The vulnerability of the IBM MQ Operator software, which manages containerized environments, stems from the use of cryptographic algorithms that contain defects. This allows attackers to exploit these vulnerabilities to disclose protected information.

The vulnerability of the IBM MQ Operator, a software tool for managing containerized environments, is related to the use of cryptographic algorithms that contain vulnerabilities. Exploiting this vulnerability could allow a malicious actor, operating remotely, to disclose protected information...

block, bfq: fix bfqq uaf in bfq_limit_depth()

...

nvme: tcp: avoid race between queue_lock lock and destroy

...

octeon_ep: Add SKB allocation failures handling in __octep_oq_process_rx()

...

virtio/vsock: Fix accept_queue memory leak

...

The vulnerability of the Migrate queue importer in Drupal CMS systems, related to the manipulation of cross-site requests, allows a hacker to perform a CSRF attack.

The vulnerability of the Migrate queue importer in Drupal CMS systems is related to the manipulation of cross-site requests. Exploiting this vulnerability allows a malicious actor to perform a CSRF attack remotely...

IBM MQ 加密问题漏洞

IBM MQ is a messaging middleware product from International Business Machines IBM. The product focuses on providing a reliable and validated messaging backbone for Service Oriented Architecture SOA. An encryption issue vulnerability exists in IBM MQ Container that stems from the use of a...

The vulnerability of the professional video editing software Adobe Premiere Pro, caused by buffer overflows in the queue, allows a hacker to execute arbitrary code.

The vulnerability of the professional video editing software Adobe Premiere Pro stems from buffer overflows in the queue. Exploiting this vulnerability allows an attacker to execute arbitrary code in the context of the current user, using a specially created file...

SUSE CVE-2024-57933

In the Linux kernel, the following vulnerability has been resolved: gve: guard XSK operations on the existence of queues This patch predicates the enabling and disabling of XSK pools on the existence of queues. As it stands, if the interface is down, disabling or enabling XSK pools would result i...

SUSE CVE-2024-57935

In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix accessing invalid dipctx during destroying QP If it fails to modify QP to RTR, dipctx will not be attached. And during detroying QP, the invalid dipctx pointer will be accessed...

SUSE CVE-2024-57942

In the Linux kernel, the following vulnerability has been resolved: netfs: Fix ceph copy to cache on write-begin At the end of netfsunlockreadfolio in which folios are marked appropriately for copying to the cache either with by being marked dirty and having their private data set or by having...

SUSE CVE-2024-57946

In the Linux kernel, the following vulnerability has been resolved: virtio-blk: don't keep queue frozen during system suspend Commit 4ce6e2db00de "virtio-blk: Ensure no requests in virtqueues before deleting vqs." replaces queue quiesce with queue freeze in virtio-blk's PM callbacks. And the...

CVE-2024-57946

In the Linux kernel, the following vulnerability has been resolved: virtio-blk: don't keep queue frozen during system suspend Commit 4ce6e2db00de "virtio-blk: Ensure no requests in virtqueues before deleting vqs." replaces queue quiesce with queue freeze in virtio-blk's PM callbacks. And the...

CVE-2024-57933

In the Linux kernel, the following vulnerability has been resolved: gve: guard XSK operations on the existence of queues This patch predicates the enabling and disabling of XSK pools on the existence of queues. As it stands, if the interface is down, disabling or enabling XSK pools would result i...

CVE-2024-57946

In the Linux kernel, the following vulnerability has been resolved: virtio-blk: don't keep queue frozen during system suspend Commit 4ce6e2db00de "virtio-blk: Ensure no requests in virtqueues before deleting vqs." replaces queue quiesce with queue freeze in virtio-blk's PM callbacks. And the...

DEBIAN-CVE-2024-57942

In the Linux kernel, the following vulnerability has been resolved: netfs: Fix ceph copy to cache on write-begin At the end of netfsunlockreadfolio in which folios are marked appropriately for copying to the cache either with by being marked dirty and having their private data set or by having...

UBUNTU-CVE-2024-57946

In the Linux kernel, the following vulnerability has been resolved: virtio-blk: don't keep queue frozen during system suspend Commit 4ce6e2db00de "virtio-blk: Ensure no requests in virtqueues before deleting vqs." replaces queue quiesce with queue freeze in virtio-blk's PM callbacks. And the...

UBUNTU-CVE-2024-57941

In the Linux kernel, the following vulnerability has been resolved: netfs: Fix the non-cancellation of copy when cache is temporarily disabled When the caching for a cookie is temporarily disabled e.g. due to a DIO write on that file, future copying to the cache for that file is disabled until al...

UBUNTU-CVE-2024-57942

In the Linux kernel, the following vulnerability has been resolved: netfs: Fix ceph copy to cache on write-begin At the end of netfsunlockreadfolio in which folios are marked appropriately for copying to the cache either with by being marked dirty and having their private data set or by having...

CVE-2024-57946 virtio-blk: don't keep queue frozen during system suspend

In the Linux kernel, the following vulnerability has been resolved: virtio-blk: don't keep queue frozen during system suspend Commit 4ce6e2db00de "virtio-blk: Ensure no requests in virtqueues before deleting vqs." replaces queue quiesce with queue freeze in virtio-blk's PM callbacks. And the...