Yonglong Liu

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** The vulnerability is related to a NULL pointer dereference in the hns3 component of the Linux kernel. When a 1588 message is received on HIP08 devices, the `hdev->ptp` is NULL, but the hardware can still receive 1588 messages and set the `HNS3 RXD TS VLD B` bit. If this condition is met, accessing `hdev->ptp->flags` will cause a kernel crash. The vulnerability can be exploited to cause a denial of service. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** The issue is related to the hns3 component of the Linux kernel and involves out-of-bounds access errors in the `hns3 get coal info()` function. This can potentially allow an attacker to cause a denial of service. The hns3 driver defines an array of strings to display coalesce information, but out-of-bounds access may occur when this information is read via debugfs if the kernel adds a new mode or state. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.