5 matches found
CVE-2021-47003
CVE-2021-47003 concerns the Linux kernel’s dmaengine idxd path. A null pointer dereference could occur when code calls idxd_cmd_exec with a null status pointer; a later assignment to *status could dereference a null. The fix is to perform a null check on status before the assignment, preventing t...
CVE-2021-47274
CVE-2021-47274 (Linux kernel tracing): The issue stems from a length check in tracing that can cause memory corruption in ftrace data, leading to kernel crashes. A fix was added (commit b220c049d519) to validate the length before exposing the trace buffer, addressing overflow introduced by a prio...
CVE-2024-26883
CVE-2024-26883 : In the Linux kernel, a vulnerability was fixed that affects 32-bit architectures in the stackmap handling used by BPF. The overflow risk arises when roundup_pow_of_two() is used to compute the number of hash buckets, as a 32‑bit left shift can overflow and cause undefined behavio...
CVE-2021-47452
CVE-2021-47452: In the Linux kernel, nf_tables netdev event handling during net namespace removal could lead to a redundant UNREGISTER notifier action because the base hook was removed too late. The issue is a sequence/order problem in the notifier vs .pre_exit hook, which could cause an attempt ...
CVE-2022-49558
CVE-2022-49558 affects the Linux kernel nf_tables/netfilter path. The issue is a double unregistration of hooks in netns path: __nft_release_hooks() unregisters hooks during pre_netns exit, and NETDEV_UNREGISTER triggers unregister again, leading to potential hook handling inconsistencies. The pr...