Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from improper request handling in the RDMA/rxe module, resulting in a memory leak...

Vulnerability of RDMA/cma components of Linux operating system cores, allowing a hacker to trigger a service failure

The vulnerability of RDMA/cma components in Linux operating systems is related to memory leaks in the cmavalidateport function. Exploiting this vulnerability can allow an attacker to cause a service failure...

PT-2025-3576

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.12.0-rc3-syzkaller-00399-g9197b73fd7bb Description A slab-use-after-free issue has been identified in the Linux kernel, specifically in the RDMA/rxe component. This problem occurs when the event ib cache event...

CVE-2024-50208

...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a failure to properly handle dml allocation failures in the drm/amd/display driver, which could lead to a...

UBUNTU-CVE-2024-53094

In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Add sendpageok check to disable MSGSPLICEPAGES While running ISER over SIW, the initiator machine encounters a warning from skbsplicefromiter indicating that a slab page is being used in sendpage. To address this, it is...

DEBIAN-CVE-2024-50295

In the Linux kernel, the following vulnerability has been resolved: net: arc: fix the device for dmamapsingle/dmaunmapsingle The ndev-dev and pdev-dev aren't the same device, use ndev-dev.parent which has dmamask, ndev-dev.parent is just pdev-dev. Or it would cause the following issue: 39.933526...

DEBIAN-CVE-2024-50297

In the Linux kernel, the following vulnerability has been resolved: net: xilinx: axienet: Enqueue Tx packets in dql before dmaengine starts Enqueue packets in dql after dma engine starts causes race condition. Tx transfer starts once dma engine is started and may execute dql dequeue in completion...

UBUNTU-CVE-2024-50295

In the Linux kernel, the following vulnerability has been resolved: net: arc: fix the device for dmamapsingle/dmaunmapsingle The ndev-dev and pdev-dev aren't the same device, use ndev-dev.parent which has dmamask, ndev-dev.parent is just pdev-dev. Or it would cause the following issue: 39.933526...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the presence of unbalanced DMA mapping or unmapping of non-page SKB data...

kernel: dmaengine: ti: k3-udma: Reset UDMA_CHAN_RT byte counters to prevent overflow

A counter-overflow flaw was found in the Linux kernel Texas Instruments K3 Universal Direct Memory Access UDMA driver. During long data transfers exceeding four gigabytes, the hardware byte-count registers could wrap and misreport progress, causing the transfer to hang indefinitely. A local user...

kernel: usb: xhci: Add error handling in xhci_map_urb_for_dma

In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Add error handling in xhcimapurbfordma The Linux kernel CVE team has assigned CVE-2024-26964 to this issue. Upstream advisory: https://lore.kernel.org/linux-cve-announce/2024050130-CVE-2024-26964-54c8@gregkh/T...

kernel: nvmet: always initialize cqe.result

In the Linux kernel, the following vulnerability has been resolved: nvmet: always initialize cqe.result The spec doesn't mandate that the first two double words aka results for the command queue entry need to be set to 0 when they are not used not specified. Though, the target implemention return...

kernel: bnxt_en: Fix double DMA unmapping for XDP_REDIRECT

A flaw was found in the bnxten module in the Linux kernel. A double DMA unmapping can trigger a kernel warning and cause a denial of service...

kernel: atl1c: Work around the DMA RX overflow issue

In the Linux kernel, the following vulnerability has been resolved: atl1c: Work around the DMA RX overflow issue This is based on alx driver commit 881d0327db37 "net: alx: Work around the DMA RX overflow issue". The alx and atl1c drivers had RX overflow error which was why a custom allocator was...

kernel: dma-direct: Leak pages on dma_set_decrypted() failure

In the Linux kernel, the following vulnerability has been resolved: dma-direct: Leak pages on dmasetdecrypted failure The Linux kernel CVE team has assigned CVE-2024-35939 to this issue. Upstream advisory: https://lore.kernel.org/linux-cve-announce/2024051919-CVE-2024-35939-f877@gregkh/T...

SUSE CVE-2024-50206

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: mtkethsoc: fix memory corruption during fq dma init The loop responsible for allocating up to MTKFQDMALENGTH buffers must only touch as many descriptors, otherwise it ends up corrupting unrelated memory. Fix the lo...

SUSE CVE-2024-50209

In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxtre: Add a check for memory allocation allocpbl can return error when memory allocation fails. Driver is not checking the status on one of the instances...

CVE-2024-47696

...

DEBIAN-CVE-2024-50208

In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxtre: Fix a bug while setting up Level-2 PBL pages Avoid memory corruption while setting up Level-2 PBL pages for the non MR resources when numpages 256K. There will be a single PDE page address contiguous pages in the cas...