A flaw was found in the sctp_make_strreset_req function in net/sctp/sm_make_chunk.c in the SCTP network protocol in the Linux kernel with a local user privilege access. In this flaw an attempt to use more buffer than is allocated triggers a BUG_ON issue leading to a denial of service (DOS).

...

Race condition

Linux PV device frontends vulnerable to attacks by backends This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Several Linux PV device frontends are using the grant table interfaces for removing access rights of the...

Race condition

Linux PV device frontends vulnerable to attacks by backends This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Several Linux PV device frontends are using the grant table interfaces for removing access rights of the...

UVI-2021-1000700 btrfs: do not BUG_ON in link_to_fixup_dir

btrfs: do not BUGON in linktofixupdir This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.4.271 by commit 76bfd8ac20bebeae599452a03dfc5724c0475dc...

GSD-2021-1000321 userfaultfd: release page in error path to avoid BUG_ON

userfaultfd: release page in error path to avoid BUGON This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.38 by commit...

GSD-2021-1000465 userfaultfd: release page in error path to avoid BUG_ON

userfaultfd: release page in error path to avoid BUGON This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.233 by commit...

UVI-2021-1000465 userfaultfd: release page in error path to avoid BUG_ON

userfaultfd: release page in error path to avoid BUGON This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.233 by commit...

GSD-2021-1000202 userfaultfd: release page in error path to avoid BUG_ON

userfaultfd: release page in error path to avoid BUGON This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.5 by commit...

UVI-2021-1000202 userfaultfd: release page in error path to avoid BUG_ON

userfaultfd: release page in error path to avoid BUGON This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.5 by commit...

Kernel update: Virtuozzo ReadyKernel patch 119.5 for Virtuozzo Hybrid Server 7.0 and Virtuozzo Hybrid Infrastructure 4.0

The cumulative Virtuozzo ReadyKernel patch was updated with stability fixes. The patch applies to the kernels 3.10.0-1127.8.2.vz7.151.14 Virtuozzo Hybrid Server 7.0.14, 3.10.0-1127.8.2.vz7.158.8 Virtuozzo Hybrid Infrastructure 4.0. Vulnerability id: PSBM-122035 3.10.0-1127.8.2.vz7.151.14 to...

Denial Of Service (DoS)

Linux kernel is vulnerable to denial of service attacks. A race condition between direct and memory-mapped I/O which is handled with BUGON instead of an I/O failure enables local users to cause a denial of service via system crash. Affected is the functionality of file fs/xfs/xfsaops.c of the...

Unbreakable Enterprise kernel security update

2.6.39-400.295.2 - nfsd: stricter decoding of write-like NFSv2/v3 ops J. Bruce Fields Orabug: 25986995 CVE-2017-7895 2.6.39-400.295.1 - ocfs2/o2net: o2netlistendataready should do nothing if socket state is not TCPLISTEN Tariq Saeed Orabug: 25510857 - IB/CORE: sync the resouce access in fmrpool...

Amazon Linux AMI : kernel (ALAS-2017-814)

Possible double free in stcpsendmsg incorrect fix for CVE-2017-5986 : It was found that the code in net/sctp/socket.c in the Linux kernel through 4.10.1 does not properly restrict association peel-off operations during certain wait states, which allows local users to cause a denial of service...

Medium: kernel

Issue Overview: Possible double free in stcpsendmsg incorrect fix for CVE-2017-5986: It was found that the code in net/sctp/socket.c in the Linux kernel through 4.10.1 does not properly restrict association peel-off operations during certain wait states, which allows local users to cause a denial...

Amazon Linux AMI : kernel (ALAS-2017-805)

A use-after-free flaw was found in the way the Linux kernel's Datagram Congestion Control Protocol DCCP implementation freed SKB socket buffer resources for a DCCPPKTREQUEST packet when the IPV6RECVPKTINFO option is set on the socket. A local, unprivileged user could use this flaw to alter the...

CVE-2017-5986

It was reported that with Linux kernel, earlier than version v4.10-rc8, an application may trigger a BUGON in sctpwaitforsndbuf if the socket tx buffer is full, a thread is waiting on it to queue more data, and meanwhile another thread peels off the association being used by the first thread...

Important: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 6.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

Amazon Linux AMI : kernel (ALAS-2012-100)

A flaw was found in the way the Linux kernel's Event Poll epoll subsystem handled large, nested epoll structures. A local, unprivileged user could use this flaw to cause a denial of service. A malicious Network File System version 4 NFSv4 server could return a crafted reply to a GETACL request,...

CVE-2012-2372

The rdsibxmit function in net/rds/ibsend.c in the Reliable Datagram Sockets RDS protocol implementation in the Linux kernel 3.7.4 and earlier allows local users to cause a denial of service BUGON and kernel panic by establishing an RDS connection with the source IP address equal to the IPoIB...

CVE-2011-3353

Buffer overflow in the fusenotifyinvalentry function in fs/fuse/dev.c in the Linux kernel before 3.1 allows local users to cause a denial of service BUGON and system crash by leveraging the ability to mount a FUSE filesystem...