629 matches found
kernel: mm/hugetlb: fix missing hugetlb_lock for resv uncharge
CVE-2024-36000 addresses a synchronization issue in the Linux kernel's management of huge pages. The problem arises when multiple threads modify the reservation map concurrently without proper locking, leading to potential inconsistencies and system instability...
kernel: net/mlx5: Discard command completions in internal error
A use-after-free vulnerability has been discovered in the Linux kernel within the drivers/net/ethernet/mellanox/mlx5/core/cmd.c component, specifically related to the Mellanox network driver. This flaw can lead to compromised system availability. Successful exploitation could result in...
kernel: mm/hugetlb: fix missing hugetlb_lock for resv uncharge
CVE-2024-36000 addresses a synchronization issue in the Linux kernel's management of huge pages. The problem arises when multiple threads modify the reservation map concurrently without proper locking, leading to potential inconsistencies and system instability...
K000140528: BIND vulnerability CVE-2024-0760
Security Advisory Description A malicious client can send many DNS messages over TCP, potentially causing the server to become unstable while the attack is in progress. The server may recover after the attack ceases. Use of ACLs will not mitigate the attack. This issue affects BIND 9 versions...
kernel: nfp: flower: handle acti_netdevs allocation failure
A vulnerability was found in the Linux kernel's ethernet lagconf.c driver in the nfpfllagdowork function, where a NULL pointer dereference can occur due to a lack of proper checks. The scenario is caused when the function attempts to call kmallocarray, which returns as NULL because the physical...
SUSE CVE-2024-0760
A malicious client can send many DNS messages over TCP, potentially causing the server to become unstable while the attack is in progress. The server may recover after the attack ceases. Use of ACLs will not mitigate the attack. This issue affects BIND 9 versions 9.18.1 through 9.18.27, 9.19.0...
kernel: drm/client: Fully protect modes[] with dev->mode_config.mutex
A flaw in the Linux kernel's Direct Rendering Manager DRM client could cause system instability. The problem occurs because the modes array, used to store display mode pointers, wasn’t adequately protected by a mutex lock. This allows the array to reference memory that has already been freed or...
AZL-46972 CVE-2024-0760 affecting package bind for versions less than 9.20.0-1
A malicious client can send many DNS messages over TCP, potentially causing the server to become unstable while the attack is in progress. The server may recover after the attack ceases. Use of ACLs will not mitigate the attack. This issue affects BIND 9 versions 9.18.1 through 9.18.27, 9.19.0...
DEBIAN-CVE-2024-0760
A malicious client can send many DNS messages over TCP, potentially causing the server to become unstable while the attack is in progress. The server may recover after the attack ceases. Use of ACLs will not mitigate the attack. This issue affects BIND 9 versions 9.18.1 through 9.18.27, 9.19.0...
CVE-2024-0760
A malicious client can send many DNS messages over TCP, potentially causing the server to become unstable while the attack is in progress. The server may recover after the attack ceases. Use of ACLs will not mitigate the attack. This issue affects BIND 9 versions 9.18.1 through 9.18.27, 9.19.0...
CVE-2024-0760 A flood of DNS messages over TCP may make the server unstable
A malicious client can send many DNS messages over TCP, potentially causing the server to become unstable while the attack is in progress. The server may recover after the attack ceases. Use of ACLs will not mitigate the attack. This issue affects BIND 9 versions 9.18.1 through 9.18.27, 9.19.0...
CVE-2024-0760
CVE-2024-0760 affects ISC BIND 9, specifically versions 9.18.1–9.18.27, 9.19.0–9.19.24, and 9.18.11-S1–9.18.27-S1. Description: a malicious client can flood the server with DNS messages over TCP, potentially destabilizing the server; recovery is possible after the attack stops. Impact is availabi...
CVE-2024-0760 A flood of DNS messages over TCP may make the server unstable
A malicious client can send many DNS messages over TCP, potentially causing the server to become unstable while the attack is in progress. The server may recover after the attack ceases. Use of ACLs will not mitigate the attack. This issue affects BIND 9 versions 9.18.1 through 9.18.27, 9.19.0...
CVE-2024-0760
A malicious client can send many DNS messages over TCP, potentially causing the server to become unstable while the attack is in progress. The server may recover after the attack ceases. Use of ACLs will not mitigate the attack. This issue affects BIND 9 versions 9.18.1 through 9.18.27, 9.19.0...
CVE-2024-0760
A malicious client can send many DNS messages over TCP, potentially causing the server to become unstable while the attack is in progress. The server may recover after the attack ceases. Use of ACLs will not mitigate the attack. This issue affects BIND 9 versions 9.18.1 through 9.18.27, 9.19.0...
UBUNTU-CVE-2024-0760
A malicious client can send many DNS messages over TCP, potentially causing the server to become unstable while the attack is in progress. The server may recover after the attack ceases. Use of ACLs will not mitigate the attack. This issue affects BIND 9 versions 9.18.1 through 9.18.27, 9.19.0...
kernel: mm/vmscan: fix a bug calling wakeup_kswapd() with a wrong zone index
A vulnerability was found in the Linux kernel's memory management subsystem. The wakeupkswapd function was called with an incorrect zone index. This error could disrupt the proper functioning of memory management, potentially leading to system instability or performance issues...
Exceeding XenAPI Session Limit Causes Pool Instability
XenAPI Session The session limit of XenAPI process XAPI is 400. When the limit is exceeded, the oldest session is terminated. The oldest session might be active and in use. When the session is terminated, the client using that session gets disconnected without notification. Note : Clients can be...
DHCP configurations for PVS
Citrix recommends DHCP configuration which ensures that a PVS target device receives the same IP address for all DHCP requests during its booted lifespan. The end result should be a target device using the same IP address it received at boot time, for the entirety of its booted lifespan. DHCP...
CVE-2024-40981 batman-adv: bypass empty buckets in batadv_purge_orig_ref()
In the Linux kernel, the following vulnerability has been resolved: batman-adv: bypass empty buckets in batadvpurgeorigref Many syzbot reports are pointing to soft lockups in batadvpurgeorigref 1 Root cause is unknown, but we can avoid spending too much time there and perhaps get more interesting...