1203 matches found
SUSE CVE-2024-50254
In the Linux kernel, the following vulnerability has been resolved: bpf: Free dynamically allocated bits in bpfiterbitsdestroy bpfiterbitsdestroy uses "kit-nrbits kmemleakalloc+0x4b/0x80 kmallocnodenoprof+0x480/0x5c0 alloc.isra.0+0x89/0xb0 allocbulk+0x2af/0x720 prefillmemcache+0x7f/0xb0...
DEBIAN-CVE-2024-50253
In the Linux kernel, the following vulnerability has been resolved: bpf: Check the validity of nrwords in bpfiterbitsnew Check the validity of nrwords in bpfiterbitsnew. Without this check, when multiplication overflow occurs for nrbits e.g., when nrwords = 0x0400-0001, nrbits becomes 64, stack...
DEBIAN-CVE-2024-50254
In the Linux kernel, the following vulnerability has been resolved: bpf: Free dynamically allocated bits in bpfiterbitsdestroy bpfiterbitsdestroy uses "kit-nrbits kmemleakalloc+0x4b/0x80 kmallocnodenoprof+0x480/0x5c0 alloc.isra.0+0x89/0xb0 allocbulk+0x2af/0x720 prefillmemcache+0x7f/0xb0...
UBUNTU-CVE-2024-50254
In the Linux kernel, the following vulnerability has been resolved: bpf: Free dynamically allocated bits in bpfiterbitsdestroy bpfiterbitsdestroy uses "kit-nrbits kmemleakalloc+0x4b/0x80 kmallocnodenoprof+0x480/0x5c0 alloc.isra.0+0x89/0xb0 allocbulk+0x2af/0x720 prefillmemcache+0x7f/0xb0...
UBUNTU-CVE-2024-50253
In the Linux kernel, the following vulnerability has been resolved: bpf: Check the validity of nrwords in bpfiterbitsnew Check the validity of nrwords in bpfiterbitsnew. Without this check, when multiplication overflow occurs for nrbits e.g., when nrwords = 0x0400-0001, nrbits becomes 64, stack...
CVE-2024-50254 bpf: Free dynamically allocated bits in bpf_iter_bits_destroy()
In the Linux kernel, the following vulnerability has been resolved: bpf: Free dynamically allocated bits in bpfiterbitsdestroy bpfiterbitsdestroy uses "kit-nrbits kmemleakalloc+0x4b/0x80 kmallocnodenoprof+0x480/0x5c0 alloc.isra.0+0x89/0xb0 allocbulk+0x2af/0x720 prefillmemcache+0x7f/0xb0...
CVE-2024-50254
In the Linux kernel, the following vulnerability has been resolved: bpf: Free dynamically allocated bits in bpfiterbitsdestroy bpfiterbitsdestroy uses "kit-nrbits kmemleakalloc+0x4b/0x80 kmallocnodenoprof+0x480/0x5c0 alloc.isra.0+0x89/0xb0 allocbulk+0x2af/0x720 prefillmemcache+0x7f/0xb0...
SUSE CVE-2024-50115
In the Linux kernel, the following vulnerability has been resolved: KVM: nSVM: Ignore nCR34:0 when loading PDPTEs from memory Ignore nCR34:0 when loading PDPTEs from memory for nested SVM, as bits 4:0 of CR3 are ignored when PAE paging is used, and thus VMRUN doesn't enforce 32-byte alignment of...
AZL-52529 CVE-2024-50115 affecting package kernel for versions less than 6.6.64.2-1
In the Linux kernel, the following vulnerability has been resolved: KVM: nSVM: Ignore nCR34:0 when loading PDPTEs from memory Ignore nCR34:0 when loading PDPTEs from memory for nested SVM, as bits 4:0 of CR3 are ignored when PAE paging is used, and thus VMRUN doesn't enforce 32-byte alignment of...
CVE-2024-50115 KVM: nSVM: Ignore nCR3[4:0] when loading PDPTEs from memory
In the Linux kernel, the following vulnerability has been resolved: KVM: nSVM: Ignore nCR34:0 when loading PDPTEs from memory Ignore nCR34:0 when loading PDPTEs from memory for nested SVM, as bits 4:0 of CR3 are ignored when PAE paging is used, and thus VMRUN doesn't enforce 32-byte alignment of...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the KVM module failing to properly handle the high 5 bits of the CR3 register when loading the PDPTEs of a...
DEBIAN-CVE-2024-49935
In the Linux kernel, the following vulnerability has been resolved: ACPI: PAD: fix crash in exitroundrobin The kernel occasionally crashes in cpumaskclearcpu, which is called within exitroundrobin, because when executing clearbitnr, addr with nr set to 0xffffffff, the address calculation may caus...
SUSE CVE-2024-47685
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfrejectipv6: fix nfrejectip6tcphdrput syzbot reported that nfrejectip6tcphdrput was possibly sending garbage on the four reserved tcp bits th-res1 Use skbputzero to clear the whole TCP header, as done in...
DEBIAN-CVE-2024-47685
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfrejectipv6: fix nfrejectip6tcphdrput syzbot reported that nfrejectip6tcphdrput was possibly sending garbage on the four reserved tcp bits th-res1 Use skbputzero to clear the whole TCP header, as done in...
UBUNTU-CVE-2024-47685
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfrejectipv6: fix nfrejectip6tcphdrput syzbot reported that nfrejectip6tcphdrput was possibly sending garbage on the four reserved tcp bits th-res1 Use skbputzero to clear the whole TCP header, as done in...
BITS performance counters not working after publishing App Layering image to PVS
When you published an image from App Layering to PVS, Target Devices may not show BITS performance counters...
kernel: USB: core: Fix duplicate endpoint bug by clearing reserved bits in the descriptor
A vulnerability was found in the usbparseendpoint function in the Linux kernel's usb drivers, where improper handling of the reserved bits in an endpoint descriptor's bEndpointAddress field can lead to confusion in the endpointisduplicate routine in config.c. This will erroneously treat the same...
kernel: USB: core: Fix duplicate endpoint bug by clearing reserved bits in the descriptor
A vulnerability was found in the usbparseendpoint function in the Linux kernel's usb drivers, where improper handling of the reserved bits in an endpoint descriptor's bEndpointAddress field can lead to confusion in the endpointisduplicate routine in config.c. This will erroneously treat the same...
protobuf-java has potential Denial of Service issue
Summary When parsing unknown fields in the Protobuf Java Lite and Full library, a maliciously crafted message can cause a StackOverflow error and lead to a program crash. Reporter: Alexis Challande, Trail of Bits Ecosystem Security Team Affected versions: This issue affects all versions of both t...
ALSA: usb-audio: Stop parsing channels bits when all channels are found.
...