4 matches found
CVE-2024-26997
CVE-2024-26997 concerns the Linux kernel USB stack, specifically the dwc2 host controller. A dereference issue in the DDMA completion flow is fixed in the connected Astra Linux advisory, noting that a variable dereference was resolved in the DDMA completion flow. The advisory confirms the vulnera...
CVE-2022-48627
CVE-2022-48627 (Linux kernel) describes a memory overlap bug in vt buffer character deletion caused by an overlapping copy when using scr_memcpyw, which may lead to data corruption or leakage if destination overlaps source. The issue is mitigated by replacing scr_memcpyw with scr_memmovew; severa...
CVE-2024-38381
CVE-2024-38381 affects the Linux kernel vulnerability in the NFC NFC-NCI path. The issue is an uninitialized-value access in nci_rx_work, which parses a received packet from ndev->rx_q without validating header size, payload size, and total packet size before processing. An invalid packet coul...
CVE-2024-39493
The CVE CVE-2024-39493 concerns a Linux kernel crypto/qat issue (ADF_DEV_RESET_SYNC memory leak) resolved by changing the caller behavior to cancel_work_sync and then freeing the memory safely. This addresses a potential use-after-free scenario where the caller may not have waited for completion,...