kernel: Bluetooth: hci_sock: Fix not validating setsockopt user input

A denial of service vulnerability was found in the Linux kernel. No input validation is performed in the Bluetooth hcisock function. This vulnerability could lead to a crash, resulting in the loss of system availability...

CVE-2024-57493

An issue in redoxOS relibc before commit 98aa4ea5 allows a local attacker to cause a denial of service via the setsockopt function...

CVE-2024-57493

An issue in redoxOS relibc before commit 98aa4ea5 allows a local attacker to cause a denial of service via the setsockopt function...

PT-2025-17335 · Redoxos · Redoxos

Name of the Vulnerable Software and Affected Versions: redoxOS relibc versions before commit 98aa4ea5 Description: The issue allows a local attacker to cause a denial of service via the setsockopt function. Recommendations: For versions before commit 98aa4ea5, consider disabling the setsockopt...

CVE-2024-57493

An issue in redoxOS relibc before commit 98aa4ea5 allows a local attacker to cause a denial of service via the setsockopt function...

CVE-2024-57493

An issue in redoxOS relibc before commit 98aa4ea5 allows a local attacker to cause a denial of service via the setsockopt function...

relibc 安全漏洞

relibc Redox C Library is an open source library for Redox OS. A security vulnerability exists in versions prior to relibc 98aa4ea5, which stems from the setsockopt function that can lead to a denial of service...

CVE-2024-57493

CVE-2024-57493 affects redoxOS relibc prior to commit 98aa4ea5. The vulnerability arises from an issue in the relibc setsockopt implementation that allows a local attacker to cause a denial of service. Impact is limited to availability degradation; no confidentiality or integrity impact is indica...

net/rose: prevent integer overflows in rose_setsockopt()

...

Linux Distros Unpatched Vulnerability : CVE-2021-47591

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: mptcp: remove tcp ulp setsockopt support TCPULP setsockopt cannot be used for mptcp because...

SUSE CVE-2025-21812

In the Linux kernel, the following vulnerability has been resolved: ax25: rcu protect dev-ax25ptr syzbot found a lockdep issue 1. We should remove ax25 RTNL dependency in ax25setsockopt This should also fix a variety of possible UAF in ax25. 1 WARNING: possible circular locking dependency detecte...

SUSE CVE-2025-21711

In the Linux kernel, the following vulnerability has been resolved: net/rose: prevent integer overflows in rosesetsockopt In case of possible unpredictably large arguments passed to rosesetsockopt and multiplied by extra values on top of that, integer overflows may occur. Do the safest minimum an...

DEBIAN-CVE-2025-21812

In the Linux kernel, the following vulnerability has been resolved: ax25: rcu protect dev-ax25ptr syzbot found a lockdep issue 1. We should remove ax25 RTNL dependency in ax25setsockopt This should also fix a variety of possible UAF in ax25. 1 WARNING: possible circular locking dependency detecte...

UBUNTU-CVE-2025-21812

In the Linux kernel, the following vulnerability has been resolved: ax25: rcu protect dev-ax25ptr syzbot found a lockdep issue 1. We should remove ax25 RTNL dependency in ax25setsockopt This should also fix a variety of possible UAF in ax25. 1 WARNING: possible circular locking dependency detecte...

SUSE CVE-2022-49456

In the Linux kernel, the following vulnerability has been resolved: bonding: fix missed rcu protection When removing the rcureadlock in bondethtoolgettsinfo as discussed 1, I didn't notice it could be called via setsockopt, which doesn't hold rcu lock, as syzbot pointed: stack backtrace: CPU: 0...

DEBIAN-CVE-2025-21711

In the Linux kernel, the following vulnerability has been resolved: net/rose: prevent integer overflows in rosesetsockopt In case of possible unpredictably large arguments passed to rosesetsockopt and multiplied by extra values on top of that, integer overflows may occur. Do the safest minimum an...

AZL-58005 CVE-2025-21711 affecting package kernel for versions less than 5.15.179.1-1

In the Linux kernel, the following vulnerability has been resolved: net/rose: prevent integer overflows in rosesetsockopt In case of possible unpredictably large arguments passed to rosesetsockopt and multiplied by extra values on top of that, integer overflows may occur. Do the safest minimum an...

UBUNTU-CVE-2025-21711

In the Linux kernel, the following vulnerability has been resolved: net/rose: prevent integer overflows in rosesetsockopt In case of possible unpredictably large arguments passed to rosesetsockopt and multiplied by extra values on top of that, integer overflows may occur. Do the safest minimum an...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a rosesetsockopt integer overflow...

CVE-2022-49456

In the Linux kernel, the following vulnerability has been resolved: bonding: fix missed rcu protection When removing the rcureadlock in bondethtoolgettsinfo as discussed 1, I didn't notice it could be called via setsockopt, which doesn't hold rcu lock, as syzbot pointed: stack backtrace: CPU: 0...