10 matches found
Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: mm/secretmem: A panic occurs when growing a memfdsecret. When attempting to grow an existing memfdsecret using ftruncate, a panic occurs 1. For example, performing the following reliably will cause the panic: c fd = memfdsecret;...
DEBIAN-CVE-2022-49049
In the Linux kernel, the following vulnerability has been resolved: mm/secretmem: fix panic when growing a memfdsecret When one tries to grow an existing memfdsecret with ftruncate, one gets a panic 1. For example, doing the following reliably induces the panic: fd = memfdsecret; ftruncatefd, 10;...
SUSE CVE-2021-47408
In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: serialize hash resizes and cleanups Syzbot was able to trigger the following warning 1 No repro found by syzbot yet but I was able to trigger similar issue by having 2 scripts running in parallel, changing...
CVE-2021-47408
In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: serialize hash resizes and cleanups Syzbot was able to trigger the following warning 1 No repro found by syzbot yet but I was able to trigger similar issue by having 2 scripts running in parallel, changing...
DEBIAN-CVE-2021-47408
In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: serialize hash resizes and cleanups Syzbot was able to trigger the following warning 1 No repro found by syzbot yet but I was able to trigger similar issue by having 2 scripts running in parallel, changing...
CVE-2021-47408 netfilter: conntrack: serialize hash resizes and cleanups
In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: serialize hash resizes and cleanups Syzbot was able to trigger the following warning 1 No repro found by syzbot yet but I was able to trigger similar issue by having 2 scripts running in parallel, changing...
CVE-2021-47408
CVE-2021-47408 affects the Linux kernel netfilter conntrack code. The issue arises when the conntrack hash table resizes or during cleanup, causing nf_ct_iterate_cleanup to restart after a resize and delaying net_namespace teardown. The available connected documents state that adding a mutex to s...
GSD-2021-1001707 netfilter: conntrack: serialize hash resizes and cleanups
netfilter: conntrack: serialize hash resizes and cleanups This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.14.10 by commit...
ruby: BasicSocket#read_nonblock method leads to information disclosure
An issue was discovered in Ruby 2.5.x through 2.5.7, 2.6.x through 2.6.5, and 2.7.0. If a victim calls BasicSocketreadnonblockrequestedsize, buffer, exception: false, the method resizes the buffer to fit the requested size, but no data is copied. Thus, the buffer string provides the previous valu...
CVE-2020-15888
Lua through 5.4.0 mishandles the interaction between stack resizes and garbage collection, leading to a heap-based buffer overflow, heap-based buffer over-read, or use-after-free...