8 matches found
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from mlx5e not properly handling the non-linear xdpbuff, which could lead to incorrect skb generation...
CVE-2023-53632
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Take RTNL lock when needed before calling xdpsetfeatures Hold RTNL lock when calling xdpsetfeatures with a registered netdev, as the call triggers the netdev notifiers. This could happen when switching from uplink rep ...
Vulnerability of the mlx5_coredestroy_cq() function in the drivers/net/ethernet/mellanox/mlx5/core/cq.c file – a driver for supporting Mellanox Ethernet network adapters in the Linux operating system, which allows an attacker to cause a service failure.
Vulnerability of the mlx5coredestroycq function in the drivers/net/ethernet/mellanox/mlx5/core/cq.c module – The drivers for Mellanox Ethernet network adapters in Linux operating systems are vulnerable to a memory leak before the last reference is freed. Exploiting this vulnerability could allow ...
Vulnerability of the mlx5_cmd_init() function in the drivers/net/ethernet/mellanox/mlx5/core/cmd.c file – This is a driver for supporting Mellanox Ethernet network adapters in Linux operating systems. It allows a hacker to cause a service failure.
Vulnerability of the mlx5cmdinit function in the drivers/net/ethernet/mellanox/mlx5/core/cmd.c file – The Mellanox Ethernet network adapter driver for Linux operating systems is vulnerable due to a reliance on the NULL pointer dereferencing mechanism. Exploiting this vulnerability could allow an...
The vulnerability of the mlx5_eswitch_set_vepa() function in the Mellanox Ethernet adapter driver for Linux operating systems allows a hacker to cause a service failure.
The vulnerability of the mlx5eswitchsetvepa function in the Mellanox Ethernet network adapter driver for Linux operating systems is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the Linux operating system’s kernel component “perf”, which allows a hacker to trigger a service failure
The vulnerability of the net/mlx5e components in the Linux operating system’s kernel is related to the lack of memory release after the effective lifespan of these components has ended. Exploiting this vulnerability can allow an attacker to cause a service failure...
kernel: net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink
In Linux kernel net/mlx5e, for SHAMPO, it is possible to receive CQEs with 0 consumed strides for the same WQE even after the WQE is fully consumed and unlinked. This triggers an additional unlink for the same wqe which corrupts the linked list...
kernel: net/mlx5e: Take RTNL lock when needed before calling xdp_set_features()
A locking flaw in the Mellanox mlx5 Ethernet driver allowed calls to xdpsetfeatures without holding the required rtnetlink RTNL lock. A local administrator switching device profiles for example, from an uplink representor to a Network Interface Card profile could trigger notifier paths without...