8 matches found
CLSA-2024-1719568519 Fix of 6 CVEs
CVE-url: https://ubuntu.com/security/CVE-2024-2201 - x86/cpufeatures: Add new word for scattered features - x86/cpufeatures: Add CPUIDLNX5 to track recently added Linux-defined word - x86/bugs: Change commas to semicolons in 'spectrev2' sysfs file - x86/bhi: Add support for clearing branch histor...
DEBIAN-CVE-2024-36902
In the Linux kernel, the following vulnerability has been resolved: ipv6: fib6rules: avoid possible NULL dereference in fib6ruleaction syzbot is able to trigger the following crash 1, caused by unsafe ip6dstidev use. Indeed ip6dstidev can return NULL, and must always be checked. 1 Oops: general...
AZL-42468 CVE-2024-36902 affecting package kernel for versions less than 6.6.35.1-4
In the Linux kernel, the following vulnerability has been resolved: ipv6: fib6rules: avoid possible NULL dereference in fib6ruleaction syzbot is able to trigger the following crash 1, caused by unsafe ip6dstidev use. Indeed ip6dstidev can return NULL, and must always be checked. 1 Oops: general...
AZL-42487 CVE-2024-36902 affecting package kernel for versions less than 5.15.158.2-1
In the Linux kernel, the following vulnerability has been resolved: ipv6: fib6rules: avoid possible NULL dereference in fib6ruleaction syzbot is able to trigger the following crash 1, caused by unsafe ip6dstidev use. Indeed ip6dstidev can return NULL, and must always be checked. 1 Oops: general...
Linux kernel security vulnerabilities
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a possible null pointer dereference in the ipv6:fib6rules module fib6ruleaction...
SUSE CVE-2019-18198
In the Linux kernel before 5.3.4, a reference count usage error in the fib6rulesuppress function in the fib6 suppression feature of net/ipv6/fib6rules.c, when handling the FIBLOOKUPNOREF flag, can be exploited by a local attacker to corrupt memory, aka CID-ca7a03c41753...
Denial Of Service (DoS)
github.com/cilium/cilium is vulnerable to denial of service attacks. The vulnerability exists due to improper configurations of ipv6 rules in the iptables.go which allows a malicious user to bypass the host policies and cause an application crash...
Linux kernel memory corruption vulnerability (CNVD-2019-37726)
Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A memory corruption vulnerability exists in the 'fib6rulesuppress' function of the net/ipv6/fib6rules.c file in versions of Linux kernel prior to 5.3.4, which can be...