Lucene search
K

153 matches found

OSV
OSV
added 2024/12/20 1:7 p.m.5 views

OESA-2024-2573 grpc security update

gRPC is a modern open source high performance RPC framework that can run in any environment. It can efficiently connect services in and across data centers with pluggable support for load balancing, tracing, health checking and authentication. It is also applicable in last mile of distributed...

7.5CVSS6.8AI score0.00576EPSS
Exploits0References2
OSV
OSV
added 2024/12/02 2:15 p.m.1 views

DEBIAN-CVE-2024-53117

In the Linux kernel, the following vulnerability has been resolved: virtio/vsock: Improve MSGZEROCOPY error handling Add a missing kfreeskb to prevent memory leaks...

5.5CVSS5.8AI score0.00203EPSS
Exploits0References1
OSV
OSV
added 2024/11/26 5:15 p.m.6 views

AZL-53456 CVE-2024-11407 affecting package grpc for versions less than 1.62.0-4

There exists a denial of service through Data corruption in gRPC-C++ - gRPC-C++ servers with transmit zero copy enabled through the channel arg GRPCARGTCPTXZEROCOPYENABLED can experience data corruption issues. The data sent by the application may be corrupted before transmission over the network...

7.5CVSS6.7AI score0.00576EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2024/11/13 12:34 a.m.5 views

kernel: tcp: add sanity checks to rx zerocopy

A vulnerability was found in Linux Kernel where rx zerocopy feature allowed mapping of pages owned by the filesystem, leading to potential system panic which is caused by the lack of sanity checks to rx zerocopy. A local authenticated attacker could exploit this vulnerability to cause a denial of...

5.5CVSS7.3AI score0.0023EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/11/13 12:14 a.m.7 views

kernel: tcp: add sanity checks to rx zerocopy

A vulnerability was found in Linux Kernel where rx zerocopy feature allowed mapping of pages owned by the filesystem, leading to potential system panic which is caused by the lack of sanity checks to rx zerocopy. A local authenticated attacker could exploit this vulnerability to cause a denial of...

5.5CVSS7.3AI score0.0023EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/07/17 4:18 a.m.2 views

SUSE CVE-2022-48819

In the Linux kernel, the following vulnerability has been resolved: tcp: take care of mixed splice/sendmsgMSGZEROCOPY case syzbot found that mixing sendpage and sendmsgMSGZEROCOPY calls over the same TCP socket would again trigger the infamous warning in inetsockdestruct WARNONskforwardallocgetsk...

5.5CVSS6.3AI score0.00229EPSS
Exploits0References3
OSV
OSV
added 2024/07/16 12:15 p.m.3 views

DEBIAN-CVE-2022-48819

In the Linux kernel, the following vulnerability has been resolved: tcp: take care of mixed splice/sendmsgMSGZEROCOPY case syzbot found that mixing sendpage and sendmsgMSGZEROCOPY calls over the same TCP socket would again trigger the infamous warning in inetsockdestruct WARNONskforwardallocgetsk...

5.5CVSS5.4AI score0.00229EPSS
Exploits0References1
OSV
OSV
added 2024/07/16 12:15 p.m.20 views

UBUNTU-CVE-2022-48819

In the Linux kernel, the following vulnerability has been resolved: tcp: take care of mixed splice/sendmsgMSGZEROCOPY case syzbot found that mixing sendpage and sendmsgMSGZEROCOPY calls over the same TCP socket would again trigger the infamous warning in inetsockdestruct WARNONskforwardallocgetsk...

5.5CVSS5.8AI score0.00229EPSS
Exploits0References5
CVE
CVE
added 2024/07/16 11:44 a.m.55 views

CVE-2022-48819

Summary: CVE-2022-48819 affects the Linux kernel TCP path. When mixing sendpage() data and MSG_ZEROCOPY via the same socket, a warning in inet_sock_destruct() (sk_forward_alloc_get(sk)) could be triggered, due to the sendpage() path being forgotten in zerocopy handling and the need to keep zeroco...

5.5CVSS6.5AI score0.00229EPSS
Exploits0References2Affected Software1
RedHat Linux
RedHat Linux
added 2024/05/22 10:3 a.m.2 views

kernel: skbuff: skb_segment, Call zero copy functions before using skbuff frags

In the Linux kernel, the following vulnerability has been resolved: skbuff: skbsegment, Call zero copy functions before using skbuff frags Commit bf5c25d60861 "skbuff: in skbsegment, call zerocopy functions once per nskb" added the call to zero copy functions in skbsegment. The change introduced ...

5.5CVSS6.9AI score0.00177EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/05/07 2:49 a.m.3 views

SUSE CVE-2022-48689

In the Linux kernel, the following vulnerability has been resolved: tcp: TX zerocopy should not sense pfmemalloc status We got a recent syzbot report 1 showing a possible misuse of pfmemalloc page status in TCP zerocopy paths. Indeed, for pages coming from user space or other layers, using...

5.5CVSS6.2AI score0.00192EPSS
Exploits0References6
NVD
NVD
added 2024/05/03 3:15 p.m.17 views

CVE-2022-48689

In the Linux kernel, the following vulnerability has been resolved: tcp: TX zerocopy should not sense pfmemalloc status We got a recent syzbot report 1 showing a possible misuse of pfmemalloc page status in TCP zerocopy paths. Indeed, for pages coming from user space or other layers, using...

7CVSS6.6AI score0.00192EPSS
Exploits0References3
OSV
OSV
added 2024/05/03 3:15 p.m.2 views

DEBIAN-CVE-2022-48689

In the Linux kernel, the following vulnerability has been resolved: tcp: TX zerocopy should not sense pfmemalloc status We got a recent syzbot report 1 showing a possible misuse of pfmemalloc page status in TCP zerocopy paths. Indeed, for pages coming from user space or other layers, using...

7CVSS5.8AI score0.00192EPSS
Exploits0References1
OSV
OSV
added 2024/05/03 3:15 p.m.2 views

UBUNTU-CVE-2022-48689

In the Linux kernel, the following vulnerability has been resolved: tcp: TX zerocopy should not sense pfmemalloc status We got a recent syzbot report 1 showing a possible misuse of pfmemalloc page status in TCP zerocopy paths. Indeed, for pages coming from user space or other layers, using...

7CVSS6.6AI score0.00192EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2024/05/03 3:15 p.m.31 views

CVE-2022-48689

In the Linux kernel, the following vulnerability has been resolved: tcp: TX zerocopy should not sense pfmemalloc status We got a recent syzbot report 1 showing a possible misuse of pfmemalloc page status in TCP zerocopy paths. Indeed, for pages coming from user space or other layers, using...

7CVSS6.3AI score0.00192EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/05/03 3:0 p.m.24 views

CVE-2022-48689 tcp: TX zerocopy should not sense pfmemalloc status

In the Linux kernel, the following vulnerability has been resolved: tcp: TX zerocopy should not sense pfmemalloc status We got a recent syzbot report 1 showing a possible misuse of pfmemalloc page status in TCP zerocopy paths. Indeed, for pages coming from user space or other layers, using...

6.8AI score0.00192EPSS
Exploits0References3
CVE
CVE
added 2024/05/03 3:0 p.m.96 views

CVE-2022-48689

CVE-2022-48689 pertains to a Linux kernel issue in TCP zerocopy where pfmemalloc status could be misinterpreted by page_is_pfmemalloc() in certain paths. The Astra Linux note confirms the advisory and reiterates the same vulnerability in the kernel and notes a prereq backport: 84ce071e38a6 (net: ...

7CVSS6.5AI score0.00192EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2024/05/03 3:0 p.m.19 views

CVE-2022-48689

In the Linux kernel, the following vulnerability has been resolved: tcp: TX zerocopy should not sense pfmemalloc status We got a recent syzbot report 1 showing a possible misuse of pfmemalloc page status in TCP zerocopy paths. Indeed, for pages coming from user space or other layers, using...

7CVSS6.9AI score0.00192EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2024/05/03 3:0 p.m.18 views

CVE-2022-48689 tcp: TX zerocopy should not sense pfmemalloc status

In the Linux kernel, the following vulnerability has been resolved: tcp: TX zerocopy should not sense pfmemalloc status We got a recent syzbot report 1 showing a possible misuse of pfmemalloc page status in TCP zerocopy paths. Indeed, for pages coming from user space or other layers, using...

6.6AI score0.00192EPSS
Exploits0References3
OSV
OSV
added 2024/05/03 3:0 p.m.17 views

CVE-2022-48689 tcp: TX zerocopy should not sense pfmemalloc status

In the Linux kernel, the following vulnerability has been resolved: tcp: TX zerocopy should not sense pfmemalloc status We got a recent syzbot report 1 showing a possible misuse of pfmemalloc page status in TCP zerocopy paths. Indeed, for pages coming from user space or other layers, using...

5.3CVSS6AI score0.00192EPSS
Exploits0References6
Rows per page
Query Builder