Astra Linux - уязвимость в linux, linux-5.15, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: net/sched: clsapi: remove blockcb from driverlist before freeing The error handler of tcfblockBind frees the entire bo-cblist when an error occurs. However, by that time, the flowblockCB instances are already in the driverlist...

SUSE CVE-2023-54193

In the Linux kernel, the following vulnerability has been resolved: net/sched: clsapi: remove blockcb from driverlist before freeing Error handler of tcfblockbind frees the whole bo-cblist on error. However, by that time the flowblockcb instances are already in the driver list because driver...

CVE-2023-54193

In the Linux kernel, the following vulnerability has been resolved: net/sched: clsapi: remove blockcb from driverlist before freeing Error handler of tcfblockbind frees the whole bo-cblist on error. However, by that time the flowblockcb instances are already in the driver list because driver...

CVE-2023-54193 net/sched: cls_api: remove block_cb from driver_list before freeing

In the Linux kernel, the following vulnerability has been resolved: net/sched: clsapi: remove blockcb from driverlist before freeing Error handler of tcfblockbind frees the whole bo-cblist on error. However, by that time the flowblockcb instances are already in the driver list because driver...

CVE-2023-54193

CVE-2023-54193 concerns the Linux kernel net/sched cls_api. The issue is a use-after-free caused by flow_block_cb objects remaining in the driver_list when tcf_block_bind() error frees the bo->cb_list; flow_block_cb instances may already be in the driver_list due to the earlier ndo_setup_tc() ...