18095 matches found
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: usbnet: ipheth: Fixed the DPE OoB read issue. A buffer-overflow vulnerability related to DPE reads has been addressed. The number of DPEs processed is limited to the amount that fits within the fixed-size NDP16 header...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: ksmbd: A use-after-free issue was fixed in ksmbdsessionsderegister. In multi-channel mode, a UAF Use-After-Free issue can occur in sessionderegister, when the second channel establishes a session through the connection of the fir...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: fs/9p: Fixed the issue of NULL pointer dereferencing when using mkdir. When a 9p tree was mounted with the posixacl option, the parent directory had a default ACL set for its subdirectories. For example: setfacl -m...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Integer overflow has been prevented in hdrfirstde. The variables deoff and used originate from the disk; therefore, both need to be checked. The issue arises on 32-bit systems, where if both values are greater than...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: fs/ntfs3: Fixed a couple of integer overflows on 32-bit systems. On 32-bit systems, the addition of “off + sizeofstruct NTFSDE” can lead to an integer wrapping issue. This issue was fixed by using sizeadd...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: RDMA/mlx5: Fixed overflow of the pagesize variable All variables storing the result of mlx5umemmkcfindbestpgsz have been changed to unsigned long to support values larger than 31 and to avoid overflow. For example, if we try t...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerabilities have been resolved: ipvlan: Ensure that the network headers are in the skb linear part. syzbot found that ipvlanprocessv6outbound assumes that the IPv6 network header isis present in skb-head 1. Add the necessary pskbnetworkmaypull calls for both...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: idpf: fixed checksums set in idpfrxrsc idpfrxrsc uses skbtransportoffsetskb when the transport header is not yet set. This triggers the following warning in builds with CONFIGDEBUGNET=y:...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxtre: Added sanity checks for the validity of rdev. There is a possibility that callbacks for ulpirqstop and ulpirqstart will be called when the device is in a detached state. This could lead to a crash due to NULL pointer...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: drm/imagination: avoided deadlock on fence release The processing of fence release in the scheduler queue is performed on a workqueue, rather than directly in the release function itself. Deadlock issues have been fixed, such ...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: hwpoison, memoryhotplug: lock folio before unmap hwpoisoned folio Commit b15c87263a69 “hwpoison, memoryhotplug: allow hwpoisoned pages to be offline” adds page poisoning checks in domigraterange, in order to make offline hwpoison...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fixed the null check for pipectx-planestate in resourcebuildscalingparams A null pointer dereference issue could occur when pipectx-planestate is null. The fix adds a check to ensure that ‘pipectx-planestate’ is...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: pcigeneric: Use pcitryresetfunction to avoid deadlock. There are multiple places where the recovery work is scheduled asynchronously. Additionally, there are multiple places where the caller waits synchronously fo...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: eth: bnxt: Fixed the truesize for the mb-xdp-pass case. When mb-xdp is set and return is XDPPASS, the packet is converted from xdpbuff to skbuff using xdpupdateskbsharedinfo in bnxtxdpbuildskb. However, bnxtxdpbuildskb passes an...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: openvswitch: Use RCU protection in ovsvportcmdfillinfo. ovsvportcmdfillinfo can be called without RTNL or RCU. Use RCU protection and devnetrcu to avoid potential UAF Use-After-Free errors...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: schedext: Corrected the detection of incorrect autogroup migrations. The scxmovetask function is called from schedmovetask, and it informs the BPF scheduler that a cgroup migration is being performed. schedmovetask is used for bo...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: batman-adv: fixed a panic that occurred during the removal of an interface. Reference counting is used to ensure that batadvhardifneighnode and batadvhardiface are not freed before/during the completion of...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerabilities have been resolved: vxlan: Check the return value of vxlanvnigroupinit. vxlaninit must check the success of vxlanvnigroupinit; otherwise, a crash may occur later, as detected by syzbot. Oops: General protection fault, likely due to a non-canonica...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: cpufreq/amd-pstate: Fixed the ref counting in cpufreqpolicy. The function amdpstateupdatelimits takes a reference to cpufreqpolicy, but does not decrement the reference count during one of the exit paths. This issue has been fixe...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: mm/migratedevice: Do not add the “folio” to be freed to the LRU list during migratedevicefinalize. If the migration succeeds, we call foliomigrateflags-memcgroupmigrate to migrate the memcg from the old to the new “folio”. This...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: tee: optee: Fix supplicant wait loop The OP-TEE supplicant is a user-space daemon, and it is possible for it to be hung, crashed, or terminated mid-processing an OP-TEE RPC call. This issue becomes more complex when there is...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: vxlan: vnifilter: Fixed the issue where the default FDB entry was deleted without holding the hash lock. When a VNI is deleted from a VXLAN device in ‘vnifilter’ mode, the FDB entry associated with the default remote assuming one...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: ASoC: codecs: wcd937x: fixed a potential memory leak in wcd937xsoccodecprobe. When sndsocdapmnewcontrols or sndsocdapmaddroutes fails, wcd937xsoccodecprobe returns without releasing ‘wcd937x-clshinfo’, which is allocated by...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerabilities have been resolved: ipvs: fixed the uninit-value for saddr in dooutputRoute4. The syzbot reports an issue with the uninit-value of the saddr argument 1. The commit 4754957f04f “ipvs: do not use a random local source address for tunnels” already...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: Staging: bcm2835-camera: Initialize dev in v4l2dev. The commit 42a2f6664e18 “Staging: vc04services: Move global gstate to vchiqstate”” changed mmalinit to pass dev-v4l2dev.dev to vchiqmmalinit. However, nothing was initialized...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: scsi: smartpqi: Use iskdumpkernel to check for kdump. The smartpqi driver checks the resetdevices variable to determine whether any special adjustments are needed for kdump. This results in the following behavior: After a regular...
Astra Linux – Vulnerability found in Linux 6.1, Linux 5.15, and Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: wifi: brcm80211: fmac: Error handling was added for the brcmfusbdlwriteimage function. The brcmfusbdlcmd function calls brcmf80211, but it does not check its return value. If the brcmfusbdlcmd function fails, the state.state and...
Astra Linux – Vulnerability found in Linux 6.1, Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: parisc: Fixed double SIGFPE crashes Camm noticed that on parisc, a SIGFPE exception could cause an application to crash due to a second SIGFPE occurring in the signal handler. Dave analyzed this issue, and it occurs because...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: netsched: hfsc: Address reentrant enqueue adding class to eltree twice Savino says: “We are writing to report that this recent patch 141d34391abbb315d68556b7c67ad97885407547 1 can be bypassed, and a UAF can still occur when HFSC ...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: Prevention of division by zero The user can set any speed value. If the speed is greater than UINTMAX/8, a division by zero is possible. Found by the Linux Verification Center linuxtesting.org with SVACE...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: Prevention of division by zero The user can set any speed value. If the speed is greater than UINTMAX/8, a division by zero is possible. Found by the Linux Verification Center linuxtesting.org with SVACE...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: net: mctp: Set SOCKRCUFREE The Bind lookup operation is executed under RCU; therefore, ensure that a socket does not disappear during the middle of a lookup operation...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: spi: spi-imx: Added a check for the return value of spiimxsetupxfer. The function pointers spiimx-rx and spiimx-tx can be NULL when spiimxsetupxfer returns an error, and NULL pointers should not be dereferenced. It is not possibl...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: pm: cpupower: bench: Prevent NULL dereference on malloc failure If malloc returns NULL due to insufficient memory, the ‘config’ pointer can also become NULL. A check should be added to prevent NULL dereferencing...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: nfsd: The value of sccount is decreased directly if the dlrecall queue operation fails. A deadlock warning occurred when invoking nfs4putstid after a failed dlrecall queue operation: T1 T2 nfs4laundromat nfs4getclientreaplist...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: prevents a hang during link training failure. Why When link training fails, the phy clock will be disabled. However, in “enablestreams”, it is assumed that link training was successful, and the mux selects the ph...
Astra Linux – Vulnerability found in Linux 6.1, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: bnxten: Fixed an out-of-bound memcpy call during ethtool -w When retrieving the FW core dump using ethtool, memory corruption can sometimes occur. BUG: KFENCE: Memory corruption in bnxtgetcoredump+0x3ef/0x670 bnxten Corrupted...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Avoid buffer overflow attacks in the smusyssetpptable function. If a malicious user provides a smaller pptable through sysfs, followed by a larger one, it may lead to a buffer overflow attack in the smusyssetpptable...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: fbdev: omap: use threaded IRQ for LCD DMA When using touchscreens and framebuffers, the Nokia 770 easily crashes due to the following issue: BUG: scheduling while atomic: irq/144-ads7846/82/0x00010000 Linked modules include:...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: ASoC: SOF: ipc4-topology: Strengthening the loops for querying ALH copiers Other non-DAI copier widgets may have the same stream name sname as the ALH copier. In that case, copier-data will be NULL, and no alhdata will be...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: isofs: Prevention of using too small fid values. syzbot reported a slab-out-of-bounds read in isofsfhtoparent. 1 The handlebytes value passed by the reproducing program is equal to 12. In handletopath, only 12 bytes of memory...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15
In the Linux kernel, the following vulnerabilities have been resolved: i2c: cros-ec-tunnel: defer probe if parent EC is not present When i2c-cros-ec-tunnel and the EC driver are built-in, the EC parent device will not be found, leading to a NULL pointer dereference. This issue can also be...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: fbdev: omapfb: Added a check for the value “plane”. The function dispcovlsetup is not intended to work with the value OMAPDSSWB of the plane enum parameter. The value of this parameter is initialized in dssinitoverlays, and in th...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Synchronous access between the reset thread and the TM thread for reply queues. When the task management thread processes reply queues while the reset thread resets them, the task management thread accesses an inval...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: aspeed: A NULL pointer check was added in astvhubinitdev. The variable d-name, returned by devmkasprintf, could potentially be NULL. A pointer check was added to prevent potential NULL pointer dereferencing. This is...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: irqchip/qcom-mpm: This issue prevents crashes when attempting to handle non-wake GPIOs. On Qualcomm chipsets, not all GPIOs are wake-up capable. These GPIOs do not have a corresponding MPM pin and should not be handled within the...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: sched: A potential NULL pointer dereferencing issue exists in the GRED scheduler. If kzalloc in gredinit returns a NULL pointer, the code follows the error handling path and invokes greddestroy. This, in turn, calls gredoffload,...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: ice: Fixed a memory leak in aRFS after reset. The memory leak in aRFS structures was fixed by adding a check to verify whether the aRFS memory has already been allocated during VSI configuration. aRFS objects are allocated in two...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: NULL-check of BO’s backing stores when determining GFX12 PTE flags PRT BOs may not have any backing store; therefore, bo-tbo.resource will be NULL. Check for this before dereferencing. Selected from commit...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: ipvs: fixed an undefined behavior due to uninitialized stack access in ipvsprotocolinit. Under certain kernel configurations when building with Clang/LLVM, the compiler does not generate a return or jump as the terminator...