4 matches found
Memory corruption
In the Linux kernel, picknextrtentity may return a type confused entry, not detected by the BUGON condition, as the confused entry will not be NULL, but listhead.The buggy error condition would lead to a type confused entry with the list head,which would then be used as a type confused...
CVE-2023-1077
In the Linux kernel, picknextrtentity may return a type confused entry, not detected by the BUGON condition, as the confused entry will not be NULL, but listhead.The buggy error condition would lead to a type confused entry with the list head,which would then be used as a type confused...
CVE-2023-1077
CVE-2023-1077A: Linux kernel scheduling: In pick_next_rt_entity(), a type confusion can occur where a non-NULL, non-entry object (a list_head) is misinterpreted as a sched_rt_entity, bypassing BUG_ON checks and causing memory corruption. Public docs (Astra Linux page) mirror this description for ...
CVE-2023-1077
In the Linux kernel, picknextrtentity may return a type confused entry, not detected by the BUGON condition, as the confused entry will not be NULL, but listhead.The buggy error condition would lead to a type confused entry with the list head,which would then be used as a type confused...