser.cpp...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: ipc: mqueue: A possible memory leak has been fixed in initmqueuefs. The commit number is db7cfc380900 „ipc: Free mqsysctls if ipc namespace creation failed“. This is a similar memory leak to the one fixed by the above patch. The...
Astra Linux – Vulnerability in Linux
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: gpio: mpsse: ensure worker is torn down. When an IRQ worker is running, unplugging the device could cause a crash. The hardware at the sealevel level for which this driver was written was not hotpluggable; therefore, I wasn’t awa...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: ceph: Do not propagate page array placement errors as batch errors When fscrypt is enabled, movedirtyfolioinpagearray may fail because it needs to allocate bounce buffers to store the encrypted versions of each folio. Each folio...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: mm/damon/core: The clearwalkcontrol function operates on an inactive context in damoswalk. damoswalk sets ctx-walkcontrol to the control structure provided by the caller before checking whether the context is running. If the...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: Memory: mtk-smi – fixed device leaks during the common probe. Make sure to remove the references made when checking the SMI device during a common probe after a late probe failure e.g., probe deferral, as well as during driver...
Astra Linux – Vulnerability in node-es5-ext
es5-ext contains ECMAScript 5 extensions. Passing functions with very long names or complex default argument names into functioncopy or functiontoStringTokens may cause the script to stall. This vulnerability has been fixed in v0.10.63...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: PCI/P2PDMA: Fixed the warning condition in p2pmemallocmmap The commit b7e282378773 has already changed the initial page refcount of p2pdma from one to zero. However, in p2pmemallocmmap, it uses “VMWARNONONCEPAGE!pagerefcountpage”...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: ovpn: TCP – Do not dereference NULL from sksocket after tcpclose. When deleting a peer due to the expiration of the keepalive interval, the peer is removed from the OpenVPN hashtable and temporarily inserted into a “release list”...
Astra Linux – Vulnerability in f2fs-tools
There is an exploitable information disclosure vulnerability in the getdnodeofdata functionality of the F2fs-Tools F2fs.Fsck 1.13. A specially crafted f2fs filesystem can lead to information disclosure. An attacker can provide a malicious file that triggers this vulnerability...
Astra Linux – Vulnerability in Parsec
The vulnerability of the parselevcat function in the PARSEC security subsystem is related to the use of memory after it is freed. Exploiting this vulnerability allows an attacker to cause a service failure...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: “hungtask”: fixed warnings caused by unaligned lock pointers. The blocker tracking mechanism assumes that lock pointers are at least 4-byte aligned, so that their lower bits can be used for type encoding. However, as reported by...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: cpufreq: amd-pstate: fixed the global sysfs attribute type. In commit 3666062b87ec “cpufreq: amd-pstate: move to use busgetdevroot”, the “amdpstate” attributes were moved from a dedicated kobject to the root kobject. While the...
Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: bpf: Fixed reference state management for synchronous callbacks Currently, the verifier verifies callback functions both synchronous and asynchronous as if they would be executed only once. The next instruction to be explored ...
Astra Linux – Vulnerability in edk2
The Ubuntu edk2 UEFI firmware packages accidentally allowed access to the UEFI Shell in Secure Boot environments, potentially enabling bypass of Secure Boot restrictions. Versions 2024.05-2ubuntu0.3 and 2024.02-2ubuntu0.3 disable the Shell. Some earlier versions introduced a security measure base...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: pinctrl: freescale: Fixed a memory out-of-bounds issue when numconfigs is 1. The configuration passed in by padwakeup is set to 1 when numconfigs is 1. In this case, Configuration 1 should not be retrieved, which will be detected...
Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: drm/amd: Fixed an out-of-bounds error in the BIOS parser. The array size is hardcoded to 8 in atomfirmware.h, but sometimes the firmware uses a larger array size. Dereferencing the larger array causes an out-of-bounds error. T...
Astra Linux – Vulnerability in libmysofa
Incorrect handling of input data in the loudness function of the libmysofa library in versions 0.5 to 1.1 can lead to heap buffer overflows and access to unallocated memory blocks...
Astra Linux – Vulnerabilities in Linux, Linux-5.15, Linux-5.10
In the Linux kernel, the following vulnerability has been resolved: ext4: A bug has been fixed in ext4mbreleasegrouppa. If a malicious fuzzer overwrites the ext4 superblock while it is mounted, causing sfirstdatablock to be set to a very large number, the calculation of the block group may...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: “comedi: runflags cannot determine whether to reclaim chanlist” The syzbot reported a memory leak 1. This was because commit 4e1da516debb “comedi: Add reference counting for Comedi command handling” did not account for the...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: mmc: vub300 – Fix for use-after-free when disconnecting. The vub300 driver maintains a explicit reference count for the controller and its driver data. In theory, this reference count can be dropped after the driver is unbound...
Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: drm/panel/panel-sitronix-st7701: Remove the panel when DSI attachment fails. In the event that mipidsiattach fails, call drmpanelremove to avoid a memory leak...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: exfat: Fixed the divide-by-zero issue in exfatallocatebitmap. The variable maxracount can be 0 in exfatallocatebitmap. This can cause a divide-by-zero error in the subsequent modulo operation i % maxracount, resulting in a system...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: ASoC: q6afe-clocks: fixed the issue of reprobing of the driver. The q6afe-clocks driver may experience reprobing situations. For example, if the APR services are restarted after a firmware crash. However, currently, the...
Astra Linux – Vulnerability in Parsec
The vulnerability of the psaud utility within the PARSEC security subsystem is related to improper memory release after its use. Exploiting this vulnerability allows an attacker to cause a service failure...
Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: rapidio: devices: fixed the issue where putdevice was missing in mportcdevopen. When kfifoalloc fails, the reference count of chdev-dev remains incremented. We should use putdevice&chdev-dev to decrement the reference count of...
Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: objtool: Fixed the SEGFAULT issue. findinsn: This function will return NULL in case of failure. Check the insn order to avoid a kernel error due to NULL pointer dereferencing...
Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: GPU: lontium-lt9611: Fixed a NULL pointer dereference in lt9611connectorinit. A NULL check on bridge-encoder indicates that it may be NULL, but it has already been dereferenced on all paths leading to the check. 812: if...
Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: Regulator: Core: Fix for unbalanced node refcount in regulatordevlookup The following report was received: ERROR: Memory leak; expected refcount 1 instead of 2. Unbalanced in ofnodeget/ofnodeput – destroyed cset entry: Attaching...
Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: perf/armdmc620: Fixed the hotplug callback leak in dmc620pmuinit. The dmc620pmuinit function does not remove the callback added by cpuhpsetupstatemulti when platformdriverregister fails. The callback must be removed by...
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: cifs: Fixed the error in the length of the VALIDATENEGOTIATEINFO message. The commit code d5c7076b772a includes the following changes: - Added smb3.1.1 to the default dialect list. - Extended the number of dialects from 3 to 4. -...
Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: mmc: alcor: fixed the return value check in mmcaddhost The mmcaddhost function may return an error. If we ignore its return value, the memory allocated in mmcallochost will be leaked, leading to a kernel crash due to the remov...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: fbdev: imxfb: Unnecessary releasememregion has been removed. The unnecessary releasememregion was removed from the error path to prevent the memregion from being released twice, which could lead to resource leaks or other...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: pinctrl: pinconf-generic: Fixed a memory leak in pinconfgenericParseDtconfig In pinconfgenericParseDtconfig, if parseDtCfg fails, it returns directly. This bypasses the cleanup logic, resulting in a memory leak of theCfg buffer...