Количество 23
Количество 23
CVE-2024-42265
In the Linux kernel, the following vulnerability has been resolved: protect the fetch of ->fd[fd] in do_dup2() from mispredictions both callers have verified that fd is not greater than ->max_fds; however, misprediction might end up with tofree = fdt->fd[fd]; being speculatively executed. That's wrong for the same reasons why it's wrong in close_fd()/file_close_fd_locked(); the same solution applies - array_index_nospec(fd, fdt->max_fds) could differ from fd only in case of speculative execution on mispredicted path.
CVE-2024-42265
In the Linux kernel, the following vulnerability has been resolved: protect the fetch of ->fd[fd] in do_dup2() from mispredictions both callers have verified that fd is not greater than ->max_fds; however, misprediction might end up with tofree = fdt->fd[fd]; being speculatively executed. That's wrong for the same reasons why it's wrong in close_fd()/file_close_fd_locked(); the same solution applies - array_index_nospec(fd, fdt->max_fds) could differ from fd only in case of speculative execution on mispredicted path.
CVE-2024-42265
In the Linux kernel, the following vulnerability has been resolved: protect the fetch of ->fd[fd] in do_dup2() from mispredictions both callers have verified that fd is not greater than ->max_fds; however, misprediction might end up with tofree = fdt->fd[fd]; being speculatively executed. That's wrong for the same reasons why it's wrong in close_fd()/file_close_fd_locked(); the same solution applies - array_index_nospec(fd, fdt->max_fds) could differ from fd only in case of speculative execution on mispredicted path.
CVE-2024-42265
In the Linux kernel, the following vulnerability has been resolved: p ...
GHSA-9v94-8833-hv33
In the Linux kernel, the following vulnerability has been resolved: protect the fetch of ->fd[fd] in do_dup2() from mispredictions both callers have verified that fd is not greater than ->max_fds; however, misprediction might end up with tofree = fdt->fd[fd]; being speculatively executed. That's wrong for the same reasons why it's wrong in close_fd()/file_close_fd_locked(); the same solution applies - array_index_nospec(fd, fdt->max_fds) could differ from fd only in case of speculative execution on mispredicted path.
BDU:2025-01434
Уязвимость компонентов fs/file ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании
ROS-20250130-03
Множественные уязвимости kernel-lt
SUSE-SU-2024:3591-1
Security update for the Linux Kernel
SUSE-SU-2024:3559-1
Security update for the Linux Kernel
ELSA-2024-12782
ELSA-2024-12782: Unbreakable Enterprise kernel-container security update (IMPORTANT)
ELSA-2024-12780
ELSA-2024-12780: Unbreakable Enterprise kernel security update (IMPORTANT)
ELSA-2024-12868
ELSA-2024-12868: Unbreakable Enterprise kernel security update (IMPORTANT)
SUSE-SU-2024:3566-1
Security update for the Linux Kernel
SUSE-SU-2024:3592-1
Security update for the Linux Kernel
SUSE-SU-2024:3569-1
Security update for the Linux Kernel
SUSE-SU-2024:3587-1
Security update for the Linux Kernel
ELSA-2024-7000
ELSA-2024-7000: kernel security update (IMPORTANT)
RLSA-2024:7000
Important: kernel security update
SUSE-SU-2024:3564-1
Security update for the Linux Kernel
SUSE-SU-2024:3561-1
Security update for the Linux Kernel
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-42265 In the Linux kernel, the following vulnerability has been resolved: protect the fetch of ->fd[fd] in do_dup2() from mispredictions both callers have verified that fd is not greater than ->max_fds; however, misprediction might end up with tofree = fdt->fd[fd]; being speculatively executed. That's wrong for the same reasons why it's wrong in close_fd()/file_close_fd_locked(); the same solution applies - array_index_nospec(fd, fdt->max_fds) could differ from fd only in case of speculative execution on mispredicted path. | 0% Низкий | 10 месяцев назад | |
 | CVE-2024-42265 In the Linux kernel, the following vulnerability has been resolved: protect the fetch of ->fd[fd] in do_dup2() from mispredictions both callers have verified that fd is not greater than ->max_fds; however, misprediction might end up with tofree = fdt->fd[fd]; being speculatively executed. That's wrong for the same reasons why it's wrong in close_fd()/file_close_fd_locked(); the same solution applies - array_index_nospec(fd, fdt->max_fds) could differ from fd only in case of speculative execution on mispredicted path. | CVSS3: 5.5 | 0% Низкий | 10 месяцев назад |
 | CVE-2024-42265 In the Linux kernel, the following vulnerability has been resolved: protect the fetch of ->fd[fd] in do_dup2() from mispredictions both callers have verified that fd is not greater than ->max_fds; however, misprediction might end up with tofree = fdt->fd[fd]; being speculatively executed. That's wrong for the same reasons why it's wrong in close_fd()/file_close_fd_locked(); the same solution applies - array_index_nospec(fd, fdt->max_fds) could differ from fd only in case of speculative execution on mispredicted path. | 0% Низкий | 10 месяцев назад | |
| CVE-2024-42265 In the Linux kernel, the following vulnerability has been resolved: p ... | 0% Низкий | 10 месяцев назад | |
| GHSA-9v94-8833-hv33 In the Linux kernel, the following vulnerability has been resolved: protect the fetch of ->fd[fd] in do_dup2() from mispredictions both callers have verified that fd is not greater than ->max_fds; however, misprediction might end up with tofree = fdt->fd[fd]; being speculatively executed. That's wrong for the same reasons why it's wrong in close_fd()/file_close_fd_locked(); the same solution applies - array_index_nospec(fd, fdt->max_fds) could differ from fd only in case of speculative execution on mispredicted path. | 0% Низкий | 10 месяцев назад | |
 | BDU:2025-01434 Уязвимость компонентов fs/file ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 5.5 | 0% Низкий | 11 месяцев назад |
 | ROS-20250130-03 Множественные уязвимости kernel-lt | CVSS3: 7.8 | 5 месяцев назад | |
 | SUSE-SU-2024:3591-1 Security update for the Linux Kernel | 8 месяцев назад | ||
| SUSE-SU-2024:3559-1 Security update for the Linux Kernel | 8 месяцев назад | ||
| ELSA-2024-12782 ELSA-2024-12782: Unbreakable Enterprise kernel-container security update (IMPORTANT) | 8 месяцев назад | ||
| ELSA-2024-12780 ELSA-2024-12780: Unbreakable Enterprise kernel security update (IMPORTANT) | 8 месяцев назад | ||
| ELSA-2024-12868 ELSA-2024-12868: Unbreakable Enterprise kernel security update (IMPORTANT) | 7 месяцев назад | ||
| SUSE-SU-2024:3566-1 Security update for the Linux Kernel | 8 месяцев назад | ||
| SUSE-SU-2024:3592-1 Security update for the Linux Kernel | 8 месяцев назад | ||
| SUSE-SU-2024:3569-1 Security update for the Linux Kernel | 8 месяцев назад | ||
| SUSE-SU-2024:3587-1 Security update for the Linux Kernel | 8 месяцев назад | ||
| ELSA-2024-7000 ELSA-2024-7000: kernel security update (IMPORTANT) | 9 месяцев назад | ||
 | RLSA-2024:7000 Important: kernel security update | около 1 месяца назад | ||
| SUSE-SU-2024:3564-1 Security update for the Linux Kernel | 8 месяцев назад | ||
| SUSE-SU-2024:3561-1 Security update for the Linux Kernel | 8 месяцев назад |
Уязвимостей на страницу