Linux Distros Unpatched Vulnerability : CVE-2024-26960

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: mm: swap: fix race between freeswapandcache and swapoff There was previously a theoretical...

CVE-2024-26960

CVE-2024-26960 is described in connected Astra Linux and IBM bulletin entries as a Linux kernel race in mm/swap between free_swap_and_cache() and swapoff(). The vulnerability arises from a window where swapoff() could teardown a swap_info_struct while free_swap_and_cache() runs, potentially allow...

Swap functionality to sell rewards is too permissive and could cause accidental or intentional loss of value

Lines of code Vulnerability details Summary While the intention is to use the 0x protocol to sell rewards, the implementation doesn't provide any basic guarantee this will correctly happen and grants the rewarder arbitrary control over the tokens held by the strategy. Impact Rewards earned in the...

Delegate architecture forces users to set zero slippage

Lines of code Vulnerability details Delegate architecture forces users to set zero slippage The design of the delegate forces users to set a zero value for the minReturnedTokens parameter when calling pay in the terminal. Technical details In order to implement the swap functionality, the...