18095 matches found
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: NFSD: Initialize the struct nfsd4copy earlier. Ensure that the refcount and asynccopies fields are initialized early. The cleanupasynccopy function will reference these fields if an error occurs in nfsd4copy. If these fields are...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: The inode is marked as “bad” as soon as an error is detected using the mienumattr function. The interface of the miEnumAttr function was extended by adding an additional parameter, struct ntfsinode ni. This allows the...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Marking hrtimers to expire in hard interrupt context Similar to commits 2c0d278f3293f “KVM: LAPIC: Marking hrtimers to expire in hard interrupt context” and 9090825fa9974 “KVM: arm/arm64: Letting timers expire in...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: net: stmmac: fixed an issue where TSO DMA API usage caused errors. Commit 66600fac7a98 “net: stmmac: TSO: Fixed unbalanced DMA map/unmap for non-paged SKB data” corrected the assignment of members of txskbuffdma to a later...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: smb: Initialize cfid-tcon before performing network operations. Avoid leaking a reference to tcon when a lease-break operation occurs while opening the cached directory. Processing this operation might result in a failure to...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: cachefiles: Added missing lock protection when polling. A missing lock protection was added to the poll routine when iterating the xarray. Otherwise, even with the RCU read lock held, only the slot of the radix tree is guaranteed...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: spi: microchip-core: Ensure that the TX and RX FIFOs are empty at the start of a transfer. When transmitting with rxlen == 0, the RX FIFO will not be emptied in the interrupt handler. As a result, the next transfer might read dat...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: tracing/osnoise: Use a cpumask to determine which threads are kthreads. The startkthread and stopthread functions were not always called with the interfacelock held. This means that the kthread variable could be unexpectedly...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: codetag: debug: marking codetags for poisoned pages as empty When PGhwpoison pages are freed, they are treated differently in freepagesprepare. Instead of being released, they are isolated. The page allocation tag counters are...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: Networks: Ethernet; Device: am65-cpsw; Issue: NULL dereference during XDPTX. If the number of TX queues is set to 1, a NULL pointer dereference occurs during XDPTX. ethtool -L eth0 tx 1 ./xdp-trafficgen udp -A -a eth0 -t 2...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: Wifi: rtw89: Fix for soft lockup in rtw89entityrecalcmgntroles. During rtw89entityrecalcmgntroles, there is a normalization process that will reorder the list if an entry with the target pattern is found. Once such an entry is...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: iouring: prevents reg-wait speculation. By using ENTEREXTARGREG instead of passing a user pointer along with arguments for the waiting loop, the user can specify an offset within a pre-mapped region of memory. In this case, offse...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Fixed a deadlock during uvcprobe If uvcprobe fails, it may end up calling uvcstatusunregister before uvcstatusinit is called. This issue was fixed by checking whether dev-status is NULL during uvcstatusunregister...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: drm/fbdev-dma: Added shadow buffering for deferred I/O. DMA areas are not necessarily backed by struct page, so we cannot rely on it for deferred I/O. Allocate a shadow buffer for drivers that require deferred I/O and use it a...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: vmxnet3: Packet corruption occurred in vmxnet3xdpxmitframe. Andrew and Nikolay reported connectivity issues with Cilium’s service load-balancing in the case of vmxnet3. If a BPF program for native XDP adds an encapsulation header...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: vsock/bpf: Return early if the transport is not assigned. Some of the core functions can only be called if the transport has been assigned. As Michal reported, a socket may have NULL as the transport value, for example after a...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: btrfs: Added missing error handling inside the getcanonicaldevpath function. Inside the getcanonicaldevpath function, we call dpath to obtain the final device path. However, dpath may return an error. In such cases, the next call...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: thermal-netlink: Prevent userspace segmentation faults by adjusting the UAPI header. The intel-lpmd tool 1, which uses the THERMALGENLATTRCPUCAPABILITY attribute to receive HFI events from the kernel space, encounters a...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: In mm: hugememory, there was a issue where the function mappinglargefoliosupport was misused for anonymous folios. When I conducted a split test involving large folios, a warning was triggered: “5059.122759T166 Cannot split file...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: Wifi: ath12k – Fix for kernel crash during resume Currently, during resume, the QMI target memory is not handled properly. This results in a kernel crash if DMA remap is not supported: BUG: Incorrect page state in process...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: s390/mm: The handling of VMFAULTHWPOISON in doexception has been fixed. There is no support for HWPOISON, MEMORYFAILURE, or ARCHHASCOPYMC on s390. Therefore, we do not expect to see VMFAULTHWPOISON in doexception. However, since...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: mm/filemap: Skip the creation of a PMD-sized page cache if necessary. On ARM64, HPAGEPMDORDER is 13 when the base page size is 64KB. The PMD-sized page cache cannot be supported by xarray, as indicated by the following error...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: bpf: Failure in bpftimercancel when the callback is being canceled Given a schedule: timer1 cb timer2 cb bpftimercanceltimer2; bpftimercanceltimer1; Both bpftimercancel calls will wait for the other callback to complete execution...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: In video/aperture, it is now possible to match the device in sysfbdisable. In apertureremoveconflictingpcidevices, we currently only call sysfbdisable for VGA-class devices. This leads to the following issue when the primary devi...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: The value of UnboundedRequestEnabled was checked. The UnboundedRequestEnabled parameter in CalculateSwathAndDETConfigurationparamsst is a pointer i.e., dmlboolt UnboundedRequestEnabled. Therefore, if...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: Bluetooth: btnxpuart: Fixed a null pointer dereference in the btnxpuartflush function. A check was added before freeing the rx-skb in the flush and close functions to handle kernel crashes that occur when removing the driver...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: libfs: Fix for getstasheddentry getstasheddentry attempts to retrieve a stashed dentry from a specified location in a optimistic manner. It needs to ensure that it holds a rcu lock before dereferencing the stashed location, to...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: ASoC: mediatek – Assign a dummy codec when no specific codec is specified for a DAI link. MediaTek sound card drivers check whether a DAI link exists and is being used on a board. They assign the correct parameters to the DAI lin...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: RDMA/cma: Fixed a kmemleak in rdmacore that was observed during the blktests nvme/rdma tests with siw. When running the blktests nvme/rdma tests, the following kmemleak issue will appear: - kmemleak: The kernel memory leak...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: Wifi: mt76: connac: check for null before dereferencing. The wcid can be NULL. It should be checked for validity before dereferencing it to avoid crashes...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: clk: bcm: rpi: Assign -num before accessing -hws The commit f316cdff8d67 “clk: Annotate struct clkhwonecelldata with countedby annotated the hws member of ‘struct clkhwonecelldata’ with countedby. This informs the bounds sanitize...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: nvmet: Fixed a crash that occurs when a namespace is disabled. The percpu counter in the namespace is responsible for handling pending I/O operations. We can safely disable the namespace only after the counter drops to zero...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: btrfs: Fixed a use-after-free on the inode when scanning the root during em shrinking. In the function btrfsscanroot, we access the root of the inode along with fsinfo through a call to btrfsfsclosing. This occurs after we have...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: LoongArch: Set the hugetlb mmap base address to be aligned with the pmd size. With the ltp test case “testcases/bin/hugefork02”, there is a dmesg error report message, such as: kernel BUG at mm/hugetlb.c:5550! Oops – BUG1: CPU: 0...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: dmaengine: ti: k3-udma-glue: Fix for ofk3udmaglueParsechnbyid The ofk3udmaglueParsechnbyid helper function erroneously invokes “ofnodeput” on the “udmaxnp” device node that was passed to it. Additionally, its reference count was...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: ionic: Use devconsumeskbany outside of NAPI. If we are not in a NAPI softirq context, we need to be careful about how we call napiconsumeskb. Specifically, we need to call it with budget == 0 to signal that we are not in a safe...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: s390/dasd: Fixed the issue of invalid dereferencing of indirect CCW data pointers. The issue occurred in dasdeckddumpsense, where an invalid dereferencing of the indirect CCW data pointer led to a kernel panic in certain error...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: mm/shmem: Disable the PMD-sized page cache if necessary. For shmem files, it’s possible that a PMD-sized page cache cannot be supported by xarray. For example, a 512MB page cache on ARM64 when the base page size is 64KB cannot be...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: Use requestmodulenowait This seems to address a deadlock issue that occurred during the LED merge in version 6.9. The deadlock occurs on my system with 24 iwlwifi radios; perhaps it’s because all worker threads are...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: Thermal/debugfs: Fixed two locking issues related to the thermal zone debug. With the current locking mechanism for thermal zones in the debugfs code, user space can open the “mitigations” file for a thermal zone before the...
Astra Linux – Vulnerability in Linux 5.10
A flaw was discovered in the subsequent getuserpagesfast function within the Linux kernel’s interface for symmetric key cipher algorithms, specifically in the skcipherrecvmsg function of the crypto/algifskcipher.c file. This flaw allows a local user to crash the system...
Astra Linux – Vulnerability in Linux 5.10
A flaw was discovered in the IPv6 module of the Linux kernel. The arg.result parameter was not used consistently in fib6rulelookup; sometimes rt6info was used, and other times fib6info. This issue was not accounted for in other parts of the code, where rt6info was expected to be used...
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15
A use-after-free issue was discovered in the driver/firewire component, specifically in the outbound PhyPacketCallback function within the Linux kernel. In this flaw, a local attacker with special privileges could cause a use-after-free error when queueevent fails...
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15
A NULL pointer dereference flaw was discovered in dbFree in the fs/jfs/jfsdmap.c file of the Journaling File System JFS within the Linux kernel. This issue may allow a local attacker to cause the system to crash due to a missing sanity check...
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15
A NULL pointer dereference flaw was discovered in vmxnet3rqcleanup in drivers/net/vmxnet3/vmxnet3drv.c within the networking sub-component of vmxnet3 in the Linux Kernel. This issue may allow a local attacker with normal user privileges to cause a denial of service due to a missing sanity check...
Astra Linux – Vulnerability found in Linux 5.15, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fixed an out-of-band issue in ntfslistxattr. The length of a name cannot exceed the space occupied by “ea”...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: drm/tegra: rgb: Fixed the missing clkput in the error handling code for tegradcrgbprobe. If the call to clkgetsys..., "plld2out0" fails, the call to clkgetsys must be undone. Added the missing clkput function and a new label...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: fbdev: Fixed invalid page access after closing deferred I/O devices When a fbdev with deferred I/O is opened and then closed, the dirty pages still remain in the pageref list. Eventually, those pages may be processed during the...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: cxl/port: Fixed the race condition involving the deleteendpoint function and the unregistration of parent ports. The CXL subsystem establishes a lineage of ports struct cxlport objects between an endpoint and the root of a CXL...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: f2fs: Split the initial and dynamic conditions for extentcache. We need to allocate the extentcache tree without dynamic conditions to avoid a panic caused by a missing condition, as shown below. Create a file with a compresse...