CVE-2024-42281

A denial of service vulnerability was found in the Linux kernel. Downgrading gsosize may trigger a crash, resulting in a loss of system availability. Mitigation Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria...

CVE-2024-43817 net: missing check virtio

In the Linux kernel, the following vulnerability has been resolved: net: missing check virtio Two missing check in virtionethdrtoskb allowed syzbot to crash kernels again 1. After the skbsegment function the buffer may become non-linear nrfrags != 0, but since the SKBTXSHAREDFRAG flag is not set...

CVE-2024-42281

CVE-2024-42281 is a Linux kernel vulnerability fixed by the upstream commit: bpf: Fix a segment issue when downgrading gso_size. The fix linearizes the skb when downgrading gso_size to prevent a BUG_ON() later during skb segmentation as described in citations [1,2]. The provided documents confirm...

CVE-2024-42281 bpf: Fix a segment issue when downgrading gso_size

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix a segment issue when downgrading gsosize Linearize the skb when downgrading gsosize because it may trigger a BUGON later when the skb is segmented as described in 1,2...

CVE-2024-42281 bpf: Fix a segment issue when downgrading gso_size

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix a segment issue when downgrading gsosize Linearize the skb when downgrading gsosize because it may trigger a BUGON later when the skb is segmented as described in 1,2...

kernel: net: gso: fix panic on frag_list with mixed head alloc types

In the Linux kernel, the following vulnerability has been resolved: net: gso: fix panic on fraglist with mixed head alloc types Since commit 3dcbdb134f32 "net: gso: Fix skbsegment splat when splitting gsosize mangled skb having linear-headed fraglist", it is allowed to change gsosize of a GRO...