kernel: network backend may cause Linux netfront to use freed SKBs (XSA-405)

An incomplete cleanup flaw was found in the Linux kernel’s Xen networking XDP eXpress Data Path subsystem. This flaw allows a local user to crash the system...

kernel: network backend may cause Linux netfront to use freed SKBs (XSA-405)

An incomplete cleanup flaw was found in the Linux kernel’s Xen networking XDP eXpress Data Path subsystem. This flaw allows a local user to crash the system...

SUSE CVE-2006-4997

The clipmkip function in net/atm/clip.c of the ATM subsystem in Linux kernel allows remote attackers to cause a denial of service panic via unknown vectors that cause the ATM subsystem to access the memory of socket buffers after they are freed freed pointer dereference...

SUSE CVE-2013-2017

The veth aka virtual Ethernet driver in the Linux kernel before 2.6.34 does not properly manage skbs during congestion, which allows remote attackers to cause a denial of service system crash by leveraging lack of skb consumption in conjunction with a double-free error...

SUSE CVE-2022-26878

drivers/bluetooth/virtiobt.c in the Linux kernel before 5.16.3 has a memory leak socket buffers have memory allocated but not freed...

Ubuntu: Security Advisory (USN-5773-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

kernel: veth: ensure skb entering GRO are not cloned.

In the Linux kernel, the following vulnerability has been resolved: veth: ensure skb entering GRO are not cloned. After commit d3256efd8e8b "veth: allow enabling NAPI even without XDP", if GRO is enabled on a veth device and TSO is disabled on the peer device, TCP skbs will go through the NAPI...

kernel: bpf, cpumap: Handle skb as well when clean up ptr_ring

An incorrect object type handling flaw was found in the Linux kernel's BPF cpumap implementation in the cleanup path. A local user can trigger this issue by running XDP redirect operations in SKB mode with the cpumap, causing the cleanup code to incorrectly treat socket buffers as XDP frames when...

kernel: igb: fix a use-after-free issue in igb_clean_tx_ring

A vulnerability was found in the Linux kernel in the Intel igb driver function igbcleantxring when running in XDP mode. A use-after-free issue can arise from attempting to free skb memory using devkfreeskbany. This issue potentially leads to system instability and memory corruption...

network backend may cause Linux netfront to use freed SKBs While adding logic to support XDP (eXpress Data Path) a code label was moved in a way allowing for SKBs having references (pointers) retained for further processing to nevertheless be freed.

...

ALPINE-CVE-2022-33743

network backend may cause Linux netfront to use freed SKBs While adding logic to support XDP eXpress Data Path, a code label was moved in a way allowing for SKBs having references pointers retained for further processing to nevertheless be freed...

DEBIAN-CVE-2022-33743

network backend may cause Linux netfront to use freed SKBs While adding logic to support XDP eXpress Data Path, a code label was moved in a way allowing for SKBs having references pointers retained for further processing to nevertheless be freed...

AZL-10107 CVE-2022-33743 affecting package kernel for versions less than 5.15.67.1-4

network backend may cause Linux netfront to use freed SKBs While adding logic to support XDP eXpress Data Path, a code label was moved in a way allowing for SKBs having references pointers retained for further processing to nevertheless be freed...

drivers/bluetooth/virtio_bt.c in the Linux kernel before 5.16.3 has a memory leak (socket buffers have memory allocated but not freed).

...

CVE-2022-26878

drivers/bluetooth/virtiobt.c in the Linux kernel before 5.16.3 has a memory leak socket buffers have memory allocated but not freed...

AZL-9066 CVE-2022-26878 affecting package kernel for versions less than 5.15.32.1-2

drivers/bluetooth/virtiobt.c in the Linux kernel before 5.16.3 has a memory leak socket buffers have memory allocated but not freed...

CVE-2022-26878

drivers/bluetooth/virtiobt.c in the Linux kernel before 5.16.3 has a memory leak socket buffers have memory allocated but not freed...

DEBIAN-CVE-2022-26878

drivers/bluetooth/virtiobt.c in the Linux kernel before 5.16.3 has a memory leak socket buffers have memory allocated but not freed...

CVE-2022-26878

drivers/bluetooth/virtiobt.c in the Linux kernel before 5.16.3 has a memory leak socket buffers have memory allocated but not freed...

CVE-2022-26878

drivers/bluetooth/virtiobt.c in the Linux kernel before 5.16.3 has a memory leak socket buffers have memory allocated but not freed...