CVE-2023-52928

In the Linux kernel, the following vulnerability has been resolved: bpf: Skip invalid kfunc call in backtrackinsn The verifier skips invalid kfunc call in checkkfunccall, which would be captured in fixupkfunccall if such insn is not eliminated by dead code elimination. However, this can lead to t...

CVE-2024-49875 nfsd: map the EBADMSG to nfserr_io to avoid warning

In the Linux kernel, the following vulnerability has been resolved: nfsd: map the EBADMSG to nfserrio to avoid warning Ext4 will throw -EBADMSG through ext4readdir when a checksum error occurs, resulting in the following WARNING. Fix it by mapping EBADMSG to nfserrio. nfsdbufferedreaddir iterated...

CVE-2024-46790 codetag: debug: mark codetags for poisoned page as empty

In the Linux kernel, the following vulnerability has been resolved: codetag: debug: mark codetags for poisoned page as empty When PGhwpoison pages are freed they are treated differently in freepagesprepare and instead of being released they are isolated. Page allocation tag counters are decrement...

CVE-2024-36735

CVE-2024-36735 affects OneFlow v0.9.1. The issue is that the parameter oneflow.eye being floating does not trigger an error or warning, potentially allowing silent misconfiguration. Exploitation details are not provided in the connected documents. The PT Security entry recommends restricting the ...