22107 matches found
sctp: properly validate chunk size in sctp_sf_ootb()
...
HID: core: zero-initialize the report buffer
...
jfs: check if leafidx greater than num leaves per dmap tree
...
tracing/timerlat: Fix a race during cpuhp processing
...
TLS 1.3 client issue handling malicious server when not including a KSE and PSK extension
...
x86/ioapic: Handle allocation failures gracefully
...
resource: fix region_intersects() vs add_memory_driver_managed()
...
tcp/dccp: Don't use timer_pending() in reqsk_queue_unlink().
...
scsi: target: core: Fix null-ptr-deref in target_alloc_device()
...
Bluetooth: bnep: fix wild-memory-access in proto_unregister
...
drm/vboxvideo: Replace fake VLA at end of vbva_mouse_pointer_shape with real VLA
...
wifi: ath9k_htc: Use __skb_set_length() for resetting urb before resubmit
...
ppp: do not assume bh is held in ppp_channel_bridge_input()
...
sctp: set sk_state back to CLOSED if autobind fails in sctp_listen_start
...
ACPI: PAD: fix crash in exit_round_robin()
...
Windows Defender Information Disclosure Vulnerability
Improper authorization of an index that contains sensitive information from a Global Files search in Windows Defender allows an authorized attacker to disclose information over a network...
btrfs: reinitialize delayed ref list after deleting it from the list
...
netdevsim: Add trailing zero to terminate the string in nsim_nexthop_bucket_activity_write()
...
fs/ntfs3: Fix possible deadlock in mi_read
...
wifi: ath10k: Fix memory leak in management tx
...
wifi: iwlegacy: Clear stale interrupts before resuming device
...
nilfs2: fix kernel bug due to missing clearing of checked flag
...
iio: light: veml6030: fix IIO device retrieval from embedded device
...
x86/entry_32: Clear CPU buffers after register restore in NMI return
...
secretmem: disable memfd_secret() if arch cannot set direct map
...
net: wwan: fix global oob in wwan_rtnl_policy
...
xfrm: validate new SA's prefixlen using SA family when sel.family is unset
...
drm/amd: Guard against bad data for ATIF ACPI method
...
nouveau/dmem: Fix vulnerability in migrate_to_ram upon copy error
...
tcp: fix mptcp DSS corruption due to large pmtu xmit
...
net: add more sanity checks to qdisc_pkt_len_init()
...
platform/x86: ISST: Fix the KASAN report slab-out-of-bounds bug
...
mptcp: pm: fix UaF read in mptcp_pm_nl_rm_addr_or_subflow
...
blk-rq-qos: fix crash on rq_qos_wait vs. rq_qos_wake_function race
...
net: avoid potential underflow in qdisc_pkt_len_init() with UFO
...
netfilter: nf_tables: prevent nf_skb_duplicated corruption
...
blk_iocost: fix more out of bound shifts
...
Microsoft Update Catalog Elevation of Privilege Vulnerability
Deserialization of untrusted data in Microsoft Update Catalog allows an unauthorized attacker to elevate privileges on the website’s webserver...
dm cache: fix out-of-bounds access to the dirty bitset when resizing
...
usb: typec: fix potential out of bounds in ucsi_ccg_update_set_new_cam_cmd()
...
ocfs2: remove entry once instead of null-ptr-dereference in ocfs2_xa_remove()
...
RDMA/bnxt_re: Fix a bug while setting up Level-2 PBL pages
...
posix-clock: Fix missing timespec64 check in pc_clock_settime()
...
fbdev: sisfb: Fix strbuf array overflow
...
HID: amd_sfh: Switch to device-managed dmam_alloc_coherent()
...
net: systemport: fix potential memory leak in bcm_sysport_xmit()
...
bpf: devmap: provide rxq after redirect
...
usb: typec: altmode should keep reference to parent
...
nilfs2: fix kernel bug due to missing clearing of buffer delay flag
...
KVM: nSVM: Ignore nCR3[4:0] when loading PDPTEs from memory
...