Chengfeng Ye

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** A denial of service issue is present in the `tipc crypto key revoke` function of the Linux kernel's TIPC subsystem, located in `net/tipc/crypto.c`. This issue can be exploited by guests with local user privileges to trigger a deadlock, potentially causing the system to crash. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Zyxel NR7101 versions prior to V1.00(ABUV.8)C0 **Description** The issue is related to a buffer overflow in the CGI interface of the Zyxel NR7101 firmware. This could allow a remote attacker to cause denial of service (DoS) conditions by sending a crafted HTTP request to a vulnerable device. The exploitation of this issue may result in a denial of service. **Recommendations** For versions prior to V1.00(ABUV.8)C0, update to version V1.00(ABUV.8)C0 or later to resolve the issue. As a temporary workaround, consider restricting access to the CGI interface to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** The issue is related to a null pointer dereference in the `snd usb set sample rate v2v3()` function of the Linux kernel's usb-audio component. This could allow an attacker to cause a denial of service. The problem arises because the `cs desc` pointer returned from `snd usb find clock source` could be null, leading to a potential null pointer dereference issue. This is fixed by adding a null check before dereference. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** The issue is related to a null pointer dereference in the ALSA: gus component of the Linux kernel. The pointer block returned from `snd gf1 dma next block` could be null, leading to a potential null pointer dereference issue. This can be fixed by adding a null check before dereference. The vulnerability may allow an attacker to cause a denial of service. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.