10 matches found
CVE-2024-57901
Mode C: Normal details found. CVE-2024-57901 affects the Linux kernel af_packet code. The bug was in vlan_get_protocol_dgram() interacting with MSG_PEEK, where the previous fix path touched skb data and could crash. The issue was addressed by reworking vlan_get_protocol_dgram() to avoid touching ...
CVE-2024-47696
CVE-2024-47696 concerns the Linux kernel, specifically the RDMA/iwcm path. The root cause is a use‑after‑free during flushing of the iwcm_wq when it was created without the WQ_MEM_RECLAIM flag, which can break forward‑progress and lead to deadlock if a flush discovers the workqueue in a reclaimin...
CVE-2024-57902
CVE-2024-57902 affects the Linux kernel AF_PACKET path. The bug arose in vlan_get_tci() where the code touched the skb when handling MSG_PEEK, allowing a crash. The fix reworks vlan_get_tci() to avoid touching the skb entirely and adds a const qualifier to the skb argument. The crash trace involv...
CVE-2024-53226
The CVE-2024-53226 issue affects the Linux kernel RDMA/hepnas driver path: ib_map_mr_sg() could accept NULL sg_offset, and hns_roce_map_mr_sg() dereferenced a NULL pointer. The Astra Linux bulletin mirrors this, stating a NULL pointer dereference in RDMA/hns: Fix NULL pointer derefernce in hns_ro...
CVE-2025-37747
CVE-2025-37747 (Linux kernel) – perf hang on freeing sigtrap event Affects: Linux kernel perf subsystem, specifically perf_event_overflow and related task_work handling. When a deferred signal is not sent before a file is closed, freeing a sigtrap event can hang due to the interaction between per...
CVE-2024-43897
CVE-2024-43897 (Linux kernel) : The issue stems from improper validation of GSO (TCP/TSO) input in virtio_net_hdr processing. The kernel’s net/virtio_net_hdr_to_skb checks for checksum fields (csum_start and csum_offset) were insufficient for GSO segs, allowing a bad input path to reach skb_check...
CVE-2024-46734
The CVE-2024-46734 entry concerns a race in the Linux kernel’s Btrfs when two threads share the same O_DIRECT file descriptor: one thread performs direct IO writes while the other calls fsync. According to the description, btrfs_direct_write() may set a stack-allocated private structure with fsyn...
CVE-2025-38298
CVE-2025-38298 corresponds to a Linux kernel EDAC issue (EDAC/skx_common) where reloading i10nm_edac after unloading and reloading can trigger a general protection fault. The root cause was that the adxl_component_count variable, which tracks ADXL components, was not reset during the reload seque...
CVE-2025-38120
CVE-2025-38120 affects the Linux kernel netfilter nf_set_pipapo_avx2. The issue: if the first field does not cover the entire start map, the remainder must be zeroed to prevent leaking bits into the next match round map. The early fix was incomplete and only addressed the generic C implementation...
CVE-2025-39734
CVE-2025-39734 affects the Linux kernel component fs/ntfs3 in the NTFS file-system path. The issue stems from a revert of the inode_trylock versus inode_lock handling (commit 69505fe98f198ee813898cbcaf6770949636430b). The description notes that previously conditional lock acquisition was removed ...