3 matches found
AZL-10758 CVE-2022-0168 affecting package kernel for versions less than 5.15.67.1-4
A denial of service DOS issue was found in the Linux kernel’s smb2ioctlqueryinfo function in the fs/cifs/smb2ops.c Common Internet File System CIFS due to an incorrect return from the memdupuser function. This flaw allows a local, privileged CAPSYSADMIN attacker to crash the system...
AZL-10616 CVE-2021-33655 affecting package kernel for versions less than 5.15.67.1-4
When sending malicous data to kernel by ioctl cmd FBIOPUTVSCREENINFO,kernel will write memory out of bounds...
AZL-10108 CVE-2022-33744 affecting package kernel for versions less than 5.15.67.1-4
Arm guests can cause Dom0 DoS via PV devices When mapping pages of guests on Arm, dom0 is using an rbtree to keep track of the foreign mappings. Updating of that rbtree is not always done completely with the related lock held, resulting in a small race window, which can be used by unprivileged...