6 matches found
CVE-2024-26592
CVE-2024-26592 is a Linux kernel vulnerability in ksmbd where a race between handling a new TCP connection and its disconnection can cause a use-after-free on ksmbd_tcp_new_connection()’s tcp_transport. The issue is fixed in the kernel code path that manages new connections for ksmbd, eliminating...
CVE-2021-46927
CVE-2021-46927 concerns Linux kernel Nitro Enclaves memory mapping. After commit 5b78ed24e8ec, a call to get_user_pages() can trigger an mmap assertion when setting enclave memory regions. The fix switches to get_user_pages_unlocked() for enclave memory region setup, mirroring patterns like mmap_...
CVE-2023-52441
CVE-2023-52441 affects the Linux kernel ksmbd path and is resolved by a patch that fixes an out-of-bounds condition in init_smb2_rsp_hdr(). When a client sends an SMB2 negotiate request followed by an SMB1 negotiate request, init_smb2_rsp_hdr is invoked for the SMB1 path because need_neg is false...
CVE-2021-46937
The connected Nessus entry confirms CVE-2021-46937 affects the Linux kernel DAMON debugfs interface: repeated writes to the target_ids file increase pid reference counts without corresponding decreases, causing a memory leak of struct pid. The issue is fixed by a kernel patch that decrements PID ...
CVE-2022-4378
CVE-2022-4378 is a Linux kernel stack overflow flaw in the SYSCTL subsystem triggered by how a user changes certain kernel parameters, allowing a local user to crash the system or potentially escalate privileges. Public advisories (ALSA and CloudLinux entries) confirm the issue affects stack over...
CVE-2023-0459
CVE-2023-0459: Linux kernel on 64-bit systems is affected by a local elevation of information disclosure due to Copy_from_user bypassing __uaccess_begin_nospec, bypassing access_ok and allowing a user to pass a kernel pointer to copy_from_user. Root cause is the __uaccess_begin_nospec handling. I...