121 matches found
GSD-2022-1006850 vhost/vsock: Use kvmalloc/kvfree for larger packets.
vhost/vsock: Use kvmalloc/kvfree for larger packets. This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.3 by commit...
GSD-2022-1006717 ext2: Use kvmalloc() for group descriptor array
ext2: Use kvmalloc for group descriptor array This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.3 by commit...
PT-2022-35105 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.3 Description: The issue is related to the use of kvmalloc/kvfree for larger packets in vhost/vsock. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel...
PT-2022-35858 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.14.296 Description: The issue is related to the use of kvmalloc/kvfree for larger packets in vhost/vsock. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel...
PT-2022-35784 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.19.262 Description: The issue concerns the use of kvmalloc/kvfree for larger packets in vhost/vsock. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel...
PT-2022-35682 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.220 Description: The issue is related to the use of kvmalloc/kvfree for larger packets in vhost/vsock. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel...
PT-2022-35257 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.75 Description: The issue is related to the use of kvmalloc for the group descriptor array in ext2. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel...
kernel: hv_netvsc: NULL pointer dereference in netvsc_get_ethtool_stats()
An issue was discovered in the Linux kernel through 5.16-rc6. netvscgetethtoolstats in drivers/net/hyperv/netvscdrv.c lacks check of the return value of kvmallocarray and will cause the null pointer dereference...
GSD-2022-1000776 mm: Consider __GFP_NOWARN flag for oversized kvmalloc() calls
mm: Consider GFPNOWARN flag for oversized kvmalloc calls This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.27 by commit...
GSD-2022-1000706 mm: Consider __GFP_NOWARN flag for oversized kvmalloc() calls
mm: Consider GFPNOWARN flag for oversized kvmalloc calls This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.16.13 by commit...
UVI-2021-1001713 netfilter: ipset: Fix oversized kvmalloc() calls
netfilter: ipset: Fix oversized kvmalloc calls This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.14.10 by commit...
UVI-2021-1001706 netfilter: nf_tables: Fix oversized kvmalloc() calls
netfilter: nftables: Fix oversized kvmalloc calls This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.14.10 by commit...
GSD-2021-1001639 netfilter: ipset: Fix oversized kvmalloc() calls
netfilter: ipset: Fix oversized kvmalloc calls This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.71 by commit...
UVI-2021-1001639 netfilter: ipset: Fix oversized kvmalloc() calls
netfilter: ipset: Fix oversized kvmalloc calls This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.71 by commit...
UVI-2021-1001634 netfilter: nf_tables: Fix oversized kvmalloc() calls
netfilter: nftables: Fix oversized kvmalloc calls This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.71 by commit...
GSD-2021-1001587 netfilter: ipset: Fix oversized kvmalloc() calls
netfilter: ipset: Fix oversized kvmalloc calls This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.151 by commit...
UVI-2021-1001587 netfilter: ipset: Fix oversized kvmalloc() calls
netfilter: ipset: Fix oversized kvmalloc calls This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.151 by commit...
GSD-2021-1001558 netfilter: ipset: Fix oversized kvmalloc() calls
netfilter: ipset: Fix oversized kvmalloc calls This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.209 by commit...
UVI-2021-1001558 netfilter: ipset: Fix oversized kvmalloc() calls
netfilter: ipset: Fix oversized kvmalloc calls This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.209 by commit...
GSD-2021-1001529 netfilter: ipset: Fix oversized kvmalloc() calls
netfilter: ipset: Fix oversized kvmalloc calls This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.249 by commit...