Lucene search
K

254 matches found

OSV
OSV
added 2024/09/04 3:15 p.m.3 views

UBUNTU-CVE-2024-45506

HAProxy 2.9.x before 2.9.10, 3.0.x before 3.0.4, and 3.1.x through 3.1-dev6 allows a remote denial of service for HTTP/2 zero-copy forwarding h2send loop under a certain set of conditions, as exploited in the wild in 2024...

7.5CVSS5.8AI score0.01203EPSS
Exploits0References5
VulnCheck KEV
VulnCheck KEV
added 2024/09/03 12:0 a.m.3 views

VulnCheck KEV: CVE-2024-45506

HAProxy 2.9.x before 2.9.10, 3.0.x before 3.0.4, and 3.1.x through 3.1-dev6 allows a remote denial of service for HTTP/2 zero-copy forwarding h2send loop under a certain set of conditions, as exploited in the wild in 2024...

7.5CVSS5.8AI score0.01203EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2024/08/08 4:53 a.m.6 views

kernel: tcp: add sanity checks to rx zerocopy

A vulnerability was found in Linux Kernel where rx zerocopy feature allowed mapping of pages owned by the filesystem, leading to potential system panic which is caused by the lack of sanity checks to rx zerocopy. A local authenticated attacker could exploit this vulnerability to cause a denial of...

5.5CVSS7.3AI score0.0023EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/08/08 4:44 a.m.3 views

kernel: tcp: add sanity checks to rx zerocopy

A vulnerability was found in Linux Kernel where rx zerocopy feature allowed mapping of pages owned by the filesystem, leading to potential system panic which is caused by the lack of sanity checks to rx zerocopy. A local authenticated attacker could exploit this vulnerability to cause a denial of...

5.5CVSS7.3AI score0.0023EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/08/07 12:28 a.m.5 views

kernel: tcp: add sanity checks to rx zerocopy

A vulnerability was found in Linux Kernel where rx zerocopy feature allowed mapping of pages owned by the filesystem, leading to potential system panic which is caused by the lack of sanity checks to rx zerocopy. A local authenticated attacker could exploit this vulnerability to cause a denial of...

5.5CVSS7.3AI score0.0023EPSS
Exploits0References5
OSV
OSV
added 2024/07/16 12:15 p.m.4 views

DEBIAN-CVE-2022-48819

In the Linux kernel, the following vulnerability has been resolved: tcp: take care of mixed splice/sendmsgMSGZEROCOPY case syzbot found that mixing sendpage and sendmsgMSGZEROCOPY calls over the same TCP socket would again trigger the infamous warning in inetsockdestruct WARNONskforwardallocgetsk...

5.5CVSS5.4AI score0.00229EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2024/05/21 2:0 a.m.8 views

SUSE CVE-2024-35834

In the Linux kernel, the following vulnerability has been resolved: xsk: recycle buffer in case Rx queue was full Add missing xskbufffree call when xskrcvzc failed to produce descriptor to XSK Rx queue...

5.5CVSS6.9AI score0.00216EPSS
Exploits0References13
SUSE CVE
SUSE CVE
added 2024/05/07 2:49 a.m.2 views

SUSE CVE-2022-48690

In the Linux kernel, the following vulnerability has been resolved: ice: Fix DMA mappings leak Fix leak, when user changes ring parameters. During reallocation of RX buffers, new DMA mappings are created for those buffers. New buffers with different RX ring count should substitute older ones, but...

5.5CVSS6.3AI score0.00193EPSS
Exploits0References6
OSV
OSV
added 2024/05/01 1:15 p.m.2 views

DEBIAN-CVE-2024-27050

In the Linux kernel, the following vulnerability has been resolved: libbpf: Use OPTSSET macro in bpfxdpquery When the featureflags and xdpzcmaxsegs fields were added to the libbpf bpfxdpqueryopts, the code writing them did not use the OPTSSET macro. This causes libbpf to write to those fields...

5.5CVSS5.5AI score0.00272EPSS
Exploits0References1
OSV
OSV
added 2024/05/01 1:15 p.m.7 views

UBUNTU-CVE-2024-27050

In the Linux kernel, the following vulnerability has been resolved: libbpf: Use OPTSSET macro in bpfxdpquery When the featureflags and xdpzcmaxsegs fields were added to the libbpf bpfxdpqueryopts, the code writing them did not use the OPTSSET macro. This causes libbpf to write to those fields...

5.5CVSS5.9AI score0.00272EPSS
Exploits0References12
RedHat Linux
RedHat Linux
added 2024/04/30 9:57 a.m.3 views

kernel: skbuff: skb_segment, Call zero copy functions before using skbuff frags

In the Linux kernel, the following vulnerability has been resolved: skbuff: skbsegment, Call zero copy functions before using skbuff frags Commit bf5c25d60861 "skbuff: in skbsegment, call zerocopy functions once per nskb" added the call to zero copy functions in skbsegment. The change introduced ...

5.5CVSS6.9AI score0.00177EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/04/30 9:57 a.m.3 views

kernel: net/mlx5e: xsk: Fix crash on regular rq reactivation

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: xsk: Fix crash on regular rq reactivation When the regular rq is reactivated after the XSK socket is closed it could be reading stale cqes which eventually corrupts the rq. This leads to no more traffic being received ...

5.5CVSS6.8AI score0.00119EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/03/19 3:50 a.m.6 views

SUSE CVE-2021-47127

In the Linux kernel, the following vulnerability has been resolved: ice: track AFXDP ZC enabled queues in bitmap Commit c7a219048e45 "ice: Remove xskbuffpool from VSI structure" silently introduced a regression and broke the Tx side of AFXDP in copy mode. xskpool on icering is set only based on t...

5.5CVSS6.2AI score0.00196EPSS
Exploits0References3
OSV
OSV
added 2024/03/18 11:15 a.m.2 views

UBUNTU-CVE-2024-26640

In the Linux kernel, the following vulnerability has been resolved: tcp: add sanity checks to rx zerocopy TCP rx zerocopy intent is to map pages initially allocated from NIC drivers, not pages owned by a fs. This patch adds to canmapfrag these additional checks: - Page must not be a compound one....

5.5CVSS6.2AI score0.0023EPSS
Exploits0References28
OSV
OSV
added 2024/03/18 10:19 a.m.6 views

CVE-2024-26640 tcp: add sanity checks to rx zerocopy

In the Linux kernel, the following vulnerability has been resolved: tcp: add sanity checks to rx zerocopy TCP rx zerocopy intent is to map pages initially allocated from NIC drivers, not pages owned by a fs. This patch adds to canmapfrag these additional checks: - Page must not be a compound one....

5.5CVSS5.9AI score0.0023EPSS
Exploits0References10
OSV
OSV
added 2024/03/15 9:15 p.m.4 views

CVE-2021-47127

In the Linux kernel, the following vulnerability has been resolved: ice: track AFXDP ZC enabled queues in bitmap Commit c7a219048e45 "ice: Remove xskbuffpool from VSI structure" silently introduced a regression and broke the Tx side of AFXDP in copy mode. xskpool on icering is set only based on t...

5.5CVSS5.6AI score0.00196EPSS
Exploits0References2
OSV
OSV
added 2024/03/15 9:15 p.m.5 views

UBUNTU-CVE-2021-47127

In the Linux kernel, the following vulnerability has been resolved: ice: track AFXDP ZC enabled queues in bitmap Commit c7a219048e45 "ice: Remove xskbuffpool from VSI structure" silently introduced a regression and broke the Tx side of AFXDP in copy mode. xskpool on icering is set only based on t...

5.5CVSS5.7AI score0.00196EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2024/03/15 8:14 p.m.10 views

CVE-2021-47127 ice: track AF_XDP ZC enabled queues in bitmap

In the Linux kernel, the following vulnerability has been resolved: ice: track AFXDP ZC enabled queues in bitmap Commit c7a219048e45 "ice: Remove xskbuffpool from VSI structure" silently introduced a regression and broke the Tx side of AFXDP in copy mode. xskpool on icering is set only based on t...

6.5AI score0.00196EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/03/15 8:14 p.m.31 views

CVE-2021-47127 ice: track AF_XDP ZC enabled queues in bitmap

In the Linux kernel, the following vulnerability has been resolved: ice: track AFXDP ZC enabled queues in bitmap Commit c7a219048e45 "ice: Remove xskbuffpool from VSI structure" silently introduced a regression and broke the Tx side of AFXDP in copy mode. xskpool on icering is set only based on t...

6.4AI score0.00196EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2024/03/13 4:22 a.m.4 views

SUSE CVE-2024-26611

In the Linux kernel, the following vulnerability has been resolved: xsk: fix usage of multi-buffer BPF helpers for ZC XDP Currently when packet is shrunk via bpfxdpadjusttail and memory type is set to MEMTYPEXSKBUFFPOOL, null ptr dereference happens: 1136314.192256 BUG: kernel NULL pointer...

5.5CVSS6.5AI score0.00238EPSS
Exploits0References13
Rows per page
Query Builder