31 matches found
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: net: mana: Fixed a race condition related to the per-CQ variable napiworkdone. After calling napicompletedone, the NAPIFSTATESCHED bit may be cleared, allowing another CPU to start a napi thread and access the per-CQ variable...
EUVD-2015-1143
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2022-48985
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: net: mana: Fix race on per-CQ variable napi workdone After calling napicompletedone, the...
CVE-2010-0104
Unspecified vulnerability in the Broadcom Integrated NIC Management Firmware 1.x before 1.40.0.0 and 8.x before 8.08 on the HP Small Form Factor and Microtower platforms allows remote attackers to execute arbitrary code via unknown vectors...
Linux Distros Unpatched Vulnerability : CVE-2015-1142857
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - On multiple SR-IOV cars it is possible for VF's assigned to guests to send ethernet flow control pause frames via the PF. This includes Linux kernel ixgbe drive...
CVE-2022-48985
In the Linux kernel, the following vulnerability has been resolved: net: mana: Fix race on per-CQ variable napi workdone After calling napicompletedone, the NAPIFSTATESCHED bit may be cleared, and another CPU can start napi thread and access per-CQ variable, cq-workdone. If the other thread for...
CVE-2022-48985 net: mana: Fix race on per-CQ variable napi work_done
In the Linux kernel, the following vulnerability has been resolved: net: mana: Fix race on per-CQ variable napi workdone After calling napicompletedone, the NAPIFSTATESCHED bit may be cleared, and another CPU can start napi thread and access per-CQ variable, cq-workdone. If the other thread for...
CVE-2022-48985
CVE-2022-48985 (Linux kernel) : A race on per-CQ variable napi_work_done in net: mana can allow a concurrent thread to race with napi_complete_done(), potentially clearing NAPIF_STATE_SCHED and corrupting cq->work_done, leading to memory corruption and panic. The fix saves the per-CQ work_done...
CVE-2022-48985 net: mana: Fix race on per-CQ variable napi work_done
In the Linux kernel, the following vulnerability has been resolved: net: mana: Fix race on per-CQ variable napi workdone After calling napicompletedone, the NAPIFSTATESCHED bit may be cleared, and another CPU can start napi thread and access per-CQ variable, cq-workdone. If the other thread for...
CVE-2023-0203
NVIDIA ConnectX-5, ConnectX-6, and ConnectX6-DX contain a vulnerability in the NIC firmware, where an unprivileged user can exploit insufficient granularity of access control, which may lead to denial of service...
CVE-2023-0204
NVIDIA ConnectX-5, ConnectX-6, and ConnectX6-DX contain a vulnerability in the NIC firmware, where an unprivileged user can cause improper handling of exceptional conditions, which may lead to denial of service...
CVE-2023-0205
NVIDIA ConnectX-5, ConnectX-6, and ConnectX6-DX contain a vulnerability in the NIC firmware, where an unprivileged user can exploit insufficient granularity of access control, which may lead to denial of service...
CVE-2023-0204
NVIDIA ConnectX-5, ConnectX-6, and ConnectX6-DX contain a vulnerability in the NIC firmware, where an unprivileged user can cause improper handling of exceptional conditions, which may lead to denial of service...
Design/Logic Flaw
NVIDIA ConnectX-5, ConnectX-6, and ConnectX6-DX contain a vulnerability in the NIC firmware, where an unprivileged user can cause improper handling of exceptional conditions, which may lead to denial of service...
Improper access control
NVIDIA ConnectX-5, ConnectX-6, and ConnectX6-DX contain a vulnerability in the NIC firmware, where an unprivileged user can exploit insufficient granularity of access control, which may lead to denial of service...
Improper access control
NVIDIA ConnectX-5, ConnectX-6, and ConnectX6-DX contain a vulnerability in the NIC firmware, where an unprivileged user can exploit insufficient granularity of access control, which may lead to denial of service...
CVE-2023-0205
NVIDIA ConnectX-5, ConnectX-6, and ConnectX6-DX contain a vulnerability in the NIC firmware, where an unprivileged user can exploit insufficient granularity of access control, which may lead to denial of service...
CVE-2023-0205
CVE-2023-0205 affects NVIDIA ConnectX firmware on ConnectX-5, ConnectX-6, and ConnectX6-DX. The root cause is insufficient granularity of access control in the NIC firmware, which can allow an unprivileged user to cause a denial of service. The NVIDIA advisory consolidates this with CVSS-based im...
CVE-2023-0204
CVE-2023-0204 affects NVIDIA ConnectX-5, ConnectX-6, and ConnectX6-DX NIC firmware. The issue is described as improper handling of exceptional conditions in the NIC firmware, resulting in denial of service by an unprivileged user. The vulnerability impacts the NIC firmware layer, with potential f...
CVE-2023-0203
CVE-2023-0203 affects NVIDIA ConnectX firmware on ConnectX-5, ConnectX-6, and ConnectX6-DX. The issue stems from insufficient granularity of access controls in the NIC firmware, enabling an unprivileged user to cause a denial of service. NVIDIA’s security bulletin lists CVE-2023-0203 with base sc...