CVE-2024-26640

A vulnerability was found in Linux Kernel where rx zerocopy feature allowed mapping of pages owned by the filesystem, leading to potential system panic which is caused by the lack of sanity checks to rx zerocopy. A local authenticated attacker could exploit this vulnerability to cause a denial of...

CVE-2024-26640 tcp: add sanity checks to rx zerocopy

In the Linux kernel, the following vulnerability has been resolved: tcp: add sanity checks to rx zerocopy TCP rx zerocopy intent is to map pages initially allocated from NIC drivers, not pages owned by a fs. This patch adds to canmapfrag these additional checks: - Page must not be a compound one....

CVE-2024-26640 tcp: add sanity checks to rx zerocopy

In the Linux kernel, the following vulnerability has been resolved: tcp: add sanity checks to rx zerocopy TCP rx zerocopy intent is to map pages initially allocated from NIC drivers, not pages owned by a fs. This patch adds to canmapfrag these additional checks: - Page must not be a compound one....

SUSE CVE-2003-0001

Multiple ethernet Network Interface Card NIC device drivers do not pad frames with null bytes, which allows remote attackers to obtain information from previous packets or kernel memory by using malformed packets, as demonstrated by Etherleak...

Realtek USB driver 安全漏洞

The Realtek USB driver is a series of gaming Ethernet family controller drivers from China-based Realtek Semiconductor Realtek. A security vulnerability exists in the Realtek USB FE/1GbE/2.5GbE/5GbE NIC Family, which stems from insufficient validation of parameter lengths in API functions. An...

Etherleak information leak in Windows Server 2003 drivers

NGSSoftware Insight Security Research Advisory Name: Etherleak information leak in Windows Server 2003 drivers Systems Affected: Windows Server 2003 all versions Severity: Low/Medium Risk Vendor URL: http://www.microsoft.com/windowsserver2003/ Author: Chris Paget [email protected] Date: 9th...