Mostafa Saleh

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** The issue concerns the Linux kernel, specifically the vfio/platform component, where the bounds of read/write syscalls are not properly checked. The `count` and `offset` variables are passed from user space without being validated, except that `offset` is capped at 40 bits. This limitation can be exploited to read or write beyond the device's boundaries. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Linux kernel (affected versions not specified) Description: The issue is related to a use-after-free vulnerability in the `msi capability init` function. This vulnerability can be exploited to impact the confidentiality, integrity, and availability of protected information. The vulnerability occurs due to a failure in the ` msi domain alloc locked` function, which leads to the descriptor being freed and then accessed in the error exit path of `pci msi setup msi irqs` in `msi capability init`. The solution involves copying the descriptor and using the copy for the error exit path unmask operation. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.