13 matches found
CVE-2024-57901
Mode C: Normal details found. CVE-2024-57901 affects the Linux kernel af_packet code. The bug was in vlan_get_protocol_dgram() interacting with MSG_PEEK, where the previous fix path touched skb data and could crash. The issue was addressed by reworking vlan_get_protocol_dgram() to avoid touching ...
CVE-2024-47696
CVE-2024-47696 concerns the Linux kernel, specifically the RDMA/iwcm path. The root cause is a use‑after‑free during flushing of the iwcm_wq when it was created without the WQ_MEM_RECLAIM flag, which can break forward‑progress and lead to deadlock if a flush discovers the workqueue in a reclaimin...
CVE-2024-57902
CVE-2024-57902 affects the Linux kernel AF_PACKET path. The bug arose in vlan_get_tci() where the code touched the skb when handling MSG_PEEK, allowing a crash. The fix reworks vlan_get_tci() to avoid touching the skb entirely and adds a const qualifier to the skb argument. The crash trace involv...
CVE-2024-53226
The CVE-2024-53226 issue affects the Linux kernel RDMA/hepnas driver path: ib_map_mr_sg() could accept NULL sg_offset, and hns_roce_map_mr_sg() dereferenced a NULL pointer. The Astra Linux bulletin mirrors this, stating a NULL pointer dereference in RDMA/hns: Fix NULL pointer derefernce in hns_ro...
CVE-2024-50203
CVE-2024-50203 affects the Linux kernel BPF trampoline path on arm64 when BPF_TRAMP_F_CALL_ORIG is enabled and tag-based KASAN is active. The issue arises because the stack address (bpf_tramp_image) is computed during size calculation using one address and then a heap address is used during code ...
CVE-2025-37747
CVE-2025-37747 (Linux kernel) – perf hang on freeing sigtrap event Affects: Linux kernel perf subsystem, specifically perf_event_overflow and related task_work handling. When a deferred signal is not sent before a file is closed, freeing a sigtrap event can hang due to the interaction between per...
CVE-2025-22124
CVE-2025-22124 affects the Linux kernel md/md-bitmap logic used by clustermd. The root cause was an incorrect bitmap_limit calculation for per-node write-intent bitmaps, which could result in 0-size writes to the 4k SB area for a node and cause hangs during mdadm/clustermd tests. The remediation ...
CVE-2024-43897
CVE-2024-43897 (Linux kernel) : The issue stems from improper validation of GSO (TCP/TSO) input in virtio_net_hdr processing. The kernel’s net/virtio_net_hdr_to_skb checks for checksum fields (csum_start and csum_offset) were insufficient for GSO segs, allowing a bad input path to reach skb_check...
CVE-2025-37912
CVE-2025-37912 affects the Linux kernel ICE driver. The root cause is a missing null pointer check on the value returned by ice_get_vf_vsi(), which could lead to using a NULL VSI pointer in ice_vc_add_fdir_fltr(). The fix, described in commit baeb705fd6a7 ("ice: always check VF VSI pointer values...
CVE-2024-44968
The connected Nessus entry for CVE-2024-44968 confirms a Linux kernel tick/broadcast timer regression where per-CPU pointer access was taken in a preemptible region due to compiler behavior. The fix moves the per-CPU pointer retrieval to the actual usage site, which is in a non-preemptible region...
CVE-2025-38298
CVE-2025-38298 corresponds to a Linux kernel EDAC issue (EDAC/skx_common) where reloading i10nm_edac after unloading and reloading can trigger a general protection fault. The root cause was that the adxl_component_count variable, which tracks ADXL components, was not reset during the reload seque...
CVE-2025-38120
CVE-2025-38120 affects the Linux kernel netfilter nf_set_pipapo_avx2. The issue: if the first field does not cover the entire start map, the remainder must be zeroed to prevent leaking bits into the next match round map. The early fix was incomplete and only addressed the generic C implementation...
CVE-2025-39734
CVE-2025-39734 affects the Linux kernel component fs/ntfs3 in the NTFS file-system path. The issue stems from a revert of the inode_trylock versus inode_lock handling (commit 69505fe98f198ee813898cbcaf6770949636430b). The description notes that previously conditional lock acquisition was removed ...