Количество 18
Количество 18
BDU:2024-07832
Уязвимость компонента ravb ядра операционной системы Linux, позволяющая нарушителю повысить свои привилегии
CVE-2023-52509
In the Linux kernel, the following vulnerability has been resolved: ravb: Fix use-after-free issue in ravb_tx_timeout_work() The ravb_stop() should call cancel_work_sync(). Otherwise, ravb_tx_timeout_work() is possible to use the freed priv after ravb_remove() was called like below: CPU0 CPU1 ravb_tx_timeout() ravb_remove() unregister_netdev() free_netdev(ndev) // free priv ravb_tx_timeout_work() // use priv unregister_netdev() will call .ndo_stop() so that ravb_stop() is called. And, after phy_stop() is called, netif_carrier_off() is also called. So that .ndo_tx_timeout() will not be called after phy_stop().
CVE-2023-52509
In the Linux kernel, the following vulnerability has been resolved: ravb: Fix use-after-free issue in ravb_tx_timeout_work() The ravb_stop() should call cancel_work_sync(). Otherwise, ravb_tx_timeout_work() is possible to use the freed priv after ravb_remove() was called like below: CPU0CPU1 ravb_tx_timeout() ravb_remove() unregister_netdev() free_netdev(ndev) // free priv ravb_tx_timeout_work() // use priv unregister_netdev() will call .ndo_stop() so that ravb_stop() is called. And, after phy_stop() is called, netif_carrier_off() is also called. So that .ndo_tx_timeout() will not be called after phy_stop().
CVE-2023-52509
In the Linux kernel, the following vulnerability has been resolved: ravb: Fix use-after-free issue in ravb_tx_timeout_work() The ravb_stop() should call cancel_work_sync(). Otherwise, ravb_tx_timeout_work() is possible to use the freed priv after ravb_remove() was called like below: CPU0 CPU1 ravb_tx_timeout() ravb_remove() unregister_netdev() free_netdev(ndev) // free priv ravb_tx_timeout_work() // use priv unregister_netdev() will call .ndo_stop() so that ravb_stop() is called. And, after phy_stop() is called, netif_carrier_off() is also called. So that .ndo_tx_timeout() will not be called after phy_stop().
CVE-2023-52509
In the Linux kernel, the following vulnerability has been resolved: r ...
GHSA-wgvh-m7hp-9m4m
In the Linux kernel, the following vulnerability has been resolved: ravb: Fix use-after-free issue in ravb_tx_timeout_work() The ravb_stop() should call cancel_work_sync(). Otherwise, ravb_tx_timeout_work() is possible to use the freed priv after ravb_remove() was called like below: CPU0 CPU1 ravb_tx_timeout() ravb_remove() unregister_netdev() free_netdev(ndev) // free priv ravb_tx_timeout_work() // use priv unregister_netdev() will call .ndo_stop() so that ravb_stop() is called. And, after phy_stop() is called, netif_carrier_off() is also called. So that .ndo_tx_timeout() will not be called after phy_stop().
ROS-20241003-01
Множественные уязвимости kernel-lt
SUSE-SU-2024:1321-1
Security update for the Linux Kernel
SUSE-SU-2024:1454-1
Security update for the Linux Kernel
SUSE-SU-2024:1466-1
Security update for the Linux Kernel
SUSE-SU-2024:1322-1
Security update for the Linux Kernel
SUSE-SU-2024:1480-1
Security update for the Linux Kernel
SUSE-SU-2024:1489-1
Security update for the Linux Kernel
SUSE-SU-2024:1490-1
Security update for the Linux Kernel
SUSE-SU-2024:1646-1
Security update for the Linux Kernel
SUSE-SU-2024:1870-1
Security update for the Linux Kernel
SUSE-SU-2024:1648-1
Security update for the Linux Kernel
SUSE-SU-2024:1643-1
Security update for the Linux Kernel
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2024-07832 Уязвимость компонента ravb ядра операционной системы Linux, позволяющая нарушителю повысить свои привилегии | CVSS3: 8.8 | 0% Низкий | почти 2 года назад |
 | CVE-2023-52509 In the Linux kernel, the following vulnerability has been resolved: ravb: Fix use-after-free issue in ravb_tx_timeout_work() The ravb_stop() should call cancel_work_sync(). Otherwise, ravb_tx_timeout_work() is possible to use the freed priv after ravb_remove() was called like below: CPU0 CPU1 ravb_tx_timeout() ravb_remove() unregister_netdev() free_netdev(ndev) // free priv ravb_tx_timeout_work() // use priv unregister_netdev() will call .ndo_stop() so that ravb_stop() is called. And, after phy_stop() is called, netif_carrier_off() is also called. So that .ndo_tx_timeout() will not be called after phy_stop(). | CVSS3: 7.8 | 0% Низкий | больше 1 года назад |
 | CVE-2023-52509 In the Linux kernel, the following vulnerability has been resolved: ravb: Fix use-after-free issue in ravb_tx_timeout_work() The ravb_stop() should call cancel_work_sync(). Otherwise, ravb_tx_timeout_work() is possible to use the freed priv after ravb_remove() was called like below: CPU0CPU1 ravb_tx_timeout() ravb_remove() unregister_netdev() free_netdev(ndev) // free priv ravb_tx_timeout_work() // use priv unregister_netdev() will call .ndo_stop() so that ravb_stop() is called. And, after phy_stop() is called, netif_carrier_off() is also called. So that .ndo_tx_timeout() will not be called after phy_stop(). | CVSS3: 6 | 0% Низкий | больше 1 года назад |
 | CVE-2023-52509 In the Linux kernel, the following vulnerability has been resolved: ravb: Fix use-after-free issue in ravb_tx_timeout_work() The ravb_stop() should call cancel_work_sync(). Otherwise, ravb_tx_timeout_work() is possible to use the freed priv after ravb_remove() was called like below: CPU0 CPU1 ravb_tx_timeout() ravb_remove() unregister_netdev() free_netdev(ndev) // free priv ravb_tx_timeout_work() // use priv unregister_netdev() will call .ndo_stop() so that ravb_stop() is called. And, after phy_stop() is called, netif_carrier_off() is also called. So that .ndo_tx_timeout() will not be called after phy_stop(). | CVSS3: 7.8 | 0% Низкий | больше 1 года назад |
| CVE-2023-52509 In the Linux kernel, the following vulnerability has been resolved: r ... | CVSS3: 7.8 | 0% Низкий | больше 1 года назад |
| GHSA-wgvh-m7hp-9m4m In the Linux kernel, the following vulnerability has been resolved: ravb: Fix use-after-free issue in ravb_tx_timeout_work() The ravb_stop() should call cancel_work_sync(). Otherwise, ravb_tx_timeout_work() is possible to use the freed priv after ravb_remove() was called like below: CPU0 CPU1 ravb_tx_timeout() ravb_remove() unregister_netdev() free_netdev(ndev) // free priv ravb_tx_timeout_work() // use priv unregister_netdev() will call .ndo_stop() so that ravb_stop() is called. And, after phy_stop() is called, netif_carrier_off() is also called. So that .ndo_tx_timeout() will not be called after phy_stop(). | CVSS3: 7.8 | 0% Низкий | больше 1 года назад |
 | ROS-20241003-01 Множественные уязвимости kernel-lt | CVSS3: 8.8 | 12 месяцев назад | |
 | SUSE-SU-2024:1321-1 Security update for the Linux Kernel | больше 1 года назад | ||
| SUSE-SU-2024:1454-1 Security update for the Linux Kernel | больше 1 года назад | ||
| SUSE-SU-2024:1466-1 Security update for the Linux Kernel | больше 1 года назад | ||
| SUSE-SU-2024:1322-1 Security update for the Linux Kernel | больше 1 года назад | ||
| SUSE-SU-2024:1480-1 Security update for the Linux Kernel | больше 1 года назад | ||
| SUSE-SU-2024:1489-1 Security update for the Linux Kernel | больше 1 года назад | ||
| SUSE-SU-2024:1490-1 Security update for the Linux Kernel | больше 1 года назад | ||
| SUSE-SU-2024:1646-1 Security update for the Linux Kernel | больше 1 года назад | ||
| SUSE-SU-2024:1870-1 Security update for the Linux Kernel | больше 1 года назад | ||
| SUSE-SU-2024:1648-1 Security update for the Linux Kernel | больше 1 года назад | ||
| SUSE-SU-2024:1643-1 Security update for the Linux Kernel | больше 1 года назад |
Уязвимостей на страницу