2 matches found
CVE-2023-54240
In the Linux kernel, the following vulnerability has been resolved: net: ethernet: mtkethsoc: fix possible NULL pointer dereference in mtkhwlrogetfdirall rulelocs is allocated in ethtoolgetrxnfc and the size is determined by rulecnt from user space. So rulecnt needs to be check before using...
PT-2010-4049 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 2.6.33.7 on 32-bit platforms Description: The issue is related to an integer overflow in the ethtool get rxnfc function, which can be triggered by a large info.rule cnt value in an ETHTOOL GRXCLSRLALL ethtool...