509 matches found
CVE-2025-21659 netdev: prevent accessing NAPI instances from another namespace
In the Linux kernel, the following vulnerability has been resolved: netdev: prevent accessing NAPI instances from another namespace The NAPI IDs were not fully exposed to user space prior to the netlink API, so they were never namespaced. The netlink API must ensure that at the very least NAPI...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates in the tunnapiallocfrags function of the net: tun module that could cause the kernel to crash...
PT-2025-30785
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.16.0-rc2-00624-ge926949dab03 Description A warning may be triggered in netif napi del locked during USB device disconnect due to a redundant call to netif napi del in the disconnect path. This occurs while NAPI...
PT-2026-4369
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel had an issue where interrupts were automatically enabled upon request, potentially firing before the associated NAPI context was fully initialized. This could lead to...
CVE-2024-56674 virtio_net: correct netdev_tx_reset_queue() invocation point
In the Linux kernel, the following vulnerability has been resolved: virtionet: correct netdevtxresetqueue invocation point When virtnetclose is followed by virtnetopen, some TX completions can possibly remain unconsumed, until they are finally processed during the first NAPI poll after the...
SUSE CVE-2024-50145
In the Linux kernel, the following vulnerability has been resolved: octeonep: Add SKB allocation failures handling in octepoqprocessrx buildskb returns NULL in case of a memory allocation failure so handle it inside octepoqprocessrx to avoid NULL pointer dereference. octepoqprocessrx is called...
CVE-2024-50145
In the Linux kernel, the following vulnerability has been resolved: octeonep: Add SKB allocation failures handling in octepoqprocessrx buildskb returns NULL in case of a memory allocation failure so handle it inside octepoqprocessrx to avoid NULL pointer dereference. octepoqprocessrx is called...
AZL-53391 CVE-2024-50145 affecting package kernel for versions less than 6.6.64.2-1
In the Linux kernel, the following vulnerability has been resolved: octeonep: Add SKB allocation failures handling in octepoqprocessrx buildskb returns NULL in case of a memory allocation failure so handle it inside octepoqprocessrx to avoid NULL pointer dereference. octepoqprocessrx is called...
CVE-2024-50145
In the Linux kernel, the following vulnerability has been resolved: octeonep: Add SKB allocation failures handling in octepoqprocessrx buildskb returns NULL in case of a memory allocation failure so handle it inside octepoqprocessrx to avoid NULL pointer dereference. octepoqprocessrx is called...
DEBIAN-CVE-2024-50145
In the Linux kernel, the following vulnerability has been resolved: octeonep: Add SKB allocation failures handling in octepoqprocessrx buildskb returns NULL in case of a memory allocation failure so handle it inside octepoqprocessrx to avoid NULL pointer dereference. octepoqprocessrx is called...
UBUNTU-CVE-2024-50145
In the Linux kernel, the following vulnerability has been resolved: octeonep: Add SKB allocation failures handling in octepoqprocessrx buildskb returns NULL in case of a memory allocation failure so handle it inside octepoqprocessrx to avoid NULL pointer dereference. octepoqprocessrx is called...
CVE-2024-50145 octeon_ep: Add SKB allocation failures handling in __octep_oq_process_rx()
In the Linux kernel, the following vulnerability has been resolved: octeonep: Add SKB allocation failures handling in octepoqprocessrx buildskb returns NULL in case of a memory allocation failure so handle it inside octepoqprocessrx to avoid NULL pointer dereference. octepoqprocessrx is called...
CVE-2024-50145 octeon_ep: Add SKB allocation failures handling in __octep_oq_process_rx()
In the Linux kernel, the following vulnerability has been resolved: octeonep: Add SKB allocation failures handling in octepoqprocessrx buildskb returns NULL in case of a memory allocation failure so handle it inside octepoqprocessrx to avoid NULL pointer dereference. octepoqprocessrx is called...
CVE-2024-50145 octeon_ep: Add SKB allocation failures handling in __octep_oq_process_rx()
In the Linux kernel, the following vulnerability has been resolved: octeonep: Add SKB allocation failures handling in octepoqprocessrx buildskb returns NULL in case of a memory allocation failure so handle it inside octepoqprocessrx to avoid NULL pointer dereference. octepoqprocessrx is called...
CVE-2024-50145
CVE-2024-50145 concerns the Linux kernel (octeon_ep driver) and fixes a NULL pointer dereference caused by skb allocation failures during RX processing. The change adds handling for skb allocation failures in __octep_oq_process_rx(), which may be invoked during NAPI polling. When build_skb() retu...
CVE-2024-50094 sfc: Don't invoke xdp_do_flush() from netpoll.
In the Linux kernel, the following vulnerability has been resolved: sfc: Don't invoke xdpdoflush from netpoll. Yury reported a crash in the sfc driver originated from netpollsendudp. The netconsole sends a message and then netpoll invokes the driver's NAPI function with a budget of zero. It is...
Malicious code in appdynamics-libagent-napi (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b3ccb8490c24108245e9e5e4893518e881e48f0dafa4b0ad152ab458de4e7b1b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-10319 Malicious code in appdynamics-libagent-napi (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b3ccb8490c24108245e9e5e4893518e881e48f0dafa4b0ad152ab458de4e7b1b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
SUSE CVE-2022-48962
In the Linux kernel, the following vulnerability has been resolved: net: hisilicon: Fix potential use-after-free in hisifemacrx The skb is delivered to napigroreceive which may free it, after calling this, dereferencing skb may trigger use-after-free...
SUSE CVE-2022-48985
In the Linux kernel, the following vulnerability has been resolved: net: mana: Fix race on per-CQ variable napi workdone After calling napicompletedone, the NAPIFSTATESCHED bit may be cleared, and another CPU can start napi thread and access per-CQ variable, cq-workdone. If the other thread for...