561 matches found
PT-2026-2900
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to kexec and the Integrity Measurement Architecture IMA. Specifically, the issue arises when the kexec target address is allocated within the CM...
DEBIAN-CVE-2022-21505
In the linux kernel, if IMA appraisal is used with the "imaappraise=log" boot param, lockdown can be defeated with kexec on any machine when Secure Boot is disabled or unavailable. IMA prevents setting "imaappraise=log" from the boot param when Secure Boot is enabled, but this does not cover case...
CVE-2022-21505
In the linux kernel, if IMA appraisal is used with the "imaappraise=log" boot param, lockdown can be defeated with kexec on any machine when Secure Boot is disabled or unavailable. IMA prevents setting "imaappraise=log" from the boot param when Secure Boot is enabled, but this does not cover case...
CVE-2022-21505
In the linux kernel, if IMA appraisal is used with the "imaappraise=log" boot param, lockdown can be defeated with kexec on any machine when Secure Boot is disabled or unavailable. IMA prevents setting "imaappraise=log" from the boot param when Secure Boot is enabled, but this does not cover case...
CVE-2024-50303
In the Linux kernel, the following vulnerability has been resolved: resource,kexec: walksystemramresrev must retain resource flags walksystemramresrev erroneously discards resource flags when passing the information to the callback. This causes systems with IORESOURCESYSRAMDRIVERMANAGED memory to...
SUSE CVE-2024-50303
In the Linux kernel, the following vulnerability has been resolved: resource,kexec: walksystemramresrev must retain resource flags walksystemramresrev erroneously discards resource flags when passing the information to the callback. This causes systems with IORESOURCESYSRAMDRIVERMANAGED memory to...
CVE-2024-50303
In the Linux kernel, the following vulnerability has been resolved: resource,kexec: walksystemramresrev must retain resource flags walksystemramresrev erroneously discards resource flags when passing the information to the callback. This causes systems with IORESOURCESYSRAMDRIVERMANAGED memory to...
DEBIAN-CVE-2024-50303
In the Linux kernel, the following vulnerability has been resolved: resource,kexec: walksystemramresrev must retain resource flags walksystemramresrev erroneously discards resource flags when passing the information to the callback. This causes systems with IORESOURCESYSRAMDRIVERMANAGED memory to...
UBUNTU-CVE-2024-50303
In the Linux kernel, the following vulnerability has been resolved: resource,kexec: walksystemramresrev must retain resource flags walksystemramresrev erroneously discards resource flags when passing the information to the callback. This causes systems with IORESOURCESYSRAMDRIVERMANAGED memory to...
CVE-2024-50303
CVE-2024-50303 affects the Linux kernel: walk_system_ram_res_rev discards resource flags when passing information to the callback, causing IORESOURCE_SYSRAM_DRIVER_MANAGED memory to be selected for kexec buffers if located above normal RAM. This can lead to undefined behavior after reboot or a cr...
CVE-2024-50303 resource,kexec: walk_system_ram_res_rev must retain resource flags
In the Linux kernel, the following vulnerability has been resolved: resource,kexec: walksystemramresrev must retain resource flags walksystemramresrev erroneously discards resource flags when passing the information to the callback. This causes systems with IORESOURCESYSRAMDRIVERMANAGED memory to...
CVE-2024-50303 resource,kexec: walk_system_ram_res_rev must retain resource flags
In the Linux kernel, the following vulnerability has been resolved: resource,kexec: walksystemramresrev must retain resource flags walksystemramresrev erroneously discards resource flags when passing the information to the callback. This causes systems with IORESOURCESYSRAMDRIVERMANAGED memory to...
CVE-2024-50303 resource,kexec: walk_system_ram_res_rev must retain resource flags
In the Linux kernel, the following vulnerability has been resolved: resource,kexec: walksystemramresrev must retain resource flags walksystemramresrev erroneously discards resource flags when passing the information to the callback. This causes systems with IORESOURCESYSRAMDRIVERMANAGED memory to...
kernel: x86/kexec: Fix double-free of elf header buffer
In the Linux kernel, the following vulnerability has been resolved: x86/kexec: Fix double-free of elf header buffer After b3e34a47f989 "x86/kexec: fix memory leak of elf header buffer", freeing image-elfheaders in the error path of crashloadsegments is not needed because kimagefilepostloadcleanup...
SUSE CVE-2024-49858
In the Linux kernel, the following vulnerability has been resolved: efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption The TPM event log table is a Linux specific construct, where the data produced by the GetEventLog boot service is cached in memory, and passed on to the OS...
DEBIAN-CVE-2024-49858
In the Linux kernel, the following vulnerability has been resolved: efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption The TPM event log table is a Linux specific construct, where the data produced by the GetEventLog boot service is cached in memory, and passed on to the OS...
AZL-50957 CVE-2024-49858 affecting package kernel for versions less than 6.6.56.1-5
In the Linux kernel, the following vulnerability has been resolved: efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption The TPM event log table is a Linux specific construct, where the data produced by the GetEventLog boot service is cached in memory, and passed on to the OS...
UBUNTU-CVE-2024-49858
In the Linux kernel, the following vulnerability has been resolved: efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption The TPM event log table is a Linux specific construct, where the data produced by the GetEventLog boot service is cached in memory, and passed on to the OS...
CVE-2024-49858 efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption
In the Linux kernel, the following vulnerability has been resolved: efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption The TPM event log table is a Linux specific construct, where the data produced by the GetEventLog boot service is cached in memory, and passed on to the OS...
kexec-tools bug fix update
An update is available for kexec-tools. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The kexec-tools packages contain the /sbin/kexec binary and utilities tha...