143 matches found
net/mlx5e: Prevent deadlock while disabling aRFS
...
DEBIAN-CVE-2024-27014
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Prevent deadlock while disabling aRFS When disabling aRFS under the priv-statelock, any scheduled aRFS works are canceled using the cancelworksync function, which waits for the work to end if it has already started...
UBUNTU-CVE-2024-27014
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Prevent deadlock while disabling aRFS When disabling aRFS under the priv-statelock, any scheduled aRFS works are canceled using the cancelworksync function, which waits for the work to end if it has already started...
Can ships be hacked?
Photo: David Adams, MV Dali and the Francis Scott Key Bridge collapse - 240326-A-SE916-6662, A layer has been added showing a character and a speech bubble, CC0 1.0 TL;DR Ships can be hacked Was the MV Dali hacked? Practically impossible Polarised views from uninformed commentators do not help...
PT-2024-21617
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.7.0-rc4 net next mlx5 5483eb2 Description The issue is related to a potential deadlock in the Linux kernel when disabling aRFS Accelerated Receive Flow Steering under certain conditions. Specifically, when the...
CVE-2023-52523
In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Reject skmsg egress redirects to non-TCP sockets With a SOCKMAP/SOCKHASH map and an skmsg program user can steer messages sent from one TCP socket s1 to actually egress from another TCP socket s2: tcpbpfsendmsgs1 //...
What is Quality of Service?
Dominating an imperative role in boosting the so-called 'efficiency quotient' within a networking system is the Quality of Service or QoS. Let's dive in and explore the crucial components that make QoS pivotal. In essence, QoS is a blend of a multitude of methodologies and hi-tech devices,...
kernel: net/mlx5: Fix steering rules cleanup
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix steering rules cleanup vport's mc, uc and multicast rules are not deleted in teardown path when EEH happens. Since the vport's promisc settingsuc, mc and all in firmware are reset after EEH, mlx5 driver will try to...
kernel: net/mlx5: Fix steering rules cleanup
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix steering rules cleanup vport's mc, uc and multicast rules are not deleted in teardown path when EEH happens. Since the vport's promisc settingsuc, mc and all in firmware are reset after EEH, mlx5 driver will try to...
CVE-2023-5408
A privilege escalation flaw was found in the node restriction admission plugin of the kubernetes api server of OpenShift. A remote attacker who modifies the node role label could steer workloads from the control plane and etcd nodes onto different worker nodes and gain broader access to the clust...
This Week in Spring - October 3rd, 2023
Hi Spring fans! Welcome to another installment of This Week in Spring! How're you doin'? I've just flown in from Singapore - where I was keynoting and presenting at SpringOne Singapore - and am now in Antwerp, Belgium for the deliriously fun Devoxx Belgium show. I've missed this show, and it's a...
kernel: net: stmmac: fix tc flower deletion for VLAN priority Rx steering
A vulnerability was found in the Linux kernel's net component in the stmmac driver, where improper deletion of VLAN priority filters caused a kernel NULL pointer dereference which occurs during the deletion of specific tc flower records, leading to potential system crashes...
The vulnerability of the dr_domain_init_resources() function in the drivers/net/ethernet/mellanox/mlx5/core/steering/dr_domain.c file of the Linux kernel allows a hacker to cause a service failure.
The vulnerability of the drdomaininitresources function in the drivers/net/ethernet/mellanox/mlx5/core/steering/drdomain.c file of the Linux kernel is related to incorrect checking of the erroneous pointer value. Exploiting this vulnerability could allow an attacker to cause a service failure...
In the Linux kernel before 5.15.13 drivers/net/ethernet/mellanox/mlx5/core/steering/dr_domain.c misinterprets the mlx5_get_uars_page return value (expects it to be NULL in the error case whereas it is actually an error pointer).
...
SUSE CVE-2023-23006
In the Linux kernel before 5.15.13, drivers/net/ethernet/mellanox/mlx5/core/steering/drdomain.c misinterprets the mlx5getuarspage return value expects it to be NULL in the error case, whereas it is actually an error pointer...
CVE-2023-23006
In the Linux kernel before 5.15.13, drivers/net/ethernet/mellanox/mlx5/core/steering/drdomain.c misinterprets the mlx5getuarspage return value expects it to be NULL in the error case, whereas it is actually an error pointer...
UBUNTU-CVE-2023-23006
In the Linux kernel before 5.15.13, drivers/net/ethernet/mellanox/mlx5/core/steering/drdomain.c misinterprets the mlx5getuarspage return value expects it to be NULL in the error case, whereas it is actually an error pointer...
Linux kernel 代码问题漏洞
The Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux. A security vulnerability exists in the Linux kernel prior to version 5.15.13, which stems from the drivers/net/ethernet/mellanox/mlx5/core/steering/drdomain.c file incorrectly handling the return val...
The vulnerability of the httpd daemon in the NETGEAR R7000P router’s embedded software allows a hacker to execute arbitrary code.
The vulnerability of the httpd daemon in the NETGEAR R7000P router’s embedded software is related to a buffer overflow exploit through the enablebandsteering parameter. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
NETGEAR R7000P Buffer Overflow Vulnerability
The NETGEAR R7000P is Netgear's Nighthawk series of dual-band routers optimized for gaming, streaming and mobile devices. The NETGEAR R7000P suffers from a buffer overflow vulnerability that stems from being affected by the enablebandsteering parameter in /usr/sbin/httpd. No detailed vulnerabilit...