Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the insufficient validation provided by the clsu32 classifier using the skbheaderpointer function,...

DEBIAN-CVE-2023-53433

In the Linux kernel, the following vulnerability has been resolved: net: add vlangetprotocolanddepth helper Before blamed commit, pskbmaypull was used instead of skbheaderpointer in vlangetprotocol and friends. Few callers depended on skb-head being populated with MAC header, syzbot caught one of...

CVE-2021-47397

In the Linux kernel, the following vulnerability has been resolved: sctp: break out if skbheaderpointer returns NULL in sctprcvootb We should always check if skbheaderpointer's return is NULL before using it, otherwise it may cause null-ptr-deref, as syzbot reported: KASAN: null-ptr-deref in rang...

CVE-2021-47397 sctp: break out if skb_header_pointer returns NULL in sctp_rcv_ootb

In the Linux kernel, the following vulnerability has been resolved: sctp: break out if skbheaderpointer returns NULL in sctprcvootb We should always check if skbheaderpointer's return is NULL before using it, otherwise it may cause null-ptr-deref, as syzbot reported: KASAN: null-ptr-deref in rang...

CVE-2021-47397 sctp: break out if skb_header_pointer returns NULL in sctp_rcv_ootb

In the Linux kernel, the following vulnerability has been resolved: sctp: break out if skbheaderpointer returns NULL in sctprcvootb We should always check if skbheaderpointer's return is NULL before using it, otherwise it may cause null-ptr-deref, as syzbot reported: KASAN: null-ptr-deref in rang...

UVI-2021-1001721 sctp: break out if skb_header_pointer returns NULL in sctp_rcv_ootb

sctp: break out if skbheaderpointer returns NULL in sctprcvootb This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.14.10 by commit...

GSD-2021-1001647 sctp: break out if skb_header_pointer returns NULL in sctp_rcv_ootb

sctp: break out if skbheaderpointer returns NULL in sctprcvootb This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.71 by commit...

GSD-2021-1001560 sctp: break out if skb_header_pointer returns NULL in sctp_rcv_ootb

sctp: break out if skbheaderpointer returns NULL in sctprcvootb This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.209 by commit...

UVI-2021-1001534 sctp: break out if skb_header_pointer returns NULL in sctp_rcv_ootb

sctp: break out if skbheaderpointer returns NULL in sctprcvootb This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.249 by commit...

RHEL 6 : kernel (RHSA-2014:0634)

Updated kernel packages that fix three security issues and several bugs are now available for Red Hat Enterprise Linux 6.4 Extended Update Support. The Red Hat Security Response Team has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores,...

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix two security issues and one bug are now available for Red Hat Enterprise Linux 6.3 Extended Update Support. The Red Hat Security Response Team has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which gi...

Scientific Linux Security Update : kernel on SL6.x i386/x86_64 (20140507)

A flaw was found in the way the Linux kernel's netfilter connection tracking implementation for Datagram Congestion Control Protocol DCCP packets used the skbheaderpointer function. A remote attacker could use this flaw to send a specially crafted DCCP packet to crash the system or, potentially,...

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix three security issues and several bugs are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severit...

kernel: netfilter: nf_conntrack_dccp: incorrect skb_header_pointer API usages

net/netfilter/nfconntrackprotodccp.c in the Linux kernel through 3.13.6 uses a DCCP header pointer incorrectly, which allows remote attackers to cause a denial of service system crash or possibly execute arbitrary code via a DCCP packet that triggers a call to the 1 dccpnew, 2 dccppacket, or 3...

Oracle Linux 6 : unbreakable enterprise kernel (ELSA-2014-3014)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2014-3014 advisory. - netfilter: nfconntrackdccp: fix skbheaderpointer API usages Daniel Borkmann Orabug: 18421673 CVE-2014-2523 - cifs: ensure that uncached writes handle...