1252 matches found
AZL-50659 CVE-2024-47684 affecting package kernel for versions less than 6.6.56.1-5
In the Linux kernel, the following vulnerability has been resolved: tcp: check skb is non-NULL in tcprtodeltaus We have some machines running stock Ubuntu 20.04.6 which is their 5.4.0-174-generic kernel that are running ceph and recently hit a null ptr dereference in tcprearmrto. Initially hittin...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a possible skb leak in the grethinitrings function of the ethernet driver aeroflex...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the possibility that skb may be released after use in the hsr protocol, resulting in a post-release reuse...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from incorrect handling in the e100xmitprepare function, which could cause a skb to be incorrectly released on a...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from improper handling of the skb in the can327 subsystem of the can protocol during netdev shutdown, resulting i...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the skb cb in the tipc component not being reacquired after tipcmsgvalidate, resulting in a post-release reu...
kernel: ibmvnic: Add tx check to prevent skb leak
In the Linux kernel, the following vulnerability has been resolved: ibmvnic: Add tx check to prevent skb leak Below is a summary of how the driver stores a reference to an skb during transmit: txbufffreemapconsumerindex-skb = newskb; freemapconsumerindex = IBMVNICINVALIDMAP; consumerindex ++; Whe...
kernel: ibmvnic: Add tx check to prevent skb leak
In the Linux kernel, the following vulnerability has been resolved: ibmvnic: Add tx check to prevent skb leak Below is a summary of how the driver stores a reference to an skb during transmit: txbufffreemapconsumerindex-skb = newskb; freemapconsumerindex = IBMVNICINVALIDMAP; consumerindex ++; Whe...
ipv6: prevent UAF in ip6_send_skb()
...
Exploit for Use After Free in Linux Linux_Kernel
RU GenIoURingExploit is a PoC exploit targeting a specific...
Exploit for Use After Free in Linux Linux_Kernel
RU GenIoURingExploit is a PoC exploit targeting a specific...
kernel: net/sched: act_mirred: don't override retval if we already lost the skb
A use-after-free flaw was found in net/sched/actmirred.c in the Linux kernel. This may result in a crash...
SUSE CVE-2024-46717
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: SHAMPO, Fix incorrect page release Under the following conditions: 1 No skb created yet 2 headersize == 0 no SHAMPO header 3 headerindex + 1 % MLX5ESHAMPOWQHEADERPERPAGE == 0 this is the last page fragment of a SHAMPO...
DEBIAN-CVE-2024-46749
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btnxpuart: Fix Null pointer dereference in btnxpuartflush This adds a check before freeing the rx-skb in flush and close functions to handle the kernel crash seen while removing driver after FW download fails or before...
apparmor: Fix null pointer deref when receiving skb during sock creation
...
Bluetooth: btusb: mediatek: Fix double free of skb in coredump
...
xen-netfront: Add missing skb_mark_for_recycle
...
DEBIAN-CVE-2024-44998
In the Linux kernel, the following vulnerability has been resolved: atm: idt77252: prevent use after free in dequeuerx We can't dereference "skb" after calling vcc-push because the skb is released...
DEBIAN-CVE-2024-45001
In the Linux kernel, the following vulnerability has been resolved: net: mana: Fix RX buf allocsize alignment and atomic op panic The MANA driver's RX buffer allocsize is passed into napibuildskb to create SKB. skbshinfoskb is located at the end of skb, and its alignment is affected by the...
UBUNTU-CVE-2024-44985
In the Linux kernel, the following vulnerability has been resolved: ipv6: prevent possible UAF in ip6xmit If skbexpandhead returns NULL, skb has been freed and the associated dst/idev could also have been freed. We must use rcureadlock to prevent a possible UAF...