CVE-2024-57946

CVE-2024-57946 affects Linux kernel virtio-blk: during system suspend, the PM callbacks previously kept the block queue frozen, risking deadlocks if code path invoked bio_queue_enter() while suspended. The fix replaces queue quiesce with a freeze-and-thaw approach in virtio-blk PM callbacks and d...

CVE-2024-57946 virtio-blk: don't keep queue frozen during system suspend

In the Linux kernel, the following vulnerability has been resolved: virtio-blk: don't keep queue frozen during system suspend Commit 4ce6e2db00de "virtio-blk: Ensure no requests in virtqueues before deleting vqs." replaces queue quiesce with queue freeze in virtio-blk's PM callbacks. And the...

CVE-2024-57946 virtio-blk: don't keep queue frozen during system suspend

In the Linux kernel, the following vulnerability has been resolved: virtio-blk: don't keep queue frozen during system suspend Commit 4ce6e2db00de "virtio-blk: Ensure no requests in virtqueues before deleting vqs." replaces queue quiesce with queue freeze in virtio-blk's PM callbacks. And the...

DEBIAN-CVE-2024-57936

In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxtre: Fix max SGEs for the Work Request Gen P7 supports up to 13 SGEs for now. WQE software structure can hold only 6 now. Since the max send sge is reported as 13, the stack can give requests up to 13 SGEs. This is causin...

DEBIAN-CVE-2024-57935

In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix accessing invalid dipctx during destroying QP If it fails to modify QP to RTR, dipctx will not be attached. And during detroying QP, the invalid dipctx pointer will be accessed...

CVE-2024-57932

In the Linux kernel, the following vulnerability has been resolved: gve: guard XDP xmit NDO on existence of xdp queues In GVE, dedicated XDP queues only exist when an XDP program is installed and the interface is up. As such, the NDO XDP XMIT callback should return early if either of these...

CVE-2024-57933

In the Linux kernel, the following vulnerability has been resolved: gve: guard XSK operations on the existence of queues This patch predicates the enabling and disabling of XSK pools on the existence of queues. As it stands, if the interface is down, disabling or enabling XSK pools would result i...

AZL-56137 CVE-2024-57933 affecting package kernel for versions less than 6.6.76.1-1

In the Linux kernel, the following vulnerability has been resolved: gve: guard XSK operations on the existence of queues This patch predicates the enabling and disabling of XSK pools on the existence of queues. As it stands, if the interface is down, disabling or enabling XSK pools would result i...

UBUNTU-CVE-2024-57933

In the Linux kernel, the following vulnerability has been resolved: gve: guard XSK operations on the existence of queues This patch predicates the enabling and disabling of XSK pools on the existence of queues. As it stands, if the interface is down, disabling or enabling XSK pools would result i...

UBUNTU-CVE-2024-57935

In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix accessing invalid dipctx during destroying QP If it fails to modify QP to RTR, dipctx will not be attached. And during detroying QP, the invalid dipctx pointer will be accessed...

UBUNTU-CVE-2024-57932

In the Linux kernel, the following vulnerability has been resolved: gve: guard XDP xmit NDO on existence of xdp queues In GVE, dedicated XDP queues only exist when an XDP program is installed and the interface is up. As such, the NDO XDP XMIT callback should return early if either of these...

UBUNTU-CVE-2024-57936

In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxtre: Fix max SGEs for the Work Request Gen P7 supports up to 13 SGEs for now. WQE software structure can hold only 6 now. Since the max send sge is reported as 13, the stack can give requests up to 13 SGEs. This is causin...

CVE-2024-57935 RDMA/hns: Fix accessing invalid dip_ctx during destroying QP

In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix accessing invalid dipctx during destroying QP If it fails to modify QP to RTR, dipctx will not be attached. And during detroying QP, the invalid dipctx pointer will be accessed...

CVE-2024-57933

CVE-2024-57933 (Linux kernel, GVE/XDP/XSK) : The issue arises from races around XSK/XDP queue existence. The patch adds guards to XSK operations and XDP xmit/NDO paths based on queue existence and interface state, preventing crashes when interfaces go down or queues disappear during operation. It...

CVE-2024-57933 gve: guard XSK operations on the existence of queues

In the Linux kernel, the following vulnerability has been resolved: gve: guard XSK operations on the existence of queues This patch predicates the enabling and disabling of XSK pools on the existence of queues. As it stands, if the interface is down, disabling or enabling XSK pools would result i...

CVE-2024-57933 gve: guard XSK operations on the existence of queues

In the Linux kernel, the following vulnerability has been resolved: gve: guard XSK operations on the existence of queues This patch predicates the enabling and disabling of XSK pools on the existence of queues. As it stands, if the interface is down, disabling or enabling XSK pools would result i...

CVE-2024-57933

In the Linux kernel, the following vulnerability has been resolved: gve: guard XSK operations on the existence of queues This patch predicates the enabling and disabling of XSK pools on the existence of queues. As it stands, if the interface is down, disabling or enabling XSK pools would result i...

CVE-2024-57933 gve: guard XSK operations on the existence of queues

In the Linux kernel, the following vulnerability has been resolved: gve: guard XSK operations on the existence of queues This patch predicates the enabling and disabling of XSK pools on the existence of queues. As it stands, if the interface is down, disabling or enabling XSK pools would result i...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the RDMA/hns module accessing an invalid dipctx pointer when destroying a QP. This could lead to a system...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from the gve module not checking for the existence of a queue during an XSK operation. This could result in a system...