16 matches found
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: net/xen-netback: This issue prevents a Use-after-Free UAF condition in xenvifflushhash. During the listforeachentryrcu iteration, when calling xenvifFlushHash, kfreercu does not exist within the rcu read critical section...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002598)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002598 advisory. An issue was discovered in xenvifsethashmapping in drivers/net/xen-netback/hash.c in the Linux kernel through 4.18.1, as used in Xen through 4.11.x and other product...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992966)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992966 advisory. In the Linux kernel, the following vulnerability has been resolved: net/xen-netback: prevent UAF in xenvifflushhash During the listforeachentryrcu iteration call of...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992646)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992646 advisory. In the Linux kernel, the following vulnerability has been resolved: net/xen-netback: prevent UAF in xenvifflushhash During the listforeachentryrcu iteration call of...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989117)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989117 advisory. In the Linux kernel, the following vulnerability has been resolved: xen/netback: avoid entering xenvifrxnextskb with an empty rx queue xenvifrxnextskb is expecting t...
Vulnerability of the xenvif_disconnect_queue() function in the drivers/net/xen-netback/interface.c module – the Linux kernel network adapter driver support mechanism, which allows an attacker to compromise the confidentiality, integrity, and accessibility of protected information.
Vulnerability of the xenvifdisconnectqueue function in the drivers/net/xen-netback/interface.c module – The Linux kernel network adapter driver relies on the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrit...
SUSE CVE-2022-49649
In the Linux kernel, the following vulnerability has been resolved: xen/netback: avoid entering xenvifrxnextskb with an empty rx queue xenvifrxnextskb is expecting the rx queue not being empty, but in case the loop in xenvifrxaction is doing multiple iterations, the availability of another skb in...
DEBIAN-CVE-2022-49649
In the Linux kernel, the following vulnerability has been resolved: xen/netback: avoid entering xenvifrxnextskb with an empty rx queue xenvifrxnextskb is expecting the rx queue not being empty, but in case the loop in xenvifrxaction is doing multiple iterations, the availability of another skb in...
net/xen-netback: prevent UAF in xenvif_flush_hash()
...
SUSE CVE-2024-49936
In the Linux kernel, the following vulnerability has been resolved: net/xen-netback: prevent UAF in xenvifflushhash During the listforeachentryrcu iteration call of xenvifflushhash, kfreercu does not exist inside the rcu read critical section, so if kfreercu is called when the rcu grace period en...
DEBIAN-CVE-2024-49936
In the Linux kernel, the following vulnerability has been resolved: net/xen-netback: prevent UAF in xenvifflushhash During the listforeachentryrcu iteration call of xenvifflushhash, kfreercu does not exist inside the rcu read critical section, so if kfreercu is called when the rcu grace period en...
UBUNTU-CVE-2024-49936
In the Linux kernel, the following vulnerability has been resolved: net/xen-netback: prevent UAF in xenvifflushhash During the listforeachentryrcu iteration call of xenvifflushhash, kfreercu does not exist inside the rcu read critical section, so if kfreercu is called when the rcu grace period en...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a post-release reuse issue in the xenvifflushhash function of the net/xen-netback subsystem...
The vulnerability of the xenvif_get_requests() function in cross-platform Xen kernel hypervisors for Linux operating systems allows a attacker to trigger a service failure.
The vulnerability of the xenvifgetrequests function in the drivers/net/xen-netback/netback.c module of the cross-platform hypervisor for Linux kernel is related to the assignment of a null pointer to the xenvifgetrequests function. Exploiting this vulnerability could allow an attacker to trigger ...
PT-2023-4315 · Linux +6 · Linux +6
Name of the Vulnerable Software and Affected Versions: Linux affected versions not specified Description: The issue is related to the Linux netback driver, which was modified to handle a frontend splitting a packet in a way that not all headers come in one piece. However, the introduced logic did...
Updates to XenVIF Windows I/O driver - For Citrix Hypervisor and XenServer
Who Should Read This Article? This information is for customers using Citrix Hypervisor or XenServer who are entitled to receive automatic Windows I/O driver updates on their Windows VMs. Latest version The following versions of XenVIF are the latest that are available through Windows Automatic...