CVE-2023-52834 atl1c: Work around the DMA RX overflow issue

In the Linux kernel, the following vulnerability has been resolved: atl1c: Work around the DMA RX overflow issue This is based on alx driver commit 881d0327db37 "net: alx: Work around the DMA RX overflow issue". The alx and atl1c drivers had RX overflow error which was why a custom allocator was...

CVE-2023-52834

CVE-2023-52834 was resolved in the Linux kernel by addressing a DMA RX overflow in the alx/atl1c drivers. The fix replaces a custom allocator with a check on the allocated skb address and uses skb_reserve() to avoid the problematic 0x…fc0 address. The alx workaround was implemented first; the atl...

CVE-2023-52834

In the Linux kernel, the following vulnerability has been resolved: atl1c: Work around the DMA RX overflow issue This is based on alx driver commit 881d0327db37 "net: alx: Work around the DMA RX overflow issue". The alx and atl1c drivers had RX overflow error which was why a custom allocator was...

AZL-67752 CVE-2024-35939 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: dma-direct: Leak pages on dmasetdecrypted failure On TDX it is possible for the untrusted host to cause setmemoryencrypted or setmemorydecrypted to fail such that an error is returned and the resulting memory is shared. Callers...

DEBIAN-CVE-2024-35939

In the Linux kernel, the following vulnerability has been resolved: dma-direct: Leak pages on dmasetdecrypted failure On TDX it is possible for the untrusted host to cause setmemoryencrypted or setmemorydecrypted to fail such that an error is returned and the resulting memory is shared. Callers...

CVE-2024-35939

In the Linux kernel, the following vulnerability has been resolved: dma-direct: Leak pages on dmasetdecrypted failure On TDX it is possible for the untrusted host to cause setmemoryencrypted or setmemorydecrypted to fail such that an error is returned and the resulting memory is shared. Callers...

CVE-2024-35939

CVE-2024-35939 affects the Linux kernel: dma-direct: Leak pages on dma_set_decrypted() failure. In TDx, set_memory_encrypted()/set_memory_decrypted() failures can cause memory to be shared; DMA could leak decrypted/shared pages instead of freeing them, potentially leading to functional or securit...

PT-2024-26790

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to the dma-direct feature in the Linux kernel, where an untrusted host on TDX can cause set memory encrypted or set memory decrypted to fail, resulting in shared...

UBUNTU-CVE-2022-48702

In the Linux kernel, the following vulnerability has been resolved: ALSA: emu10k1: Fix out of bounds access in sndemu10k1pcmchannelalloc The voice allocator sometimes begins allocating from near the end of the array and then wraps around, however sndemu10k1pcmchannelalloc accesses the newly...

SUSE CVE-2024-26983

In the Linux kernel, the following vulnerability has been resolved: bootconfig: use memblockfreelate to free xbc memory to buddy On the time to free xbc memory in xbcexit, memblock may has handed over memory to buddy allocator. So it doesn't make sense to free memory back to memblock. memblockfre...

DEBIAN-CVE-2024-26983

In the Linux kernel, the following vulnerability has been resolved: bootconfig: use memblockfreelate to free xbc memory to buddy On the time to free xbc memory in xbcexit, memblock may has handed over memory to buddy allocator. So it doesn't make sense to free memory back to memblock. memblockfre...

AZL-54584 CVE-2024-26983 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: bootconfig: use memblockfreelate to free xbc memory to buddy On the time to free xbc memory in xbcexit, memblock may has handed over memory to buddy allocator. So it doesn't make sense to free memory back to memblock. memblockfre...

UBUNTU-CVE-2024-26983

In the Linux kernel, the following vulnerability has been resolved: bootconfig: use memblockfreelate to free xbc memory to buddy On the time to free xbc memory in xbcexit, memblock may has handed over memory to buddy allocator. So it doesn't make sense to free memory back to memblock. memblockfre...

CVE-2024-26983

CVE-2024-26983 is a Linux kernel issue about freeing xbc memory in bootconfig. The root cause was memblock_free() being used during xbc_exit() when memory may have already been handed to the buddy allocator, causing use-after-free (UAF) on certain architectures (e.g., CONFIG_ARCH_KEEP_MEMBLOCK di...

kernel: ext4: set goal start correctly in ext4_mb_normalize_request

A flaw was found in the Linux kernel's ext4 filesystem block allocator. In ext4mbnormalizerequest, the goal start was being set incorrectly acfex instead of acgex, and boundary validation was missing. Without proper range checking, an underflow in ar-pright - size could pass an invalid value to...

SUSE CVE-2022-48659

In the Linux kernel, the following vulnerability has been resolved: mm/slub: fix to return errno if kmalloc fails In createuniqueid, kmalloc, GFPKERNEL can fail due to out-of-memory, if it fails, return errno correctly rather than triggering panic via BUGON; kernel BUG at mm/slub.c:5893! Internal...

SUSE CVE-2022-48658

In the Linux kernel, the following vulnerability has been resolved: mm: slub: fix flushcpuslab/freeslab invocations in task context. Commit 5a836bf6b09f "mm: slub: move flushcpuslab invocations freeslab invocations out of IRQ context" moved all flushcpuslab invocations to the global workqueue to...

DEBIAN-CVE-2022-48659

In the Linux kernel, the following vulnerability has been resolved: mm/slub: fix to return errno if kmalloc fails In createuniqueid, kmalloc, GFPKERNEL can fail due to out-of-memory, if it fails, return errno correctly rather than triggering panic via BUGON; kernel BUG at mm/slub.c:5893! Internal...

DEBIAN-CVE-2022-48649

In the Linux kernel, the following vulnerability has been resolved: mm/slabcommon: fix possible double free of kmemcache When doing slubdebug test, kfence's 'testmemcachetypesafebyrcu' kunit test case cause a use-after-free error: BUG: KASAN: use-after-free in kobjectdel+0x14/0x30 Read of size 8 ...

UBUNTU-CVE-2022-48658

In the Linux kernel, the following vulnerability has been resolved: mm: slub: fix flushcpuslab/freeslab invocations in task context. Commit 5a836bf6b09f "mm: slub: move flushcpuslab invocations freeslab invocations out of IRQ context" moved all flushcpuslab invocations to the global workqueue to...