3 matches found
Unbreakable Enterprise kernel security update
4.1.12-124.78.2 - xfrm: fix crash in XFRMMSGGETSA netlink handler Vegard Nossum Orabug: 35598955 CVE-2023-3106 - netfilter: nftables: validate registers coming from userspace Harshvardhan Jha Orabug: 34012909 CVE-2022-1015 4.1.12-124.78.1 - vcscreen: move load of struct vcdata pointer in vcsread ...
CVE-2023-3106
CVE-2023-3106 is reported in Unity Linux advisories as a NULL pointer dereference in netlink_dump. The issue occurs when a Netlink socket receives a message (sendmsg) for XFRM_MSG_GETSA or XFRM_MSG_GETPOLICY with the DUMP flag set, potentially causing a denial of service. The description notes pr...
CVE-2023-3106 Kernel: netlink socket crash (null pointer deref) in netlink_dump function
A NULL pointer dereference vulnerability was found in netlinkdump. This issue can occur when the Netlink socket receives the messagesendmsg for the XFRMMSGGETSA, XFRMMSGGETPOLICY type message, and the DUMP flag is set and can cause a denial of service or possibly another unspecified impact. Due t...