8 matches found
Astra Linux – Vulnerability in Linux, Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: can: pchcan; pchcanrxnormal: fix use after free After calling netifreceiveskbskb, dereferencing the skb is unsafe. In particular, the canframe field, which aliases memory of type skb, is dereferenced just after the call to...
SUSE CVE-2021-47520
In the Linux kernel, the following vulnerability has been resolved: can: pchcan: pchcanrxnormal: fix use after free After calling netifreceiveskbskb, dereferencing skb is unsafe. Especially, the canframe cf which aliases skb memory is dereferenced just after the call netifreceiveskbskb. Reorderin...
DEBIAN-CVE-2021-47520
In the Linux kernel, the following vulnerability has been resolved: can: pchcan: pchcanrxnormal: fix use after free After calling netifreceiveskbskb, dereferencing skb is unsafe. Especially, the canframe cf which aliases skb memory is dereferenced just after the call netifreceiveskbskb. Reorderin...
CVE-2021-47520
In the Linux kernel, the following vulnerability has been resolved: can: pchcan: pchcanrxnormal: fix use after free After calling netifreceiveskbskb, dereferencing skb is unsafe. Especially, the canframe cf which aliases skb memory is dereferenced just after the call netifreceiveskbskb. Reorderin...
CVE-2021-47520 can: pch_can: pch_can_rx_normal: fix use after free
In the Linux kernel, the following vulnerability has been resolved: can: pchcan: pchcanrxnormal: fix use after free After calling netifreceiveskbskb, dereferencing skb is unsafe. Especially, the canframe cf which aliases skb memory is dereferenced just after the call netifreceiveskbskb. Reorderin...
CVE-2024-26641 ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv()
In the Linux kernel, the following vulnerability has been resolved: ip6tunnel: make sure to pull inner header in ip6tnlrcv syzbot found ip6tnlrcv could access unitiliazed data 1. Call pskbinetmaypull to fix this, and initialize ipv6h variable after this call as it can change skb-head. 1 BUG: KMSA...
Spoofing
In the Linux kernel, the following vulnerability has been resolved: veth: ensure skb entering GRO are not cloned. After commit d3256efd8e8b "veth: allow enabling NAPI even without XDP", if GRO is enabled on a veth device and TSO is disabled on the peer device, TCP skbs will go through the NAPI...
CVE-2023-52577 dccp: fix dccp_v4_err()/dccp_v6_err() again
In the Linux kernel, the following vulnerability has been resolved: dccp: fix dccpv4err/dccpv6err again dh-dccphx is the 9th byte offset 8 in "struct dccphdr", not in the "byte 7" as Jann claimed. We need to make sure the ICMP messages are big enough, using more standard ways no more assumptions...