11 matches found
Linux Distros Unpatched Vulnerability : CVE-2021-47078
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Clear all QP fields if creation failed rxeqpdocleanup relies on valid pointer valu...
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-2476)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-2002)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-1592)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2024:0975-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2024:0926-1 Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP2 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2021-47078: Fixed a bug by clearing all QP fields if creation failed bsc1220863 - CVE-2021-47076: Fixed a bug by returning CQE error if invalid lkey was supplied...
SUSE-SU-2024:0925-1 Security update for the Linux Kernel
The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2021-47078: Fixed a bug by clearing all QP fields if creation failed bsc1220863 - CVE-2021-47076: Fixed a bug by returning CQE error if invalid lkey was supplied...
CVE-2021-47078
A use-after-free vulnerability was found in the Linux kernel, affecting the RDMA/rxe component. This issue occurs because the rxeqpdocleanup function depends on valid pointer values in the RXE QP structure. However, if that structure fails to initialize properly, it may populate with garbage valu...
CVE-2021-47078
creationtimestamp| type| source ---|---|--- 2024-03-01 23:26:53+00:00| seen| https://t.me/ctinow/198101 2024-03-01 23:31:58+00:00| seen| https://t.me/ctinow/198119 2024-03-03 11:11:25+00:00| seen| https://t.me/ctinow/198678...
CVE-2021-47078
In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Clear all QP fields if creation failed rxeqpdocleanup relies on valid pointer values in QP for the properly created ones, but in case rxeqpfrominit failed it was filled with garbage and caused tot the following error...
CVE-2021-47078
CVE-2021-47078 affects the Linux kernel RDMA/rxe path. The root cause is in rxe_qp_from_init() where, if QP initialization fails, the code could leave QP fields garbage. This leads to a use-after-free scenario with a refcount underflow in refcount.c (totally described in the given stack trace), c...