CVE-2021-47376

In the Linux kernel, the following vulnerability has been resolved: bpf: Add oversize check before call kvcalloc Commit 7661809d493b "mm: don't allow oversized kvmalloc calls" add the oversize check. When the allocation is larger than what kmalloc supports, the following warning triggered: WARNIN...

UBUNTU-CVE-2021-47376

In the Linux kernel, the following vulnerability has been resolved: bpf: Add oversize check before call kvcalloc Commit 7661809d493b "mm: don't allow oversized kvmalloc calls" add the oversize check. When the allocation is larger than what kmalloc supports, the following warning triggered: WARNIN...

CVE-2021-47376

CVE-2021-47376 is a Linux kernel issue where an oversize allocation in kmalloc path could trigger a warning during BPF verification. The provided description and connected advisories indicate the fix adds an oversize check before kvcalloc() via the commit that introduces the guard in mm/kvmalloc(...

CVE-2024-35849 btrfs: fix information leak in btrfs_ioctl_logical_to_ino()

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix information leak in btrfsioctllogicaltoino Syzbot reported the following information leak for in btrfsioctllogicaltoino: BUG: KMSAN: kernel-infoleak in instrumentcopytouser include/linux/instrumented.h:114 inline BUG:...

CVE-2024-26819

CVE-2024-26819 is rejected/not used; this entry does not represent an active vulnerability.

Unbreakable Enterprise kernel-container security update

4.14.35-2047.523.4.1 - mm: kvmalloc does not fallback to vmalloc for incompatible gfp flags Michal Hocko Orabug: 35164196 4.14.35-2047.523.4 - rds: ib: Keep IB MRs on cleanlist unless we are tearing down the pool Hakon Bugge Orabug: 34987235 - rds: ib: Add FRWR related statistics counters Hakon...

SUSE CVE-2022-3107

An issue was discovered in the Linux kernel through 5.16-rc6. netvscgetethtoolstats in drivers/net/hyperv/netvscdrv.c lacks check of the return value of kvmallocarray and will cause the null pointer dereference...

OESA-2023-1035 kernel security update

Security Fixes: An out-of-bounds memory access flaw was found in the Linux kernel Intel’s iSMT SMBus host controller driver in the way a user triggers the I2CSMBUSBLOCKDATA with the ioctl I2CSMBUS with malicious input data. This flaw allows a local user to crash the system.CVE-2022-2873 An...

AZL-11608 CVE-2022-3107 affecting package kernel for versions less than 5.15.86.1-1

An issue was discovered in the Linux kernel through 5.16-rc6. netvscgetethtoolstats in drivers/net/hyperv/netvscdrv.c lacks check of the return value of kvmallocarray and will cause the null pointer dereference...

DEBIAN-CVE-2022-3107

An issue was discovered in the Linux kernel through 5.16-rc6. netvscgetethtoolstats in drivers/net/hyperv/netvscdrv.c lacks check of the return value of kvmallocarray and will cause the null pointer dereference...

UBUNTU-CVE-2022-3107

An issue was discovered in the Linux kernel through 5.16-rc6. netvscgetethtoolstats in drivers/net/hyperv/netvscdrv.c lacks check of the return value of kvmallocarray and will cause the null pointer dereference...

Linux kernel 代码问题漏洞

Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux. A code issue vulnerability exists in the Linux kernel that stems from an unchecked kvmallocarray return that causes a null pointer dereference...

kernel: hv_netvsc: NULL pointer dereference in netvsc_get_ethtool_stats()

An issue was discovered in the Linux kernel through 5.16-rc6. netvscgetethtoolstats in drivers/net/hyperv/netvscdrv.c lacks check of the return value of kvmallocarray and will cause the null pointer dereference...

kernel: hv_netvsc: NULL pointer dereference in netvsc_get_ethtool_stats()

An issue was discovered in the Linux kernel through 5.16-rc6. netvscgetethtoolstats in drivers/net/hyperv/netvscdrv.c lacks check of the return value of kvmallocarray and will cause the null pointer dereference...

GSD-2022-1007603 vhost/vsock: Use kvmalloc/kvfree for larger packets.

vhost/vsock: Use kvmalloc/kvfree for larger packets. This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.296 by commit...

GSD-2022-1007529 vhost/vsock: Use kvmalloc/kvfree for larger packets.

vhost/vsock: Use kvmalloc/kvfree for larger packets. This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.262 by commit...

GSD-2022-1007427 vhost/vsock: Use kvmalloc/kvfree for larger packets.

vhost/vsock: Use kvmalloc/kvfree for larger packets. This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.220 by commit...

GSD-2022-1007293 vhost/vsock: Use kvmalloc/kvfree for larger packets.

vhost/vsock: Use kvmalloc/kvfree for larger packets. This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.150 by commit...

GSD-2022-1007099 vhost/vsock: Use kvmalloc/kvfree for larger packets.

vhost/vsock: Use kvmalloc/kvfree for larger packets. This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.75 by commit...

GSD-2022-1007002 ext2: Use kvmalloc() for group descriptor array

ext2: Use kvmalloc for group descriptor array This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.75 by commit...