CVE-2024-42233

In the Linux kernel, the following vulnerability has been resolved: filemap: replace pteoffsetmap with pteoffsetmapnolock The vmf-ptl in filemapfaultrecheckptenone is still set from handleptefault. But at the same time, we did a pteunmapvmf-pte. After a pteunmapvmf-pte unmap and rcureadunlock, th...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel, which stems from the filemap module's use of pteoffsetmap in filemapfaultrecheckptenone could lead to the use of a PTL pointer...

SUSE CVE-2024-41019

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Validate ff offset This adds sanity checks for ff offset. There is a check on rt-firstfree at first, but walking through by ff without any check. If the second ff is a large offset. We may encounter an out-of-bound read...

SUSE CVE-2024-42072

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix maygoto with negative offset. Zac's syzbot crafted a bpf prog that exposed two bugs in maygoto. The 1st bug is the way maygoto is patched. When offset is negative it should be patched differently. The 2nd bug is in the...

SUSE CVE-2024-42120

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check pipe offset before setting vblank pipectx has a size of MAXPIPES so checking its index before accessing the array. This fixes an OVERRUN issue reported by Coverity...

CVE-2024-33013

Transient DOS when driver accesses the ML IE memory and offset value is incremented beyond ML IE length...

CVE-2024-33013 Buffer Over-read in WLAN Host

Transient DOS when driver accesses the ML IE memory and offset value is incremented beyond ML IE length...

CVE-2024-33013

CVE-2024-33013 describes a transient denial-of-service affecting Qualcomm WLAN-related components. Public records here indicate the vulnerability occurs when a driver accesses ML IE memory and the offset is incremented beyond the ML IE length, potentially causing a DoS condition. Affected items i...

PT-2024-25059 · Qualcomm · Snapdragon +159

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue occurs when a driver accesses the ML IE memory and the offset value is incremented beyond the ML IE length, resulting in a transient Denial of...

CVE-2024-42084

An unexpected file truncate flaw was found when opening files with specific parameters in the Linux kernel's file-system. This vulnerability allows a local user to corrupt specific files when having access to these files. Mitigation Mitigation for this issue is either not available or the current...

CVE-2024-42072

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix maygoto with negative offset. Zac's syzbot crafted a bpf prog that exposed two bugs in maygoto. The 1st bug is the way maygoto is patched. When offset is negative it should be patched differently. The 2nd bug is in the...

CVE-2024-41019

A flaw was found in the fs/ntfs3 module in the Linux kernel. This issue involved inadequate validation of the ff offset, which could lead to out-of-bounds reads if the offset was excessively large. This flaw posed risks of crashes and information leaks, and has been addressed by adding sanity...

DEBIAN-CVE-2024-42120

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check pipe offset before setting vblank pipectx has a size of MAXPIPES so checking its index before accessing the array. This fixes an OVERRUN issue reported by Coverity...

CVE-2024-42120

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check pipe offset before setting vblank pipectx has a size of MAXPIPES so checking its index before accessing the array. This fixes an OVERRUN issue reported by Coverity...

CVE-2024-42120 drm/amd/display: Check pipe offset before setting vblank

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check pipe offset before setting vblank pipectx has a size of MAXPIPES so checking its index before accessing the array. This fixes an OVERRUN issue reported by Coverity...

CVE-2024-42120

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check pipe offset before setting vblank pipectx has a size of MAXPIPES so checking its index before accessing the array. This fixes an OVERRUN issue reported by Coverity...

DEBIAN-CVE-2024-42084

In the Linux kernel, the following vulnerability has been resolved: ftruncate: pass a signed offset The old ftruncate syscall, using the 32-bit offt misses a sign extension when called in compat mode on 64-bit architectures. As a result, passing a negative length accidentally succeeds in truncati...

UBUNTU-CVE-2024-42084

In the Linux kernel, the following vulnerability has been resolved: ftruncate: pass a signed offset The old ftruncate syscall, using the 32-bit offt misses a sign extension when called in compat mode on 64-bit architectures. As a result, passing a negative length accidentally succeeds in truncati...

CVE-2024-42084 ftruncate: pass a signed offset

In the Linux kernel, the following vulnerability has been resolved: ftruncate: pass a signed offset The old ftruncate syscall, using the 32-bit offt misses a sign extension when called in compat mode on 64-bit architectures. As a result, passing a negative length accidentally succeeds in truncati...

DEBIAN-CVE-2024-42072

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix maygoto with negative offset. Zac's syzbot crafted a bpf prog that exposed two bugs in maygoto. The 1st bug is the way maygoto is patched. When offset is negative it should be patched differently. The 2nd bug is in the...