Lucene search
K

18 matches found

OSV
OSV
added 2024/12/27 12:33 p.m.6 views

OESA-2024-2590 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: afunix: Update unixsksk-oobskb under skreceivequeue lock. Billy Jheng Bing-Jhong reported a race between unixgc and queueoob. unixgc tries to garbage-collect...

7.8CVSS6.3AI score0.0067EPSS
Exploits0References21
OSV
OSV
added 2024/10/21 12:15 p.m.1 views

DEBIAN-CVE-2024-47711

In the Linux kernel, the following vulnerability has been resolved: afunix: Don't return OOB skb in manageoob. syzbot reported use-after-free in unixstreamrecvurg. 0 The scenario is 1. sendMSGOOB 2. recvMSGOOB - The consumed OOB remains in recv queue 3. sendMSGOOB 4. recv - manageoob returns the...

7.8CVSS6.3AI score0.00206EPSS
Exploits0References1
OSV
OSV
added 2024/10/21 12:15 p.m.1 views

UBUNTU-CVE-2024-47711

In the Linux kernel, the following vulnerability has been resolved: afunix: Don't return OOB skb in manageoob. syzbot reported use-after-free in unixstreamrecvurg. 0 The scenario is 1. sendMSGOOB 2. recvMSGOOB - The consumed OOB remains in recv queue 3. sendMSGOOB 4. recv - manageoob returns the...

7.8CVSS6.5AI score0.00206EPSS
Exploits0References19
Cvelist
Cvelist
added 2024/10/21 11:53 a.m.23 views

CVE-2024-47711 af_unix: Don't return OOB skb in manage_oob().

In the Linux kernel, the following vulnerability has been resolved: afunix: Don't return OOB skb in manageoob. syzbot reported use-after-free in unixstreamrecvurg. 0 The scenario is 1. sendMSGOOB 2. recvMSGOOB - The consumed OOB remains in recv queue 3. sendMSGOOB 4. recv - manageoob returns the...

0.00206EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2024/10/21 11:53 a.m.9 views

CVE-2024-47711

In the Linux kernel, the following vulnerability has been resolved: afunix: Don't return OOB skb in manageoob. syzbot reported use-after-free in unixstreamrecvurg. 0 The scenario is 1. sendMSGOOB 2. recvMSGOOB - The consumed OOB remains in recv queue 3. sendMSGOOB 4. recv - manageoob returns the...

7.8CVSS6.3AI score0.00206EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2024/06/11 2:5 a.m.4 views

SUSE CVE-2024-36972

In the Linux kernel, the following vulnerability has been resolved: afunix: Update unixsksk-oobskb under skreceivequeue lock. Billy Jheng Bing-Jhong reported a race between unixgc and queueoob. unixgc tries to garbage-collect closed inflight sockets, and then if the socket has MSGOOB in...

7CVSS6.7AI score0.0067EPSS
Exploits0References12
OSV
OSV
added 2024/06/10 3:15 p.m.7 views

AZL-48759 CVE-2024-36972 affecting package kernel for versions less than 6.6.64.2-9

In the Linux kernel, the following vulnerability has been resolved: afunix: Update unixsksk-oobskb under skreceivequeue lock. Billy Jheng Bing-Jhong reported a race between unixgc and queueoob. unixgc tries to garbage-collect closed inflight sockets, and then if the socket has MSGOOB in...

7.5CVSS6.2AI score0.0067EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2024/05/20 5:10 p.m.31 views

CVE-2024-35970

A vulnerability was found in the Linux kernel's Unix domain socket afunix implementation, where stale Out-of-Band OOB data is not cleared from the receive queue. This issue arises when OOB data is dequeued but the associated oobskb is not cleared, leading to incorrect behavior in subsequent recv...

5.5CVSS7.1AI score0.00499EPSS
Exploits0References4
OSV
OSV
added 2024/05/20 10:15 a.m.2 views

DEBIAN-CVE-2024-35970

In the Linux kernel, the following vulnerability has been resolved: afunix: Clear stale u-oobskb. syzkaller started to report deadlock of unixgclock after commit 4090fa373f0e "afunix: Replace garbage collection algorithm.", but it just uncovers the bug that has been there since commit 314001f0bf9...

6.3CVSS5.7AI score0.00499EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/05/20 9:41 a.m.21 views

CVE-2024-35970 af_unix: Clear stale u->oob_skb.

In the Linux kernel, the following vulnerability has been resolved: afunix: Clear stale u-oobskb. syzkaller started to report deadlock of unixgclock after commit 4090fa373f0e "afunix: Replace garbage collection algorithm.", but it just uncovers the bug that has been there since commit 314001f0bf9...

6.3AI score0.00499EPSS
Exploits0References5
OSV
OSV
added 2024/05/20 9:41 a.m.16 views

CVE-2024-35970 af_unix: Clear stale u->oob_skb.

In the Linux kernel, the following vulnerability has been resolved: afunix: Clear stale u-oobskb. syzkaller started to report deadlock of unixgclock after commit 4090fa373f0e "afunix: Replace garbage collection algorithm.", but it just uncovers the bug that has been there since commit 314001f0bf9...

6.3CVSS6.2AI score0.00499EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2024/04/06 1:59 a.m.3 views

SUSE CVE-2024-26676

In the Linux kernel, the following vulnerability has been resolved: afunix: Call kfreeskb for dead unixsk-oobskb in GC. syzbot reported a warning 0 in unixgc with a repro, which creates a socketpair and sends one socket's fd to itself using the peer. socketpairAFUNIX, SOCKSTREAM, 0, 3, 4 = 0...

5.5CVSS6.7AI score0.00229EPSS
Exploits0References10
RedhatCVE
RedhatCVE
added 2024/04/04 5:23 p.m.22 views

CVE-2024-26780

A flaw was found in the Linux kernel's afunix subsystem where tasks could hang while purging out-of-bounds sockets during garbage collection. This issue could potentially lead to system instability. Mitigation Mitigation for this issue is either not available or the currently available options do...

5.5CVSS6.8AI score0.00222EPSS
Exploits0References4
OSV
OSV
added 2024/04/04 9:15 a.m.2 views

UBUNTU-CVE-2024-26750

In the Linux kernel, the following vulnerability has been resolved: afunix: Drop oobskb ref before purging queue in GC. syzbot reported another task hung in unixgc. 0 The current while loop assumes that all of the left candidates have oobskb and calling kfreeskboobskb releases the remaining...

5.5CVSS5.9AI score0.00224EPSS
Exploits0References13
Vulnrichment
Vulnrichment
added 2024/04/04 8:20 a.m.19 views

CVE-2024-26780 af_unix: Fix task hung while purging oob_skb in GC.

In the Linux kernel, the following vulnerability has been resolved: afunix: Fix task hung while purging oobskb in GC. syzbot reported a task hung; at the same time, GC was looping infinitely in listforeachentrysafe for OOB skb. 0 syzbot demonstrated that the listforeachentrysafe was not actually...

6.7AI score0.00222EPSS
Exploits0References5
OSV
OSV
added 2024/04/04 8:20 a.m.6 views

CVE-2024-26750 af_unix: Drop oob_skb ref before purging queue in GC.

In the Linux kernel, the following vulnerability has been resolved: afunix: Drop oobskb ref before purging queue in GC. syzbot reported another task hung in unixgc. 0 The current while loop assumes that all of the left candidates have oobskb and calling kfreeskboobskb releases the remaining...

5.5CVSS6AI score0.00224EPSS
Exploits0References8
OSV
OSV
added 2022/11/14 7:5 p.m.7 views

GSD-2022-1007095 af_unix: Fix memory leaks of the whole sk due to OOB skb.

afunix: Fix memory leaks of the whole sk due to OOB skb. This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.78 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/11/14 6:44 p.m.13 views

GSD-2022-1006845 af_unix: Fix memory leaks of the whole sk due to OOB skb.

afunix: Fix memory leaks of the whole sk due to OOB skb. This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.3 by commit...

7.2AI score
Exploits0
Rows per page
Query Builder