4 matches found
CVE-2022-3640
CVE-2022-3640 is a Linux Kernel issue affecting the Bluetooth layer. The vulnerability stems from a use-after-free in the l2cap_conn_del function in net/bluetooth/l2cap_core.c. The Astra Linux bulletin confirms the same flaw and notes affected kernel lines (linux-5.10, linux-5.15), indicating the...
CVE-2024-56651
CVE-2024-56651 affects the Linux kernel hi311x CAN driver (hi3110_can_ist). The issue is a potential use-after-free: error count data added to the CAN frame after netif_rx() could reference a skb that is freed or reused. Root cause: reporting of rxerr/txerr persisted during non-bus-off operation,...
CVE-2024-35955
CVE-2024-35955 : Linux kernel vulnerability in kprobe registration that could cause a use-after-free if module unload changes MODULE_STATE from LIVE/GOING to UNFORMED between address checks. The fix switches to using only __module_text_address() and performs try_module_get(module) while MODULE_ST...
CVE-2023-53060
CVE-2023-53060 concerns the igb driver in the Linux kernel. The description shows a data-race concern was introduced by a patch that added a lock via rtnl_lock to avoid a race between igb_remove/igb_ndo_get_vf_config and igb_disable_sriov paths, but this lock created a deadlock scenario during de...