5 matches found
CVE-2024-56690
CVE-2024-56690 : Linux kernel crypto: pcrypt fix for -EBUSY/-EAGAIN. After commit 8f4f68e7, padata_do_parallel() may return -EAGAIN for pcrypt encrypt/decrypt when CPUs go online/offline, triggering a WARN/panic under panic_on_warn. The remediation is to call the crypto layer directly (no paralle...
CVE-2024-53237
CVE-2024-53237 is a Linux kernel vulnerability describing a use-after-free in the Bluetooth device lifecycle, specifically in the function device_for_each_child. The issue was surfaced by KASAN and tied to a scenario where a parent device could be freed while a child device still holds a referenc...
CVE-2023-52626
CVE-2023-52626 (Linux kernel) affects net/mlx5e: fix an operation precedence bug in port timestamping napi_poll context, where indirection (*) has lower precedence than postfix ++, causing an out-of-bounds read after increment. The fix dereferences before increment, preventing the read. CVSS 3.1 ...
CVE-2024-26858
CVE-2024-26858 : The issue is in the Linux kernel, specifically the mlx5e/PTP code. A memory-barrier-based fix was applied to ensure that PTP WQ xmit submission tracking occurs after populating the metadata_map. Merely reordering mlx5e_ptp_metadata_map_put and mlx5e_ptpsq_track_metadata in mlx5e_...
CVE-2026-46110
CVE-2026-46110 affects the Linux kernel stmmac driver. When RX memory is exhausted, stmmac_rx() could misinterpret descriptors (full vs dirty), risking a NULL pointer dereference and potential kernel panic. The fix adds an explicit check to bail out when the next RX descriptor is dirty before adv...