13 matches found
Linux Distros Unpatched Vulnerability : CVE-2024-43864
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix CT entry update leaks of modify header context The cited commit allocates a n...
CVE-2024-43864
A use-after-free flaw was found in the Linux kernel when offloading connection tracking rules via tc ct action functionality. This issue could allow a local user to crash the system. Mitigation Mitigation for this issue is either not available or the currently available options don't meet the Red...
CVE-2024-43864
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix CT entry update leaks of modify header context The cited commit allocates a new modify header to replace the old one when updating CT entry. But if failed to allocate a new one, eg. exceed the max number firmware c...
CVE-2024-43864
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix CT entry update leaks of modify header context The cited commit allocates a new modify header to replace the old one when updating CT entry. But if failed to allocate a new one, eg. exceed the max number firmware c...
CVE-2024-43864
CVE-2024-43864: In the Linux kernel mlx5e CT entry update path, a failure to allocate a new modify header could leave the old header pointer invalid, risking a panic when the old header is freed and potentially leaking the modify header context. The fix restores the old attr to attr on allocation...
CVE-2024-43864 net/mlx5e: Fix CT entry update leaks of modify header context
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix CT entry update leaks of modify header context The cited commit allocates a new modify header to replace the old one when updating CT entry. But if failed to allocate a new one, eg. exceed the max number firmware c...
GHSA-MWHW-6P27-4CRC Quarkus does not terminate HTTP requests header context
Quarkus is a Cloud Native, Linux Container First framework for writing Java applications. It was found that Quarkus 2.10.x does not terminate HTTP requests header context which may lead to unpredictable behavior. This issue was fixed in version 2.10.4Final...
CVE-2022-2466
It was found that Quarkus 2.10.x does not terminate HTTP requests header context which may lead to unpredictable behavior...
CVE-2022-2466
It was found that Quarkus 2.10.x does not terminate HTTP requests header context which may lead to unpredictable behavior...
Design/Logic Flaw
It was found that Quarkus 2.10.x does not terminate HTTP requests header context which may lead to unpredictable behavior...
CVE-2022-2466
It was found that Quarkus 2.10.x does not terminate HTTP requests header context which may lead to unpredictable behavior...
PT-2022-16781 · Quarkus · Quarkus
Name of the Vulnerable Software and Affected Versions: Quarkus versions 2.10.x through 2.10.3 Description: The issue is related to Quarkus not terminating HTTP requests header context, which may lead to unpredictable behavior. This is a problem in the framework that can cause unexpected outcomes...
CVE-2022-2466
It was found that Quarkus 2.10.x does not terminate HTTP requests header context which may lead to unpredictable behavior...