177 matches found
kernel: Linux kernel: Memory leak in RDMA/irdma subsystem leads to Denial of Service
A flaw was found in the Linux kernel's RDMA/irdma subsystem. When the irdma module is unloaded, certain memory objects PBLEs are not properly released, leading to a memory leak. A local attacker could repeatedly trigger this condition, causing system memory to be exhausted and resulting in a Deni...
kernel: RDMA/rxe: Fix "kernel NULL pointer dereference" error
A NULL pointer dereference vulnerability was found in the RXE Soft-RoCE RDMA driver in the Linux kernel. When rxequeueinit fails during queue pair initialization in rxeqpinitreq, the task function and argument pointers qp-req.task.func and qp-req.task.arg remain uninitialized. The cleanup functio...
PT-2023-35163 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions v5.2 through v5.15.90 Description: A potential security issue exists due to an ib block iterator counter overflow in the RDMA/core component. The actual impact and attack plausibility have not yet been proven...
PT-2022-34106 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions 4.16 through 5.10.136 Description: The issue is related to the incorrect clearing of the interrupt status register in RDMA/hns. The actual impact and attack plausibility have not yet been proven. Recommendations: For Lin...
UBUNTU-CVE-2022-0812
An information leak flaw was found in NFS over RDMA in the net/sunrpc/xprtrdma/rpcrdma.c in the Linux Kernel. This flaw allows an attacker with normal user privileges to leak kernel information...
CVE-2021-4218
A flaw was found in the Linux kernel’s implementation of reading the SVC RDMA counters. Reading the counter sysctl panics the system. This flaw allows a local attacker with local access to cause a denial of service while the system reboots. The issue is specific to CentOS/RHEL...
DEBIAN-CVE-2022-1050
A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. This flaw allows a crafted guest driver to execute HW commands when shared buffers are not yet allocated, potentially leading to a use-after-free condition...
kernel: nvmet-rdma: Fix NULL deref when SEND is completed with error
A flaw was found in an error-handling function in the Linux kernel's NVMe driver. This flaw allows an attacker with control over NVMe links to cause a denial of service...
Another Side Channel in Intel Chips
Not that serious, but interesting: In late 2011, Intel introduced a performance enhancement to its line of server processors that allowed network cards and other peripherals to connect directly to a CPU's last-level cache, rather than following the standard and significantly longer path through t...
Intel CPUs Vulnerable to Sensitive Data Leakage in NetCAT Attack
Researchers have identified a new side-channel attack impacting all modern Intel server processors made since 2012. The vulnerability could allow bad actors to sniff out encrypted passwords as they are being typed into a secure shell session SSH; but, luckily, such an attack would be difficult to...
New Rowhammer Attack Can Hijack Computers Remotely Over the Network
Exploitation of Rowhammer attack just got easier. Dubbed 'Throwhammer,' the newly discovered technique could allow attackers to launch Rowhammer attack on the targeted systems just by sending specially crafted packets to the vulnerable network cards over the local area network. Known since 2012,...
Moderate: Red Hat Bug Fix Advisory: Red Hat Storage 3.0 enhancement and bug fix update #3
Updated glusterfs, gluster-afr, gluster-dht, distribution, build, gluster-nfs, gluster-quota, gluster-smb, gluster-snapshot, gluster-swift, glusterfs-geo-replication, glusterfs-rdma, and glusterfs-server packages that fix numerous bugs and add various enhancements are now available for Red Hat...
CentOS Update for libibverbs CESA-2013:0509 centos6
Check for the Version of libibverbs OpenVAS Vulnerability Test CentOS Update for libibverbs CESA-2013:0509 centos6 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...
CentOS Update for ibacm CESA-2013:0509 centos6
Check for the Version of ibacm OpenVAS Vulnerability Test CentOS Update for ibacm CESA-2013:0509 centos6 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
CentOS 6 : ibacm / ibsim / ibutils / infiniband-diags / infinipath-psm / libibmad / libibumad / etc (CESA-2013:0509)
Updated RDMA packages that fix multiple security issues, various bugs, and add an enhancement are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. Common Vulnerability Scoring System CVSS base scores, which give...
RedHat Update for rdma RHSA-2013:0509-02
Check for the Version of rdma OpenVAS Vulnerability Test RedHat Update for rdma RHSA-2013:0509-02 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms o...
RedHat Update for rdma RHSA-2013:0509-02
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...