399 matches found
kernel: bpf, sockmap: Fix double uncharge the mem of sk_msg
In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Fix double uncharge the mem of skmsg If tcpbpfsendmsg is running during a tear down operation, psock may be freed. tcpbpfsendmsg tcpbpfsendverdict skmsgreturn tcpbpfsendmsgredir unlikely!psock skmsgfree The mem of m...
kernel: bpf, sockmap: Fix more uncharged while msg has more_data
In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Fix more uncharged while msg has moredata In tcpbpfsendverdict, if msg has more data after tcpbpfsendmsgredir: tcpbpfsendverdict tosend = msg-sg.size //msg-sg.size = 22220 case SKREDIRECT: skmsgreturn //uncharged...
kernel: skmsg: Fix wrong last sg check in sk_msg_recvmsg()
In the Linux kernel, the following vulnerability has been resolved: skmsg: Fix wrong last sg check in skmsgrecvmsg Fix one kernel NULL pointer dereference as below: 224.462334 Call Trace: 224.462394 tcpbpfrecvmsg+0xd3/0x380 224.462441 ? sockhasperm+0x78/0xa0 224.462463 tcpbpfrecvmsg+0x12e/0x220...
GSD-2023-1002356 bpf, sockmap: Don't let sock_map_{close,destroy,unhash} call itself
bpf, sockmap: Don't let sockmapclose,destroy,unhash call itself This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.95 by commit...
PT-2023-35431 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to 5.15.95 Description: The issue is related to the bpf and sockmap components. It prevents sock map close,destroy,unhash from calling itself. The actual impact and attack plausibility have not yet been proven...
GSD-2023-1002045 bpf, sockmap: Check for any of tcp_bpf_prots when cloning a listener
bpf, sockmap: Check for any of tcpbpfprots when cloning a listener This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.93 by commit...
PT-2023-34961 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.1.11 Description: The issue is related to the bpf and sockmap components in the Linux Kernel. It involves a check for any of tcp bpf prots when cloning a listener. The actual impact and attack plausibility ha...
PT-2025-13332 · Linux +3 · Linux Kernel +3
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been identified, related to the bpf and sockmap functionality. When a listening socket is linked to a sockmap, its sk prot is overridden to poin...
GSD-2023-1001453 bpf, sockmap: Fix repeated calls to sock_put() when msg has more_data
bpf, sockmap: Fix repeated calls to sockput when msg has moredata This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.163 by commit...
GSD-2023-1001448 bpf, sockmap: fix race in sock_map_free()
bpf, sockmap: fix race in sockmapfree This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.163 by commit...
GSD-2023-1001148 bpf, sockmap: Fix repeated calls to sock_put() when msg has more_data
bpf, sockmap: Fix repeated calls to sockput when msg has moredata This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.86 by commit...
GSD-2023-1001143 bpf, sockmap: fix race in sock_map_free()
bpf, sockmap: fix race in sockmapfree This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.86 by commit a443c55d96dede82a724df6e70a318ad15c199e...
GSD-2023-1000745 bpf, sockmap: Fix repeated calls to sock_put() when msg has more_data
bpf, sockmap: Fix repeated calls to sockput when msg has moredata This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.16 by commit...
GSD-2023-1000739 bpf, sockmap: fix race in sock_map_free()
bpf, sockmap: fix race in sockmapfree This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.16 by commit e8b2b392a646bf5cb9413c1cc7a39d99c1b65a62...
GSD-2022-1008180 bpf, sockmap: Fix the sk->sk_forward_alloc warning of sk_stream_kill_queues
bpf, sockmap: Fix the sk-skforwardalloc warning of skstreamkillqueues This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.225 by commit...
GSD-2022-1008092 bpf, sockmap: Fix the sk->sk_forward_alloc warning of sk_stream_kill_queues
bpf, sockmap: Fix the sk-skforwardalloc warning of skstreamkillqueues This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.155 by commit...
GSD-2022-1007963 bpf, sockmap: Fix the sk->sk_forward_alloc warning of sk_stream_kill_queues
bpf, sockmap: Fix the sk-skforwardalloc warning of skstreamkillqueues This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.79 by commit...
GSD-2022-1007806 bpf, sockmap: Fix the sk->sk_forward_alloc warning of sk_stream_kill_queues
bpf, sockmap: Fix the sk-skforwardalloc warning of skstreamkillqueues This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.9 by commit...
kernel: bpf, sockmap: Fix repeated calls to sock_put() when msg has more_data
A reference-count flaw was found in the Linux kernel Berkeley Packet Filter BPF sockmap implementation. When processing messages with remaining data, the same Transmission Control Protocol TCP socket reference could be released more than once. A local user running BPF sockmap programs could use...
GSD-2022-1002241 bpf, sockmap: Fix memleak in tcp_bpf_sendmsg while sk msg is full
bpf, sockmap: Fix memleak in tcpbpfsendmsg while sk msg is full This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.189 by commit...