107 matches found
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from the incorrect use of skbget before devqueuexmit...
The vulnerability of the unix_gc() function in the net/unix/garbage.c module, which is part of the Linux kernel’s networking functions, allows a attacker to cause a service failure.
The vulnerability of the unixgc function in the net/unix/garbage.c module, which is part of the Linux kernel’s networking functions, is related to security configuration errors. Exploiting this vulnerability could allow an attacker to cause a service failure...
DEBIAN-CVE-2022-49330
In the Linux kernel, the following vulnerability has been resolved: tcp: fix tcpmtupprobesuccess vs wrong sndcwnd syzbot got a new report 1 finally pointing to a very old bug, added in initial support for MTU probing. tcpmtuprobe has checks about starting an MTU probe if tcpsndcwndtp = 11. But...
UBUNTU-CVE-2024-57901
In the Linux kernel, the following vulnerability has been resolved: afpacket: fix vlangetprotocoldgram vs MSGPEEK Blamed commit forgot MSGPEEK case, allowing a crash 1 as found by syzbot. Rework vlangetprotocoldgram to not touch skb at all, so that it can be used from many cpus on the same skb. A...
CVE-2024-57841 net: fix memory leak in tcp_conn_request()
In the Linux kernel, the following vulnerability has been resolved: net: fix memory leak in tcpconnrequest If inetcskreqskqueuehashadd return false, tcpconnrequest will return without free the dst memory, which allocated in afops-routereq. Here is the kmemleak stack: unreferenced object...
Security update for the Linux Kernel (Live Patch 28 for SLE 15 SP4)
This update for the Linux Kernel 5.14.21-15040024125 fixes several issues. The following security issues were fixed: CVE-2024-50264: vsock/virtio: Initialization of the dangling pointer occurring in vsk-trans bsc1233712. CVE-2022-48956: ipv6: avoid use-after-free in ip6fragment bsc1232637...
DEBIAN-CVE-2022-48969
In the Linux kernel, the following vulnerability has been resolved: xen-netfront: Fix NULL sring after live migration A NAPI is setup for each network sring to poll data to kernel The sring with source host is destroyed before live migration and new sring with target host is setup after live...
kernel: net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc()
A vulnerability was found in the Linux kernel's networking subsystem in the actapi implementation within the tcfidrcheckalloc function, which lead to a possible infinite loop when multiple actions with the same index are added, causing the second request to block indefinitely while holding the...
kernel: net/sched: act_api: fix possible infinite loop in tcf_idr_check_alloc()
A vulnerability was found in the Linux kernel's networking subsystem in the actapi implementation within the tcfidrcheckalloc function, which lead to a possible infinite loop when multiple actions with the same index are added, causing the second request to block indefinitely while holding the...
kernel: net: do not leave a dangling sk pointer, when socket creation fails
A vulnerability was found in the Linux kernel's networking component in the sockrelease function, where a dangling pointer can occur when socket creation fails. This happens when a reference to the socket is not cleared, leading to a use-after-free condition...
kernel: net: fix out-of-bounds access in ops_init
An out-of-bounds memory access flaw was found in the Linux kernel’s networking subsystem in how a local user triggers a complex race condition. This flaw allows a local user to crash or potentially escalate their privileges on the system...
kernel: net, sunrpc: Remap EPERM in case of connection failure in xs_tcp_setup_socket
A flaw was found in the Linux kernel's bpf programs. Under certain conditions, when the kernel attempts to initiate a network connection using the kernelconnect function, it can return a value that causes the cxtcpsetupsocket function to loop. This issue can lead to continuous data writing to the...
ipv6: prevent possible NULL deref in fib6_nh_init()
...
kernel: net: fix out-of-bounds access in ops_init
An out-of-bounds memory access flaw was found in the Linux kernel’s networking subsystem in how a local user triggers a complex race condition. This flaw allows a local user to crash or potentially escalate their privileges on the system...
SUSE CVE-2022-48910
In the Linux kernel, the following vulnerability has been resolved: net: ipv6: ensure we call ipv6mcdown at most once There are two reasons for addrconfnotify to be called with NETDEVDOWN: either the network device is actually going down, or IPv6 was disabled on the interface. If either of them...
kernel: tipc: fix a possible memleak in tipc_buf_append
In the Linux kernel, the following vulnerability has been resolved: tipc: fix a possible memleak in tipcbufappend skblinearize doesn't free the skb when it fails, so move 'buf = NULL' after skblinearize, so that the skb can be freed on the err path...
The vulnerability of the macvlan_handle_frame() function in the drivers/net/macvlan.c file of the Linux kernel’s networking component allows a hacker to cause a service failure.
The vulnerability of the macvlanhandleframe function in the drivers/net/macvlan.c file of the Linux kernel’s networking component is related to a memory leak. Exploiting this vulnerability allows an attacker to cause a service failure...
kernel: net/mlx5e: xsk: Fix crash on regular rq reactivation
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: xsk: Fix crash on regular rq reactivation When the regular rq is reactivated after the XSK socket is closed it could be reading stale cqes which eventually corrupts the rq. This leads to no more traffic being received ...
kernel: net/packet: slab-out-of-bounds access in packet_recvmsg()
An out-of-bounds access issue was found in the Linux kernel networking subsystem in the way raw packet sockets AFPACKET used PACKETCOPYTHRESH and mmap operations. A local attacker with CAPNETRAW capability could use this flaw to trigger a buffer overflow resulting in a system crash or privilege...
kernel: drm/virtio: Check whether transferred 2D BO is shmem
A flaw was found in the Linux kernel networking subsystem. Under certain conditions, a pointer may be dereferenced without proper validation, resulting in a NULL pointer dereference. An unprivileged local user could trigger this flaw by exercising the affected networking functionality, causing a...