111 matches found
CVE-2024-50278 dm cache: fix potential out-of-bounds access on the first resume
In the Linux kernel, the following vulnerability has been resolved: dm cache: fix potential out-of-bounds access on the first resume Out-of-bounds access occurs if the fast device is expanded unexpectedly before the first-time resume of the cache table. This happens because expanding the fast...
CVE-2024-50278 dm cache: fix potential out-of-bounds access on the first resume
In the Linux kernel, the following vulnerability has been resolved: dm cache: fix potential out-of-bounds access on the first resume Out-of-bounds access occurs if the fast device is expanded unexpectedly before the first-time resume of the cache table. This happens because expanding the fast...
CVE-2024-50278
The CVE-2024-50278 vulnerability affects the Linux kernel’s dm-cache (device-mapper) component. It can cause an out-of-bounds access in the dirty-bitset when the fast device is expanded before the first resume of the cache table, due to the first-resume size check not being performed. Reproductio...
PT-2024-9953
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the dm cache component of the Linux kernel, specifically with the flush work function. It may cause an unexpected WARN ON when cache creation fails due to the...
kernel: dm cache: Fix UAF in destroy()
In the Linux kernel, the following vulnerability has been resolved: dm cache: Fix UAF in destroy Dmcache also has the same UAF problem when dmresume and dmdestroy are concurrent. Therefore, cancelling timer again in destroy...
SUSE-SU-2023:0409-1 Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP3 LTSS kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2022-3606: Fixed a null pointer dereference inside the function findprogbysecinsn of the file tools/lib/bpf/libbpf.c of the component BPF bnc1204502. -...
GSD-2023-1001535 dm cache: Fix UAF in destroy()
dm cache: Fix UAF in destroy This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.337 by commit 034cbc8d3b47a56acd89453c29632a9c117de09d, it was...
GSD-2023-1001283 dm cache: Fix UAF in destroy()
dm cache: Fix UAF in destroy This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.163 by commit 2b17026685a270b2beaf1cdd9857fcedd3505c7e, it wa...
GSD-2023-1000926 dm cache: Fix UAF in destroy()
dm cache: Fix UAF in destroy This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.87 by commit d2a0b298ebf83ab6236f66788a3541e91ce75a70, it was...
kernel security, bug fix, and enhancement update
4.18.0-80.7.10.OL8 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 4.18.0-80.7.10 - x86 Update stepping values for Whiskey Lake U/Y David Arcari...
kernel security, bug fix, and enhancement update
3.10.0-229 - Oracle Linux certificates Alexey Petrenko 3.10.0-229 - net rtnetlink: allow to register ops without ops-setup set Jiri Benc 1186492 3.10.0-228 - fs NFSv4.1: Fix an Oops in nfs41walkclientlist Steve Dickson 1185784 - misc redhat: dont suppress Revert patches from changelog Jarod Wilso...