Linux Distros Unpatched Vulnerability : CVE-2023-53240

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - xsk: check IFFUP earlier in Tx path Xsk Tx can be triggered via either sendmsg or poll syscalls. These two paths share a call to common function xskxmit which h...

CVE-2024-35976

In the Linux kernel, the following vulnerability has been resolved: xsk: validate user input for XDPUMEM|COMPLETIONFILLRING syzbot reported an illegal copy in xsksetsockopt 1 Make sure to validate setsockopt @optlen parameter. 1 BUG: KASAN: slab-out-of-bounds in copyfromsockptroffset...

CVE-2024-35976

CVE-2024-35976 : In the Linux kernel, a proposed input validation bug in XDP_SOCKET options (XDP_{UMEM|COMPLETION}_FILL_RING) allowed a read of 4 bytes via an invalid @optlen path in xsk_setsockopt, tracked by syzbot with KASAN slab-out-of-bounds. The issue arises during setsockopt handling and i...

CVE-2024-26611

In the Linux kernel, the following vulnerability has been resolved: xsk: fix usage of multi-buffer BPF helpers for ZC XDP Currently when packet is shrunk via bpfxdpadjusttail and memory type is set to MEMTYPEXSKBUFFPOOL, null ptr dereference happens: 1136314.192256 BUG: kernel NULL pointer...