Genes Lists

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 6.6.74 **Description** The issue concerns a common bug in the Linux kernel where a TRACE EVENT() TP fast assign() assigns an address of an allocated string to the ring buffer and then references it in TP printk(), which can be executed hours later when the string is free. To catch this bug, the function test event printk() runs on all events as they are registered to ensure there's no unwanted dereferencing. It calls process string() to handle cases in TP printk() format that have "%s". The function returns whether or not the string is safe but can have some false positives. For instance, in the xe bo move() function, the "%s" references into xe mem type to name[], an array of pointers that should be safe for the event to access. **Recommendations** To resolve the issue, update to Linux kernel version 6.6.74 or later. As a temporary workaround, consider restricting access to the vulnerable `process string()` function until a patch is available. Avoid using the `TP printk()` function with "%s" format in the affected events until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** A vulnerability in the Linux kernel has been resolved, related to the intel/ipu6 media component. The issue occurs when a CPU latency QOS request is not removed on error, leading to list corruption. This corruption can cause warnings and errors, including list add corruption and CPU warnings. The vulnerability is associated with the `cpu latency qos update request` function and the `pm qos update target` function. The estimated number of potentially affected devices worldwide is not available. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.