18095 matches found
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: RDMA/manaib: The behavior of disabling RX steering when an RSS QP is destroyed has been corrected. When an RSS QP is destroyed e.g., due to DPDK exit, the manaibDestroyQPrss function destroys the RX WQ objects, but it does not...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: btrfs: fixed an issue where a double-free operation occurred in the createspaceinfosubgroup function. When the kobjectinitandadd function fails, the call chain is as follows: createspaceinfosubgroup → btrfssysfsaddspaceinfotype →...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: schedext: Reading scxroot under scxcgroupopsrwsem in the cgroup setters. The scxgroupsetweight,idle,bandwidth function caches scxroot before acquiring scxcgroupopsrwsem. As a result, the pointer may become stale by the time th...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Rejecting empty multisync extensions prevents infinite loops. The v3dgetextensions function iterates over a singly-linked list of ioctl extensions provided by the user space. This list has no bounds on its length. A loca...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Rejects non-8-byte ATOMICWRITE payloads. In the atomicwritereply function in drivers/infiniband/sw/rxe/rxeresp.c, the payloadaddrpkt parameter is dereferenced unconditionally with a value of 8 bytes. Previously, checkrk...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/vcn4: This issue prevents OOB reads during IB parsing. The IB parsing mechanism has been updated to use amdgpuibgetvalue, which handles the bounds checks...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: exit: prevent preemption of oopsing TASKDEAD tasks When a task that is already exiting causes an oop object-oriented programming error, the maketaskdead function currently calls dotaskdead with preemption enabled. This is...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: erofs: Fixed an issue where inline data reading failed for ztailpacking pclusters. Compressed folios for ztailpacking pclusters must be valid before adding these pclusters to I/O chains. Otherwise, zerofsdecompresspcluster may...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: q6apm-lpass-dai: Fixed multiple graph openings. Since “prepare” can be called multiple times, this can lead to multiple graph openings for the playback path. This will result in memory leaks; therefore, this issue is...
Astra Linux – Vulnerability in Apache2
There is a vulnerability related to HTTP response splitting in several Apache HTTP Server modules, especially on untrusted or compromised backend servers. This issue affects Apache HTTP Server versions from 2.4.66 onwards. Users are recommended to upgrade to version 2.4.67, as this version...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: ntfs3: Fixed an integer overflow in the volume boundary check of rununpack. The volume boundary check lcn + len sbi-used.bitmap.nbits uses a raw addition, which can cause rounding for large values of lcn and len, thereby bypassin...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: eth: fbnic: Added validation for MTU changes Increasing the MTU beyond the HDS threshold causes the hardware to fragment packets across multiple buffers. If a single-buffer XDP program is attached, the driver will drop all...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: nsfs: Permission checks for handling opening have been tightened. Even privileged services should not necessarily be able to access the namespaces of other privileged services, so that they cannot leak information to each other...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: net: ipa: fixed the field masks for the GENERICCMD register for IPA v5.0+. The field masks have been adjusted to match the hardware layout documented in downstream GSI GSIV30EEnGSIEEGENERICCMD. Notably, this fixes a warning that ...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: net: bonding: Fixed a NULL dereference of the ndtbl variable when IPv6 is disabled. When booting with the ipv6.disable=1 parameter, the ndtbl variable is never initialized because inet6init exits before ndiscinit is called,...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: nstree: permission checks for listing have been tightened. Even privileged services should not necessarily be able to access the namespaces of other privileged services, so that they cannot leak information to each other. Use the...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: possible double-free of cctx-remoteheap The function fastrpcinitcreatestaticprocess may free the memory allocated to cctx-remoteheap during the errmap path, but does not clear the pointer pointing to that memory...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: iommu/amd: Serialize sequence allocation under concurrent TLB invalidations. With concurrent TLB invalidations, the completion wait time might randomly time out. This occurs because the cmdsemval field was incremented outside ...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: ksmbd: A mechToken leak was fixed when the SPNEGO decoding failed after the token allocation. The kernel’s ASN.1 BER decoder calls action callbacks incrementally as it processes the input. When ksmbddecodenegTokenInit reaches the...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: ipv4: icmp: fix null-ptr-deref in icmpbuildprobe The ipv6stub-ipv6devfind function may return ERRPTR-EAFNOSUPPORT when the IPv6 stack is not active CONFIGIPV6=m and not loaded. Passing this error pointer to devhold will cause a...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: mm: memfdluo: always dirty all folios A “dirty folio” is one that has been written to. A “clean folio” is the opposite. Since a clean folio contains no user data, it can be freed under memory pressure. Preserving memfd by saving...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: gpib: A use-after-free occurred in the IO ioctl handlers. The IBRD, IBWRT, IBCMD, and IBWAIT ioctl handlers use a gpibdescriptor pointer after the board-biggpibmutex has been released. A concurrent IBCLOSEDEV ioctl can free the...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: drm/amd: Fixed a NULL pointer dereferencing issue during device cleanup. When GPU initialization fails due to an unsupported HW block, IP blocks may have a NULL version pointer. During cleanup in amdgpudevicefinihw, the code call...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: f2fs: A fix was made to avoid accessing uninitialized data in f2fssanitychecknodefooter. syzbot reported the following bug: BUG: KMSAN: Access to uninitialized data in f2fssanitychecknodefooter+0x374/0xa20; file...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: A use-after-free issue was addressed in l2capunregisteruser. After the commit ab4eedb790ca “Bluetooth: L2CAP: Fix corrupted list in hcichandel”, l2capconndel uses conn-lock to protect access to conn-users...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: Bonding: A potential infinite loop has been prevented in the bondheaderparse function. The bondheaderparse function may enter an infinite loop if a stack of two bonding devices is set up, because skb-dev always points to the top ...
Astra Linux – Vulnerability in Golang-1.19, Golang-1.23
Creating a malicious file using cmd/go can result in writing to a file controlled by an attacker, with partial control over the file’s content. The cgo pkg-config: directive in a Go source file provides command-line arguments that are passed to the Go pkg-config command. An attacker can provide a...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: KVM: x86/mmu: The existing SPTE is dropped/zapped even when creating an MMIO SPTE. When installing an emulated MMIO SPTE, do so after dropping/zapping the existing SPTE if it’s shadow-present. While the commit a54aa15c6bda3 was...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: drm/xe/pf: Fixed a use-after-free in the migration restore process. When an error is returned from xesriovpfmigrationrestoreproduce, the data pointer is not set to NULL, which can lead to a use-after-free in subsequent .write...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: virt: tdx-guest: Fixed the handling of the “quote” buffer length controlled by the host. The host-controlled value quotebuf-outlen is validated to determine how many bytes of the quote are copied to the guest userspace. In TDX...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: X.509: Fixed out-of-bounds access during the parsing of extensions Leo reports a situation where out-of-bounds access occurs during the parsing of a certificate with empty Basic Constraints or Key Usage extensions. This occurs...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: HID: apple: avoided a memory leak in applereportfixup The applereportfixup function was returning a buffer allocated using kmemdup, but never freeing that buffer. The caller of reportfixup does not take ownership of the returned...
Astra Linux – Vulnerability in Wireshark
The TLS protocol dissector infinite loop in Wireshark versions 4.6.0 to 4.6.4 allows for denial of service attacks...
Astra Linux – Vulnerability in Golang 1.19, Golang 1.23
A discrepancy in how Go and C/C++ comments are parsed allowed for code to be smuggled into the resulting cgo binary...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: erofs: fixed an unsigned underflow in zerofslz4handleoverlap Some crafted images may contain illegal !partialdecoding && mllen out accesses read past the decompressedpages array. However, such crafted cases can still result in a...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: mptcp: Do not account for OoO in mptcprcvbufgrow. TCP Multicasting overheads OoOs occur physiologically when multiple subflows are active simultaneously. These overheads do not cause retransmissions and are not triggered by drops...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: zram: Do not forget to call endio for partial discard requests. According to Qu Wenruo and Avinesh Kumar, the following code takes literally forever to complete: getconf PAGESIZE = 65536 blkdiscard -p 4k /dev/zram0 zram does not...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fixed a potential Use-after-Free UAF issue after a failure of skbunshare. If skbunshare fails to unshare a packet due to allocation failures in rxrpcinputpacket, the skb pointer in the parent thread rxrpciothread will be s...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: Media: Amphion – Fixed a race condition between m2mJobAbort and deviceRun. We have fixed a kernel panic that occurred due to a race condition where v4l2m2mCtxRelease releases the m2mCtx while v4l2m2mTryRun is about to call...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: accel/amdxdna: Fixed a potential NULL pointer dereferencing during context cleanup. The aiestroycontext function is invoked during error handling in ai2createcontext. However, aiestroycontext assumes that the context’s mailbox...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: landlock: Fixed the inheritance of LOGSUBDOMAINSOFF across forks. The hookcredtransfer function only copies the Landlock security blob when the source credential has a domain. This is inconsistent with landlockrestrictself, which...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: crypto:inside-secure/eip93 – Fixed kernel panic during driver detachment. During driver detachment, the same hash algorithm was unregistered multiple times due to an incorrect iterator usage...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: KVM: arm64: Reassign the nestedmmus array to another location after mmulock The kvm-arch.nestedmmus array is processed under kvm-mmulock, including through the MMU notifier path kvmunmapgfnrange - kvmnesteds2unmap. This proces...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: net/mlx5e: Fixed deadlocks between the devlink lock and the netdev instance lock. In the mentioned “Fixes” commit, various tasks that triggered the devlink health reporter recovery were changed to use netdevtrylock to prevent...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: SPI: imx – Fix for use-after-free when unbinding. The SPI subsystem releases the controller and any subsystem-allocated driver data as part of deregistration unless the allocation is device-managed. Take another reference before...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: AppArmor: A NULL pointer dereference occurred in unixneedsrevalidation. When receiving file descriptors via SCMRIGHTS, both the socket pointer and the sk pointer of the socket can be NULL during socket setup or teardown, leading ...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: Wifi: mac80211 – Use safe list iteration in radar detect work The call to ieee80211dfscac Cancel can cause the iterated chanctx to be freed and removed from the list. This issue needs to be guarded against to avoid a...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: 9p: The access mode flags were OR-ed instead of replaced. Since the commit 1f3e4142c0eb “9p: Convert to the new mount API”, v9fsapplyoptions applies the parsed mount flags with |= to those flags that have already been set by...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: openvswitch: vport: Fixed a self-deadlock issue when releasing tunnel ports. Vports are used concurrently and are protected by RCU. Therefore, netdevput must be called after the RCU grace period. This can happen either during a R...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: AppArmor: Fixed a string overflow due to missing termination. When booting Ubuntu 26.04 with Linux 7.0-rc4 on an ARM64 Qualcomm Snapdragon X1 system, a string buffer overflow was observed: BUG: KASAN: Out-of-bounds access in...