Shiloong

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** A race condition was found in the Linux kernel's media/dvb-core in the `dvbdmx write()` function. This can result in a null pointer dereference issue, possibly leading to a kernel panic or denial of service issue. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** A race condition was found in the Linux kernel's scsi device driver in the `lpfc unregister fcf rescan()` function. This can result in a null pointer dereference issue, possibly leading to a kernel panic or denial of service issue. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** A race condition was found in the Linux kernel's net/bluetooth in the `sniff {min,max} interval set()` function. This can result in a bluetooth sniffing exception issue, possibly leading to denial of service. The issue is related to concurrent access to a resource, which may allow a remote attacker to impact the integrity of protected information and cause a denial of service. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** A race condition was found in the Linux kernel's net/bluetooth device driver in the `conn info {min,max} age set()` function. This can result in an integrity overflow issue, possibly leading to Bluetooth connection abnormality or denial of service. The issue is related to an integer overflow due to concurrent access to a resource, which can be exploited by a remote attacker to impact the integrity of protected information and cause a denial of service. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 6.6.28 **Description** The issue is related to an integer overflow in the raid5 cache count() function of the Linux kernel's RAID driver. This can potentially allow an attacker to impact the confidentiality, integrity, and availability of protected information. The vulnerability is associated with the md, raid, and raid5 modules in the Linux kernel on Linux, x86, and ARM architectures. **Recommendations** For versions prior to 6.6.28, update to version 6.6.28 or later to resolve the issue. As a temporary workaround, consider restricting access to the vulnerable modules (md, raid, raid5) to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Linux kernel version v2.6.12-rc2 **Description** The issue is related to a NULL Pointer Dereference vulnerability in the Linux kernel, specifically in the net and bluetooth modules. This vulnerability is associated with program files /net/bluetooth/rfcomm/core.C and allows for Overflow Buffers. The `rfcomm check security()` function is mentioned as being related to the vulnerability, which is associated with a null pointer dereference. This could potentially allow an attacker to cause a denial of service. **Recommendations** To resolve the issue for Linux kernel version v2.6.12-rc2, update to a version newer than v2.6.12-rc2, as upstream kernel version 6.6.28 is mentioned to fix bugs and vulnerabilities. As a temporary workaround, consider disabling the `rfcomm check security()` function until a patch is available. Restrict access to the vulnerable module `net/bluetooth/rfcomm/core.C` to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** A race condition was found in the Linux kernel's bluetooth device driver in the `(min,max) key size set()` function. This can result in a null pointer dereference issue, possibly leading to a kernel panic or denial of service issue. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.