ROS-20240814-03

A vulnerability in the i40e component of the Linux operating system kernel is related to the incorrect release of a
client instance, and subsequent removal of the i40e module. Exploitation of the vulnerability could allow
an attacker to cause a denial of service

A vulnerability in the RDMA/srp component of the Linux operating system kernel is related to NULL pointer dereferencing.
Exploitation of the vulnerability may allow an attacker to cause a denial of service

A vulnerability in the cpus_read_lock() function in the cgroup component of a Linux kernel is related to an incorrect lock.
improper locking. Exploitation of the vulnerability could allow an attacker to cause a denial of service
denial of service

Vulnerability in the irdma_generate_flush_completions() function in drivers/infiniband/hw/irdma/utils.c module
of the InfiniBand irdma driver of the Linux operating system kernel is related to an infinite resource wait cycle.
Exploitation of the vulnerability could allow an intruder to impact the confidentiality,
integrity and availability of protected information

Vulnerability of brcmstb_pm_probe() function in brcmstb component of Linux kernel is related to
refcount and __iomem leak errors in brcmstb_pm_probe(). Exploitation of the vulnerability could allow
an attacker to gain access to confidential information

A vulnerability in the mmput() function in the IB/core component of the Linux operating system kernel is associated with a dead
lock as part of an ODP thread. Exploitation of the vulnerability could allow an attacker to cause a denial of
denial of service

Vulnerability of erofs_workgroup_unfreeze() function in the fs/erofs/internal.h module of the EROFS file system
(Enhanced Read-Only File System) of Linux kernel in single-processor configuration
is related to the reuse of previously freed memory. Exploitation of the vulnerability could allow
an intruder to affect confidentiality, integrity and availability of protected information

Vulnerability of the unflatten_dt_nodes() function in the drivers/of/fdt.c module of the Device Tree driver of the Linux operating system kernel is related to a single unit error.
of the Linux operating system kernel Device Tree is associated with a single offset error. Exploitation of the vulnerability could allow an attacker to
affect confidentiality, integrity and availability of protected information

Vulnerability of the tcp_build_frag() function in the net/ipv4/tcp.c module of the IPv4 protocol implementation of the Linux operating system kernel is related to competitive access to the protected information.
Linux kernel IPv4 protocol implementation is related to competitive access to a resource (race condition). Exploitation of the vulnerability could
allow an attacker to impact the confidentiality, integrity, and availability of protected
information

Vulnerability in the ipv6 component of the Linux operating system kernel is related to read outside boundaries in the
HMAC data installation. Exploitation of the vulnerability could allow an attacker to gain access to
sensitive information

A vulnerability in the ft_chain_release_hook() function in the netfilter component of a Linux operating system kernel
is related to the lack of memory release after effective lifetime. Exploitation of the vulnerability could
allow an attacker to gain access to confidential information

Vulnerability of the nvme_tcp_io_work() function in the drivers/nvme/host/tcp.c module of the NVMe driver of the NVMe driver kernel of the Linux operating system is related to the reuse of previously used memory after effective lifetime.
Linux kernel NVMe driver module is related to reuse of previously freed memory. Exploitation of the vulnerability
could allow an attacker to affect confidentiality, integrity and availability of protected information
protected information