CVE-2024-0646

An out-of-bounds memory write flaw was found in the Linux kernel’s Transport Layer Security functionality in how a user calls a function splice with a ktls socket as the destination. This flaw allows a local user to crash or potentially escalate their privileges on the system. Mitigation To...

CVE-2023-6546

A race condition was found in the GSM 0710 tty multiplexor in the Linux kernel. This issue occurs when two threads execute the GSMIOCSETCONF ioctl on the same tty file descriptor with the gsm line discipline enabled, and can lead to a use-after-free problem on a struct gsmdlci while restarting th...

CVE-2023-44099

Vulnerability of data verification errors in the kernel module. Successful exploitation of this vulnerability may cause WLAN interruption...

CVE-2023-44099

Vulnerability of data verification errors in the kernel module. Successful exploitation of this vulnerability may cause WLAN interruption...

CVE-2023-44099

Vulnerability of data verification errors in the kernel module. Successful exploitation of this vulnerability may cause WLAN interruption...

CVE-2023-44099

CVE-2023-44099 concerns a vulnerability in a Huawei HarmonyOS kernel module where a data verification (checksum) error can cause WLAN interruption. The connected sources indicate a kernel-module level issue with data verification, but do not provide explicit affected versions, concrete exploitati...

PT-2023-29099 · Unknown · Kernel Module

Name of the Vulnerable Software and Affected Versions: Kernel module affected versions not specified Description: The issue is related to data verification errors in the kernel module. Successful exploitation may cause WLAN interruption. Recommendations: At the moment, there is no information abo...

Huawei HarmonyOS Security Vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A security vulnerability exists in Huawei HarmonyOS, which stems from a data checksum error in a kernel module. Functionality is interrupted...

The vulnerability of the `scatterwalk_copychunks()` function in the `net/tls/tls_sw.c` module of the Linux kernel’s cryptographic subsystem allows a attacker to induce a service failure or gain enhanced privileges.

The vulnerability of the scatterwalkcopychunks function in the net/tls/tlssw.c module of the Linux kernel’s cryptographic subsystem is related to the assignment of a null pointer. Exploiting this vulnerability could allow an attacker to trigger a service failure or increase their privileges...

Important: Red Hat Security Advisory: Kernel Module Management security update

This is an update for the Red Hat OpenShift Kernel Module Management 1.1 operator and images to address CVE-2023-44487 which Red Hat has assessed as being Important sees https://access.redhat.com/security/cve/CVE-2023-44487 for details Red Hat Product Security has rated this update as having a...

kernel: nvme-pci: fix a NULL pointer dereference in nvme_alloc_admin_tags

A flaw was found in the nvme module in the Linux kernel. A NULL pointer dereference can be triggered due to improper error management when the blkmqinitqueue function fails to set up the queue, resulting in a denial of service...

kernel: igb: revert rtnl_lock() that causes deadlock

In the Linux kernel, the following vulnerability has been resolved: igb: revert rtnllock that causes deadlock The commit 6faee3d4ee8b "igb: Add lock to avoid data race" adds rtnllock to eliminate a false data race shown below FREE from device detaching | USE from netdev core igbremove |...

kernel: drm/vkms: Fix memory leak in vkms_init()

In the Linux kernel, the following vulnerability has been resolved: drm/vkms: Fix memory leak in vkmsinit A memory leak was reported after the vkms module install failed. unreferenced object 0xffff88810bc28520 size 16: comm "modprobe", pid 9662, jiffies 4298009455 age 42.590s hex dump first 16...

kernel: LSM: general protection fault in legacy_parse_param

In the Linux kernel, the following vulnerability has been resolved: LSM: general protection fault in legacyparseparam The usual LSM hook "bail on fail" scheme doesn't work for cases where a security module may return an error code indicating that it does not recognize an input. In this particular...

kernel: bnxt: Do not read past the end of test names

A flaw was found in the bnxten module in the Linux kernel. An out-of-bounds read can occur due to an incorrect concatenation of test names, causing a system crash that results in a denial of service...

CVE-2022-48613

Race condition vulnerability in the kernel module. Successful exploitation of this vulnerability may cause variable values to be read with the condition evaluation bypassed...

CVE-2022-48613

Race condition vulnerability in the kernel module. Successful exploitation of this vulnerability may cause variable values to be read with the condition evaluation bypassed...

Race condition

Race condition vulnerability in the kernel module. Successful exploitation of this vulnerability may cause variable values to be read with the condition evaluation bypassed...

CVE-2022-48613

Race condition vulnerability in the kernel module. Successful exploitation of this vulnerability may cause variable values to be read with the condition evaluation bypassed...

CVE-2022-48613

CVE-2022-48613 is described across connected sources as a race-condition vulnerability in a kernel module that can cause variable values to be read with the condition evaluation bypassed. NVD metrics indicate a network attack vector with high complexity, no privileges required, no user interactio...