EUVD-2024-53408

Malicious code in bioql PyPI...

powerpc/pseries/vas: Add close() callback in vas_vm_ops struct

...

CVE-2024-56765 powerpc/pseries/vas: Add close() callback in vas_vm_ops struct

In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries/vas: Add close callback in vasvmops struct The mapping VMA address is saved in VAS window struct when the paste address is mapped. This VMA address is used during migration to unmap the paste address if the window...

CVE-2024-56765

CVE-2024-56765 relates to the Linux kernel (powerpc/pseries/vas) where a close() callback was added to vas_vm_ops to fix a use-after-free/memory access during migration. The vulnerability stemmed from the VAS window’s VMA address being saved when a paste address is mapped and not being updated up...

CVE-2024-39500

In the Linux kernel, the following vulnerability has been resolved: sockmap: avoid race between sockmapclose and skpsockput skpsockget will return NULL if the refcount of psock has gone to 0, which will happen when the last call of skpsockput is done. However, skpsockdrop may not have finished ye...

CVE-2024-39500 sock_map: avoid race between sock_map_close and sk_psock_put

In the Linux kernel, the following vulnerability has been resolved: sockmap: avoid race between sockmapclose and skpsockput skpsockget will return NULL if the refcount of psock has gone to 0, which will happen when the last call of skpsockput is done. However, skpsockdrop may not have finished ye...

CVE-2022-48688 i40e: Fix kernel crash during module removal

In the Linux kernel, the following vulnerability has been resolved: i40e: Fix kernel crash during module removal The driver incorrectly frees client instance and subsequent i40e module removal leads to kernel crash. Reproducer: 1. Do ethtool offline test followed immediately by another one host...