2 matches found
CBL Mariner 2.0 Security Update: hyperv-daemons (CVE-2024-26983)
The version of hyperv-daemons installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-26983 advisory. - In the Linux kernel, the following vulnerability has been resolved: bootconfig: use memblockfreelate...
CVE-2024-26983
CVE-2024-26983 is a Linux kernel issue about freeing xbc memory in bootconfig. The root cause was memblock_free() being used during xbc_exit() when memory may have already been handed to the buddy allocator, causing use-after-free (UAF) on certain architectures (e.g., CONFIG_ARCH_KEEP_MEMBLOCK di...