UBUNTU-CVE-2024-35890

In the Linux kernel, the following vulnerability has been resolved: gro: fix ownership transfer If packets are GROed with fraglist they might be segmented later on and continue their journey in the stack. In skbsegmentlist those skbs can be reused as-is. This is an issue as their destructor was...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from allowing non-tunneled GSO skbs to log in the tunnel...

SUSE CVE-2024-27403

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftflowoffload: reset dst in route object after setting up flow dst is transferred to the flow object, route object does not own it anymore. Reset dst in route object, otherwise if flowoffloadadd fails, error path...

DEBIAN-CVE-2024-27403

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftflowoffload: reset dst in route object after setting up flow dst is transferred to the flow object, route object does not own it anymore. Reset dst in route object, otherwise if flowoffloadadd fails, error path...

UBUNTU-CVE-2024-27403

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftflowoffload: reset dst in route object after setting up flow dst is transferred to the flow object, route object does not own it anymore. Reset dst in route object, otherwise if flowoffloadadd fails, error path...

SUSE CVE-2022-48691

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: clean up hook list when offload flags check fails splice back the hook list so nftchainreleasehook has a chance to release the hooks. BUG: memory leak unreferenced object 0xffff88810180b100 size 96: comm...

SUSE: Security Advisory (SUSE-SU-2024:0922-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE CVE-2024-27056

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: ensure offloading TID queue exists The resume code path assumes that the TX queue for the offloading TID has been configured. At resume time it then tries to sync the write pointer as it may have been updated ...

DEBIAN-CVE-2022-48691

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: clean up hook list when offload flags check fails splice back the hook list so nftchainreleasehook has a chance to release the hooks. BUG: memory leak unreferenced object 0xffff88810180b100 size 96: comm...

UBUNTU-CVE-2022-48691

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: clean up hook list when offload flags check fails splice back the hook list so nftchainreleasehook has a chance to release the hooks. BUG: memory leak unreferenced object 0xffff88810180b100 size 96: comm...

UBUNTU-CVE-2022-48675

In the Linux kernel, the following vulnerability has been resolved: IB/core: Fix a nested dead lock as part of ODP flow Fix a nested dead lock as part of ODP flow by using mmputasync. From the below call trace 1 can see that calling mmput once we have the umemodp-umemmutex locked as required by...

CVE-2022-48691 netfilter: nf_tables: clean up hook list when offload flags check fails

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: clean up hook list when offload flags check fails splice back the hook list so nftchainreleasehook has a chance to release the hooks. BUG: memory leak unreferenced object 0xffff88810180b100 size 96: comm...

CVE-2022-48691

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: clean up hook list when offload flags check fails splice back the hook list so nftchainreleasehook has a chance to release the hooks. BUG: memory leak unreferenced object 0xffff88810180b100 size 96: comm...

CVE-2022-48691 netfilter: nf_tables: clean up hook list when offload flags check fails

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: clean up hook list when offload flags check fails splice back the hook list so nftchainreleasehook has a chance to release the hooks. BUG: memory leak unreferenced object 0xffff88810180b100 size 96: comm...

CVE-2022-48691

CVE-2022-48691 is a Linux kernel vulnerability affecting nf_tables offload hook handling. The issue arises from clean up of the hook list when offload flag checks fail, enabling a memory leak of an unreferenced object and preventing nft_chain_release_hook() from freeing hooks. The connected Nessu...

kernel: net/mlx5e: Check for NOT_READY flag state after locking

A race condition was found in the Linux kernel Mellanox mlx5 network driver's traffic control offload flow management. A local user with privileges to configure traffic control flower filters can trigger concurrent flow deletion operations where the NOTREADY flag is checked before acquiring the...

SUSE CVE-2022-48645

In the Linux kernel, the following vulnerability has been resolved: net: enetc: deny offload of tc-based TSN features on VF interfaces TSN features on the ENETC taprio, cbs, gate, police are configured through a mix of command BD ring messages and port registers: enetcportrd, enetcportwr. Port...

SUSE CVE-2022-48644

In the Linux kernel, the following vulnerability has been resolved: net/sched: taprio: avoid disabling offload when it was never enabled In an incredibly strange API design decision, qdisc-destroy gets called even if qdisc-init never succeeded, not exclusively since commit 87b60cfacf9f "netsched:...

CVE-2022-48645

In the Linux kernel, the following vulnerability has been resolved: net: enetc: deny offload of tc-based TSN features on VF interfaces TSN features on the ENETC taprio, cbs, gate, police are configured through a mix of command BD ring messages and port registers: enetcportrd, enetcportwr. Port...

CVE-2022-48644

A flaw was found in the Linux kernel’s Time-Aware Priority Shaper taprio scheduler. The issue arises because the taprio scheduler attempts to disable hardware offload, even if it was never enabled, due to an unusual API design. This issue can result in improper handling and potential system...