CVE-2024-53047 mptcp: init: protect sched with rcu_read_lock

In the Linux kernel, the following vulnerability has been resolved: mptcp: init: protect sched with rcureadlock Enabling CONFIGPROVERCULIST with its dependence CONFIGRCUEXPERT creates this splat when an MPTCP socket is created: ============================= WARNING: suspicious RCU usage 6.12.0-rc...

CVE-2024-53042 ipv4: ip_tunnel: Fix suspicious RCU usage warning in ip_tunnel_init_flow()

In the Linux kernel, the following vulnerability has been resolved: ipv4: iptunnel: Fix suspicious RCU usage warning in iptunnelinitflow There are code paths from which the function is called without holding the RCU read lock, resulting in a suspicious RCU usage warning 1. Fix by using...

CVE-2024-46830

CVE-2024-46830 affects the Linux kernel KVM for x86. The vulnerability arises when acquiring kvm->srcu while handling KVM_SET_VCPU_EVENTS, because KVM will forcibly leave nested VMX/SVM during SMM toggling and leaving nested VMX can read guest memory. The described fix: grab SRCU unconditional...

CVE-2024-43834

In the Linux kernel, the following vulnerability has been resolved: xdp: fix invalid wait context of pagepooldestroy If the driver uses a page pool, it creates a page pool with pagepoolcreate. The reference count of page pool is 1 as default. A page pool will be destroyed only when a reference...

CVE-2024-35959 net/mlx5e: Fix mlx5e_priv_init() cleanup flow

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix mlx5eprivinit cleanup flow When mlx5eprivinit fails, the cleanup flow calls mlx5eselqcleanup which calls mlx5eselqapply that assures that the priv-statelock is held using lockdepisheld. Acquire the statelock in...

CVE-2024-27053

In the Linux kernel, the following vulnerability has been resolved: wifi: wilc1000: fix RCU usage in connect path With lockdep enabled, calls to the connect function from cfg802.11 layer lead to the following warning: ============================= WARNING: suspicious RCU usage 6.7.0-rc1-wt+ 333 N...

Linux Kernel (ARMARM64) - perf_event_open() Arbitrary Memory Read

Linux Kernel ARMARM64 - perfeventopen Arbitrary Memory Read perfeventopen offers to collect various pieces of information when an event occurs, including a user stack backtrace PERFSAMPLECALLCHAIN. To collect a user stack backtrace, the kernel grabs the userland register state if the event occure...

Linux Kernel (ARM/ARM64) - 'perf_event_open()' Arbitrary Memory Read

perfeventopen offers to collect various pieces of information when an event occurs, including a user stack backtrace PERFSAMPLECALLCHAIN. To collect a user stack backtrace, the kernel grabs the userland register state if the event occured in kernelspace: the userland register state that was...