SUSE CVE-2022-50046

In the Linux kernel, the following vulnerability has been resolved: net/sunrpc: fix potential memory leaks in rpcsysfsxprtstatechange The issue happens on some error handling paths. When the function fails to grab the object xprt, it simply returns 0, forgetting to decrease the reference count of...

Oracle Linux 8 : kernel (ELSA-2024-5101)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-5101 advisory. - ionic: fix use after netifnapidel CKI Backport Bot RHEL-47624 CVE-2024-39502 - ionic: clean interrupt before enabling queue to avoid credit race CKI...

The vulnerability of the svc_tcp_listen_data_ready() function in the Linux operating system’s RPC (Remote Procedure Call) kernel implementation allows a attacker to compromise the accessibility of protected information.

The vulnerability of the svctcplistendataready function in the net/sunrpc/svcsock.c module, which is part of the Linux operating system’s RPC Remote Procedure Call protocol, relates to the reallocation of previously freed memory due to concurrent access to resources. Exploiting this vulnerability...

CVE-2021-47624

A memory leak flaw was found in the Linux kernel’s SunRpc filesystem sysfs. This flaw allows a local user to crash the system. Mitigation To mitigate this issue, prevent module sunrpc from being loaded. Please see https://access.redhat.com/solutions/41278 for how to blacklist a kernel module to...

CVE-2021-47624

In the Linux kernel, the following vulnerability has been resolved: net/sunrpc: fix reference count leaks in rpcsysfsxprtstatechange The refcount leak issues take place in an error handling path. When the 3rd argument buf doesn't match with "offline", "online" or "remove", the function simply...

CVE-2021-47624

In the Linux kernel, the following vulnerability has been resolved: net/sunrpc: fix reference count leaks in rpcsysfsxprtstatechange The refcount leak issues take place in an error handling path. When the 3rd argument buf doesn't match with "offline", "online" or "remove", the function simply...

UBUNTU-CVE-2021-47624

In the Linux kernel, the following vulnerability has been resolved: net/sunrpc: fix reference count leaks in rpcsysfsxprtstatechange The refcount leak issues take place in an error handling path. When the 3rd argument buf doesn't match with "offline", "online" or "remove", the function simply...

CVE-2021-47624

In the Linux kernel, the following vulnerability has been resolved: net/sunrpc: fix reference count leaks in rpcsysfsxprtstatechange The refcount leak issues take place in an error handling path. When the 3rd argument buf doesn't match with "offline", "online" or "remove", the function simply...

GSD-2022-1005501 net/sunrpc: fix potential memory leaks in rpc_sysfs_xprt_state_change()

net/sunrpc: fix potential memory leaks in rpcsysfsxprtstatechange This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.63 by commit...

GSD-2022-1005122 net/sunrpc: fix potential memory leaks in rpc_sysfs_xprt_state_change()

net/sunrpc: fix potential memory leaks in rpcsysfsxprtstatechange This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.4 by commit...

GSD-2022-1000489 net/sunrpc: fix reference count leaks in rpc_sysfs_xprt_state_change

net/sunrpc: fix reference count leaks in rpcsysfsxprtstatechange This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.16.10 by commit...

GSD-2022-1000414 net/sunrpc: fix reference count leaks in rpc_sysfs_xprt_state_change

net/sunrpc: fix reference count leaks in rpcsysfsxprtstatechange This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.24 by commit...

Design/Logic Flaw

net/sunrpc/xdr.c in the Linux kernel before 5.13.4 allows remote attackers to cause a denial of service xdrsetpagebase slab-out-of-bounds access by performing many NFS 4.2 READPLUS operations...

CVE-2017-7645

The NFSv2/NFSv3 server in the nfsd subsystem in the Linux kernel through 4.10.11 allows remote attackers to cause a denial of service system crash via a long RPC reply, related to net/sunrpc/svc.c, fs/nfsd/nfs3xdr.c, and fs/nfsd/nfsxdr.c...

kernel security and bug fix update

2.6.32-358.2.1 - kernel utrace: ensure archptrace/ptracerequest can never race with SIGKILL Oleg Nesterov 912073 912074 CVE-2013-0871 2.6.32-358.1.1 - netdrv mlx4: Set number of msix vectors under SRIOV mode to firmware defaults Michal Schmidt 911663 904726 - netdrv mlx4: Fix bridged vSwitch...

Linux Kernel proc_do_xprt()函数本地栈溢出漏洞

BUGTRAQ ID: 31937 CVECAN ID: CVE-2008-3911 Linux Kernel是开放源码操作系统Linux所使用的内核。 Linux Kernel的net/sunrpc/sysctl.c文件中的procdoxprt函数没有检查某些从用户域所获得缓冲区的长度，本地攻击者可以通过对/proc/sys/sunrpc/transports文件特制的读系统调用触发栈溢出，导致执行任意指令。 Linux kernel 2.6.26.3 Linux ----- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：...