166 matches found
CVE-2023-54223
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: xsk: Fix invalid buffer access for legacy rq The below crash can be encountered when using xdpsock in rx mode for legacy rq: the buffer gets released in the XDPREDIRECT path, and then once again in the driver. This fix...
CVE-2023-54223
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: xsk: Fix invalid buffer access for legacy rq The below crash can be encountered when using xdpsock in rx mode for legacy rq: the buffer gets released in the XDPREDIRECT path, and then once again in the driver. This fix...
UBUNTU-CVE-2023-54320
In the Linux kernel, the following vulnerability has been resolved: platform/x86/amd: pmc: Fix memory leak in amdpmcstbdebugfsopenv2 Function amdpmcstbdebugfsopenv2 may be called when the STB debug mechanism enabled. When amdpmcsendcmd fails, the 'buf' needs to be released...
UBUNTU-CVE-2023-54223
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: xsk: Fix invalid buffer access for legacy rq The below crash can be encountered when using xdpsock in rx mode for legacy rq: the buffer gets released in the XDPREDIRECT path, and then once again in the driver. This fix...
CVE-2023-54320 platform/x86/amd: pmc: Fix memory leak in amd_pmc_stb_debugfs_open_v2()
In the Linux kernel, the following vulnerability has been resolved: platform/x86/amd: pmc: Fix memory leak in amdpmcstbdebugfsopenv2 Function amdpmcstbdebugfsopenv2 may be called when the STB debug mechanism enabled. When amdpmcsendcmd fails, the 'buf' needs to be released...
CVE-2023-54223 net/mlx5e: xsk: Fix invalid buffer access for legacy rq
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: xsk: Fix invalid buffer access for legacy rq The below crash can be encountered when using xdpsock in rx mode for legacy rq: the buffer gets released in the XDPREDIRECT path, and then once again in the driver. This fix...
CVE-2023-54223
CVE-2023-54223: In the Linux kernel mlx5 net/xsk legacy-rq path, a buffer could be released twice (in XDP_REDIRECT and then by the driver) due to switching from a skip-release flag to fragment-counts. The fix adds a guard flag to avoid driver-side release, preventing a use-after-free/general-prot...
CVE-2023-54223 net/mlx5e: xsk: Fix invalid buffer access for legacy rq
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: xsk: Fix invalid buffer access for legacy rq The below crash can be encountered when using xdpsock in rx mode for legacy rq: the buffer gets released in the XDPREDIRECT path, and then once again in the driver. This fix...
CVE-2023-54214
CVE-2023-54214: Linux kernel Bluetooth L2CAP fix for a use-after-free involving alloc_skb that could release and reacquire the chan lock, potentially causing the channel to disconnect. The vulnerability is addressed by the kernel patch, with advisories from SUSE (SUSE-SU-2026:0316/0317) noting th...
PT-2025-54052
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.5.0-rc1+ 31 Description The Linux kernel contains an issue in the net/mlx5e module related to xsk XDP socket handling of buffers for legacy request queues rq. A crash can occur when using xdpsock in receive rx...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from an improper buffer release that could lead to a generic protection error...
CVE-2023-54136
CVE-2023-54136 concerns a memory leak in the Linux kernel’s serial driver for sprd when _probe() returns failure. The fix releases the DMA buffer to avoid leaks. Connected Astra Linux entry confirms the same vulnerability and the fix across kernel lines (linux-5.10, linux-5.15, linux-6.1). The im...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the release of an ETR buffer after use, which could lead to reuse after release...
kernel: scsi: lpfc: Fix buffer free/clear order in deferred receive path
A use-after-free vulnerability exists in the linux kernel such that the buffer release sequence in the deferred receive path. The code freed the RQ buffer first and only then cleared the context pointer under the lock...
kernel: scsi: lpfc: Fix buffer free/clear order in deferred receive path
A use-after-free vulnerability exists in the linux kernel such that the buffer release sequence in the deferred receive path. The code freed the RQ buffer first and only then cleared the context pointer under the lock...
kernel: scsi: lpfc: Fix buffer free/clear order in deferred receive path
A use-after-free vulnerability exists in the linux kernel such that the buffer release sequence in the deferred receive path. The code freed the RQ buffer first and only then cleared the context pointer under the lock...
kernel: scsi: lpfc: Fix buffer free/clear order in deferred receive path
A use-after-free vulnerability exists in the linux kernel such that the buffer release sequence in the deferred receive path. The code freed the RQ buffer first and only then cleared the context pointer under the lock...
kernel: scsi: lpfc: Fix buffer free/clear order in deferred receive path
A use-after-free vulnerability exists in the linux kernel such that the buffer release sequence in the deferred receive path. The code freed the RQ buffer first and only then cleared the context pointer under the lock...
kernel: scsi: lpfc: Fix buffer free/clear order in deferred receive path
A use-after-free vulnerability exists in the linux kernel such that the buffer release sequence in the deferred receive path. The code freed the RQ buffer first and only then cleared the context pointer under the lock...
Moderate: Red Hat Security Advisory: kernel security update
An update for kernel is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...