diff options
author | Greg Kroah-Hartman <gregkh@linuxfoundation.org> | 2024-04-10 14:53:55 +0200 |
---|---|---|
committer | Greg Kroah-Hartman <gregkh@linuxfoundation.org> | 2024-04-10 14:53:55 +0200 |
commit | afa86b90ae02c9110cbf8751f92551762be1e62f (patch) | |
tree | 3d12724482151f6d23475cd2960dd75138b5e269 | |
parent | ad3eb0d893067d622c441db686e27a3d5f64d030 (diff) | |
download | vulns-afa86b90ae02c9110cbf8751f92551762be1e62f.tar.gz |
add 6.8.2 proposed cves from Greg
Signed-off-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
-rw-r--r-- | cve/review/proposed/v6.8.2-greg | 80 |
1 files changed, 80 insertions, 0 deletions
diff --git a/cve/review/proposed/v6.8.2-greg b/cve/review/proposed/v6.8.2-greg new file mode 100644 index 00000000..8143d95c --- /dev/null +++ b/cve/review/proposed/v6.8.2-greg @@ -0,0 +1,80 @@ +3948abaa4e2b do_sys_name_to_handle(): use kzalloc() to fix kernel-infoleak +6cf350658736 md: fix kmemleak of rdev->serial +8d0d2447394b nvme: host: fix double-free of struct nvme_id_ns in ns_update_nuse() +f98364e92662 aoe: fix the potential use-after-free problem in aoecmd_cfg_pkts +ad25ee36f001 wifi: ath10k: fix NULL pointer dereference in ath10k_wmi_tlv_op_pull_mgmt_tx_compl_ev() +9636951e4468 wifi: b43: Stop/wake correct queue in DMA Tx path when QoS is disabled +328efda22af8 wifi: wilc1000: do not realloc workqueue everytime an interface is added +f661017e6d32 cpufreq: brcmstb-avs-cpufreq: add check for cpufreq_cpu_get's return value +24355fcb0d4c wifi: ath9k: delay all of ath9k_wmi_event_tasklet() until init is complete +b8cfb7c819dd wifi: wfx: fix memory leak when starting AP +17ef8efc00b3 ipv6: mcast: remove one synchronize_net() barrier in ipv6_mc_down() +cb5942b77c05 wifi: wilc1000: prevent use-after-free on vif when cleaning up all interfaces +e18afcb7b2a1 ACPI: processor_idle: Fix memory leak in acpi_processor_power_exit() +f1d71576d2c9 firmware: arm_scmi: Fix double free in SMC transport cleanup path +c957280ef6ab wifi: mt76: mt7921e: fix use-after-free in free_irq() +a43e0fc5e913 pstore: inode: Only d_invalidate() is needed +e67b652d8e85 SUNRPC: fix a memleak in gss_import_v2_context +3cfcfc102a5e SUNRPC: fix some memleaks in gssx_dec_option_array +978b63f7464a btrfs: fix race when detecting delalloc ranges during fiemap +b4152222e04c wifi: brcm80211: handle pmk_op allocation failure +4fc82cd907ac iommu/vt-d: Don't issue ATS Invalidation request when device is disconnected +81e921fd3216 iommu/vt-d: Fix NULL domain on device release +de4e88ec58c4 Bluetooth: btrtl: fix out of bounds memory access +a6e06258f4c3 Bluetooth: msft: Fix memory leak +79f4127a502c Bluetooth: btusb: Fix memory leak +f7b94bdc1ec1 Bluetooth: af_bluetooth: Fix deadlock +947ec0d002dc Bluetooth: fix use-after-free in accessing skb after sending it +281d464a34f5 bpf: Fix DEVMAP_HASH overflow check on 32-bit arches +6787d916c2cf bpf: Fix hashtab overflow check on 32-bit arches +7a4b21250bf7 bpf: Fix stackmap overflow check on 32-bit arches +b0ec2abf9826 net: ip_tunnel: make sure to pull inner header in ip_tunnel_rcv() +4469c0c5b14a net: phy: fix phy_get_internal_delay accessing an empty array +b446631f355e dpll: fix dpll_xa_ref_*_del() for multiple registrations +0fbcf2366ba9 net: hns3: fix kernel crash when 1588 is received on HIP08 devices +84e95149bd34 nfp: flower: handle acti_netdevs allocation failure +65e8fbde6452 dm: call the resume method on internal suspend +ba535bce57e7 clk: meson: Add missing clocks to axg_clk_regmaps +8cf9c5051076 media: v4l2-tpg: fix some memleaks in tpg_alloc +8f94b49a5b5d media: v4l2-mem2mem: fix a memleak in v4l2_m2m_register_entity +8c64f4cdf4e6 media: edia: dvbdev: fix a use-after-free +d0aa72604fbd quota: Fix potential NULL pointer dereference +a853450bf4c7 crypto: xilinx - call finalize with bh disabled +2a3cfb9a24a2 drm/amd/display: fix NULL checks for adev->dm.dc in amdgpu_dm_fini() +aebfdfe39b93 NTB: fix possible name leak in ntb_register_device() +4797a3dd46f2 media: imx: csc/scaler: fix v4l2_ctrl_handler memory leak +f6aed043ee5d drm/amd/display: Add 'replay' NULL check in 'edp_set_replay_allow_active()' +64c6a38136b7 clk: hisilicon: hi3559a: Fix an erroneous devm_kfree() +0a0b79ea55de media: pvrusb2: fix uaf in pvr2_context_set_notify +7a4cf27d1f05 media: dvb-frontends: avoid stack overflow warnings with clang +b9b683844b01 media: go7007: fix a memleak in go7007_load_encoder +d0b07f712bf6 media: ttpci: fix two memleaks in budget_av_attach +c958e86e9cc1 drm/mediatek: Fix a null pointer crash in mtk_drm_crtc_finish_page_flip +cda9c0d55628 powerpc/pseries: Fix potential memleak in papr_get_attr() +65e6a2773d65 media: usbtv: Remove useless locks in usbtv_video_free() +b1ba8bcb2d1f backlight: hx8357: Fix potential NULL pointer dereference +e97fe4901e0f clk: Fix clk_core_get NULL dereference +7938e9ce39d6 clk: zynq: Prevent null pointer dereference caused by kmalloc failure +3c4f53b2c341 scsi: hisi_sas: Fix a deadlock issue related to automatic dump +c21a8870c986 RDMA/srpt: Do not register event handler until srpt device is fully setup +c2034ef6192a f2fs: fix NULL pointer dereference in f2fs_submit_page_write() +251a658bbfce NFSv4.2: fix nfs4_listxattr kernel BUG at mm/usercopy.c:102 +eb70d5a6c932 f2fs: fix to avoid use-after-free issue in f2fs_filemap_fault +719fcafe07c1 nfs: fix panic when nfs4_ff_layout_prepare_ds() fails +77a28aa47687 ovl: relax WARN_ON in ovl_verify_area() +ca93bf607a44 thermal/drivers/mediatek/lvts_thermal: Fix a memory leak in an error handling path +2ae0ab0143fc spi: lpspi: Avoid potential use-after-free in probe() +2a750d6a5b36 rds: tcp: Fix use-after-free of net in reqsk_timer_handler(). +343041b59b78 net/sched: taprio: proper TCA_TAPRIO_TC_ENTRY_INDEX check +04d9d1fc428a tcp: Fix refcnt handling in __inet_hash_connect(). +e127ce7699c1 vmxnet3: Fix missing reserved tailroom +ddbec99f5857 hsr: Fix uninit-value access in hsr_get_node() +51c23bd691c0 xen/evtchn: avoid WARN() when unbinding an event channel +6ebfad33161a packet: annotate data-races around ignore_outgoing +d5c0ed17fea6 virtio: packed: fix unmap leak for indirect desc table +bba045dc4d99 wireguard: receive: annotate data-race around receiving_counter.counter +55e565c42dce dm-integrity: fix a memory leak when rechecking the data +d27e2da94a42 net/bnx2x: Prevent access to a freed page in page_pool +b0e256f3dd2b netfilter: nft_set_pipapo: release elements in clone only from destroy path +4a0e7f2decbf netfilter: nf_tables: do not compare internal table flags on updates +7eaf837a4eb5 netfilter: nf_tables: Fix a memory leak in nf_tables_updchain |