658 matches found
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: dma-mapping: benchmark: fix node id validation While validating node IDs in mapbenchmarkioctl, the nodepossible function may receive invalid arguments outside of the range 0, MAXNUMNODES-1, leading to: BUG: KASAN:...
Malicious code in alchemy-asset-transfers-benchmark (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=-...
Malicious code in spliffy-benchmark (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8ead6b661fb169fc63b0a65eb514024ee59694c0b4e6031a27afc765d0089b5d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-10570 Malicious code in spliffy-benchmark (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8ead6b661fb169fc63b0a65eb514024ee59694c0b4e6031a27afc765d0089b5d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
The vulnerability of the do_map_benchmark() function in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the domapbenchmark function in the kernel/dma/mapbenchmark.c module of the Linux operating system is related to reading memory beyond the allocated buffer. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of...
CLSA-2024-1722533082 kernel: Fix of 47 CVEs
afunix: Fix garbage collector racing against connect CVE-2024-26923 - netfilter: nftlimit: reject configurations that cause integer overflow CVE-2024-26668 - libbpf: Fix use-after-free in btfdumpnamedups CVE-2022-3534 - bpf: Fix partial dynptr stack slot reads/writes CVE-2023-39191 - ima: Fix...
CVE-2024-41009
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix overrunning reservations in ringbuf The BPF ring buffer internally is implemented as a power-of-2 sized circular buffer, with two logical and ever-increasing counters: consumerpos is the consumer counter to show which...
CVE-2024-41009 bpf: Fix overrunning reservations in ringbuf
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix overrunning reservations in ringbuf The BPF ring buffer internally is implemented as a power-of-2 sized circular buffer, with two logical and ever-increasing counters: consumerpos is the consumer counter to show which...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: dma-mapping: Benchmark: Properly handling NUMANONODE. The cpumaskofnode function can be called within domapbenchmark when dealing with the NUMANONODE configuration. This results in the following issue reported by the sanitizer...
SUSE CVE-2024-39277
In the Linux kernel, the following vulnerability has been resolved: dma-mapping: benchmark: handle NUMANONODE correctly cpumaskofnode can be called for NUMANONODE inside domapbenchmark resulting in the following sanitizer report: UBSAN: array-index-out-of-bounds in...
SUSE CVE-2024-34777
In the Linux kernel, the following vulnerability has been resolved: dma-mapping: benchmark: fix node id validation While validating node ids in mapbenchmarkioctl, nodepossible may be provided with invalid argument outside of 0,MAXNUMNODES-1 range leading to: BUG: KASAN: wild-memory-access in...
CVE-2024-34777
In the Linux kernel, the following vulnerability has been resolved: dma-mapping: benchmark: fix node id validation While validating node ids in mapbenchmarkioctl, nodepossible may be provided with invalid argument outside of 0,MAXNUMNODES-1 range leading to: BUG: KASAN: wild-memory-access in...
CVE-2024-39277
In the Linux kernel, the following vulnerability has been resolved: dma-mapping: benchmark: handle NUMANONODE correctly cpumaskofnode can be called for NUMANONODE inside domapbenchmark resulting in the following sanitizer report: UBSAN: array-index-out-of-bounds in...
AZL-42838 CVE-2024-39277 affecting package kernel for versions less than 6.6.35.1-4
In the Linux kernel, the following vulnerability has been resolved: dma-mapping: benchmark: handle NUMANONODE correctly cpumaskofnode can be called for NUMANONODE inside domapbenchmark resulting in the following sanitizer report: UBSAN: array-index-out-of-bounds in...
AZL-42844 CVE-2024-39277 affecting package kernel for versions less than 5.15.162.2-1
In the Linux kernel, the following vulnerability has been resolved: dma-mapping: benchmark: handle NUMANONODE correctly cpumaskofnode can be called for NUMANONODE inside domapbenchmark resulting in the following sanitizer report: UBSAN: array-index-out-of-bounds in...
CVE-2024-34777
In the Linux kernel, the following vulnerability has been resolved: dma-mapping: benchmark: fix node id validation While validating node ids in mapbenchmarkioctl, nodepossible may be provided with invalid argument outside of 0,MAXNUMNODES-1 range leading to: BUG: KASAN: wild-memory-access in...
DEBIAN-CVE-2024-34777
In the Linux kernel, the following vulnerability has been resolved: dma-mapping: benchmark: fix node id validation While validating node ids in mapbenchmarkioctl, nodepossible may be provided with invalid argument outside of 0,MAXNUMNODES-1 range leading to: BUG: KASAN: wild-memory-access in...
UBUNTU-CVE-2024-39277
In the Linux kernel, the following vulnerability has been resolved: dma-mapping: benchmark: handle NUMANONODE correctly cpumaskofnode can be called for NUMANONODE inside domapbenchmark resulting in the following sanitizer report: UBSAN: array-index-out-of-bounds in...
UBUNTU-CVE-2024-34777
In the Linux kernel, the following vulnerability has been resolved: dma-mapping: benchmark: fix node id validation While validating node ids in mapbenchmarkioctl, nodepossible may be provided with invalid argument outside of 0,MAXNUMNODES-1 range leading to: BUG: KASAN: wild-memory-access in...
CVE-2024-34777
CVE-2024-34777 affects the Linux kernel DMA mapping benchmark path. The issue occurs in the map_benchmark_ioctl() flow when validating node ids; node_possible() can receive an argument outside the valid [0, MAX_NUMNODES-1] range, enabling a KASAN wild-memory-access read in map_benchmark_ioctl (ke...