Bert Karwatzki

Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified) Description: A subtle bug has been found in the Linux kernel's maple tree implementation, which can cause tree corruption when performing a spanning store across two leaf nodes. This bug has been present since the inception of the algorithm and seems to occur more frequently after a specific commit. The issue arises when the store completely consumes the right-mode node, resulting in the `mas wr spanning store()` function mistakenly duplicating new and existing entries at the maximum pivot within the range. A fix patch has been created to detect and disallow this scenario, and a test has been included to reliably reproduce the issue and assert that the fix works correctly. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** A NULL pointer access issue has been resolved in the Linux kernel's wifi module, specifically in mt76 and mt7921. The issue occurred when disabling wifi, and the `mt7921 ipv6 addr change()` function was called as a notifier. At this point, `mvif->phy` is already NULL, and it cannot be used. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.