5 matches found
CVE-2025-21629
CVE-2025-21629: Linux kernel vulnerability where NETIF_F_IPV6_CSUM offload for BIG TCP/IPv6 packets with extension headers was disabled by a commit; this caused skb_warn_bad_offload to fire for large TCP packets. The issue is resolved by reverting the change and re-enabling IPv6 CSUM offload for ...
CVE-2024-53136
CVE-2024-53136 relates to the Linux kernel mm/shmem issue: reverting a previous fix for data-race in shmem_getattr() that could deadlock when accessing tmpfs over NFS. Public details indicate the change targeted the shmem_getattr() path (mm: shmem) and mentions the deadlock scenario, with remedia...
CVE-2024-50258
CVE-2024-50258 affects the Linux kernel net stack. A small gso_max_size/gso_ipv4_max_size can cause an underflow in sk_dst_gso_max_size(), making sk->sk_gso_max_size exceed device limits and trigger a BUG_ON crash during tcp_write_xmit/tso processing. The root cause is in computing tso_segs (D...
CVE-2024-56719
CVE-2024-56719 affects the Linux kernel net driver stmmac (TSO DMA path). The root cause was unbalanced DMA map/unmap: tx_skbuff_dma[] was populated later in stmmac_tso_xmit(), causing the dma cookie used by dma_unmap_single() to differ from dma_map_single() when priv->dma_cap.addr64 > 32. ...
CVE-2025-39770
CVE-2025-39770 affects the Linux kernel’s GSO/TSO handling for IPv6. When performing GSO on IPv6 packets with extension headers, the kernel may request checksum offload even though the egress device only advertises NETIF_F_IPV6_CSUM, which explicitly does not support offloading for packets with e...