Количество 21
Количество 21
BDU:2024-09004
Уязвимость функции xenvif_flush_hash() ядра операционной системы Linux, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации.
CVE-2024-49936
In the Linux kernel, the following vulnerability has been resolved: net/xen-netback: prevent UAF in xenvif_flush_hash() During the list_for_each_entry_rcu iteration call of xenvif_flush_hash, kfree_rcu does not exist inside the rcu read critical section, so if kfree_rcu is called when the rcu grace period ends during the iteration, UAF occurs when accessing head->next after the entry becomes free. Therefore, to solve this, you need to change it to list_for_each_entry_safe.
CVE-2024-49936
In the Linux kernel, the following vulnerability has been resolved: net/xen-netback: prevent UAF in xenvif_flush_hash() During the list_for_each_entry_rcu iteration call of xenvif_flush_hash, kfree_rcu does not exist inside the rcu read critical section, so if kfree_rcu is called when the rcu grace period ends during the iteration, UAF occurs when accessing head->next after the entry becomes free. Therefore, to solve this, you need to change it to list_for_each_entry_safe.
CVE-2024-49936
In the Linux kernel, the following vulnerability has been resolved: net/xen-netback: prevent UAF in xenvif_flush_hash() During the list_for_each_entry_rcu iteration call of xenvif_flush_hash, kfree_rcu does not exist inside the rcu read critical section, so if kfree_rcu is called when the rcu grace period ends during the iteration, UAF occurs when accessing head->next after the entry becomes free. Therefore, to solve this, you need to change it to list_for_each_entry_safe.
CVE-2024-49936
net/xen-netback: prevent UAF in xenvif_flush_hash()
CVE-2024-49936
In the Linux kernel, the following vulnerability has been resolved: n ...
ROS-20250414-01
Множественные уязвимости kernel-lt
GHSA-vp2p-wqj6-25wf
In the Linux kernel, the following vulnerability has been resolved: net/xen-netback: prevent UAF in xenvif_flush_hash() During the list_for_each_entry_rcu iteration call of xenvif_flush_hash, kfree_rcu does not exist inside the rcu read critical section, so if kfree_rcu is called when the rcu grace period ends during the iteration, UAF occurs when accessing head->next after the entry becomes free. Therefore, to solve this, you need to change it to list_for_each_entry_safe.
SUSE-SU-2024:4103-1
Security update for the Linux Kernel
SUSE-SU-2024:4140-1
Security update for the Linux Kernel
SUSE-SU-2024:4131-1
Security update for the Linux Kernel
SUSE-SU-2025:0034-1
Security update for the Linux Kernel
SUSE-SU-2024:4100-1
Security update for the Linux Kernel
SUSE-SU-2024:3983-1
Security update for the Linux Kernel
SUSE-SU-2024:3985-1
Security update for the Linux Kernel
ELSA-2024-12887
ELSA-2024-12887: Unbreakable Enterprise kernel security update (IMPORTANT)
SUSE-SU-2024:3986-1
Security update for the Linux Kernel
SUSE-SU-2024:3984-1
Security update for the Linux Kernel
SUSE-SU-2024:4364-1
Security update for the Linux Kernel
SUSE-SU-2024:4387-1
Security update for the Linux Kernel
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2024-09004 Уязвимость функции xenvif_flush_hash() ядра операционной системы Linux, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации. | CVSS3: 7.8 | 0% Низкий | около 1 года назад |
 | CVE-2024-49936 In the Linux kernel, the following vulnerability has been resolved: net/xen-netback: prevent UAF in xenvif_flush_hash() During the list_for_each_entry_rcu iteration call of xenvif_flush_hash, kfree_rcu does not exist inside the rcu read critical section, so if kfree_rcu is called when the rcu grace period ends during the iteration, UAF occurs when accessing head->next after the entry becomes free. Therefore, to solve this, you need to change it to list_for_each_entry_safe. | CVSS3: 7.8 | 0% Низкий | около 1 года назад |
 | CVE-2024-49936 In the Linux kernel, the following vulnerability has been resolved: net/xen-netback: prevent UAF in xenvif_flush_hash() During the list_for_each_entry_rcu iteration call of xenvif_flush_hash, kfree_rcu does not exist inside the rcu read critical section, so if kfree_rcu is called when the rcu grace period ends during the iteration, UAF occurs when accessing head->next after the entry becomes free. Therefore, to solve this, you need to change it to list_for_each_entry_safe. | CVSS3: 7.8 | 0% Низкий | около 1 года назад |
 | CVE-2024-49936 In the Linux kernel, the following vulnerability has been resolved: net/xen-netback: prevent UAF in xenvif_flush_hash() During the list_for_each_entry_rcu iteration call of xenvif_flush_hash, kfree_rcu does not exist inside the rcu read critical section, so if kfree_rcu is called when the rcu grace period ends during the iteration, UAF occurs when accessing head->next after the entry becomes free. Therefore, to solve this, you need to change it to list_for_each_entry_safe. | CVSS3: 7.8 | 0% Низкий | около 1 года назад |
 | CVE-2024-49936 net/xen-netback: prevent UAF in xenvif_flush_hash() | 0% Низкий | около 1 года назад | |
| CVE-2024-49936 In the Linux kernel, the following vulnerability has been resolved: n ... | CVSS3: 7.8 | 0% Низкий | около 1 года назад |
 | ROS-20250414-01 Множественные уязвимости kernel-lt | CVSS3: 7.8 | 7 месяцев назад | |
| GHSA-vp2p-wqj6-25wf In the Linux kernel, the following vulnerability has been resolved: net/xen-netback: prevent UAF in xenvif_flush_hash() During the list_for_each_entry_rcu iteration call of xenvif_flush_hash, kfree_rcu does not exist inside the rcu read critical section, so if kfree_rcu is called when the rcu grace period ends during the iteration, UAF occurs when accessing head->next after the entry becomes free. Therefore, to solve this, you need to change it to list_for_each_entry_safe. | CVSS3: 7.8 | 0% Низкий | около 1 года назад |
 | SUSE-SU-2024:4103-1 Security update for the Linux Kernel | 12 месяцев назад | ||
| SUSE-SU-2024:4140-1 Security update for the Linux Kernel | 12 месяцев назад | ||
| SUSE-SU-2024:4131-1 Security update for the Linux Kernel | 12 месяцев назад | ||
| SUSE-SU-2025:0034-1 Security update for the Linux Kernel | 10 месяцев назад | ||
| SUSE-SU-2024:4100-1 Security update for the Linux Kernel | 12 месяцев назад | ||
| SUSE-SU-2024:3983-1 Security update for the Linux Kernel | около 1 года назад | ||
| SUSE-SU-2024:3985-1 Security update for the Linux Kernel | около 1 года назад | ||
| ELSA-2024-12887 ELSA-2024-12887: Unbreakable Enterprise kernel security update (IMPORTANT) | 11 месяцев назад | ||
| SUSE-SU-2024:3986-1 Security update for the Linux Kernel | около 1 года назад | ||
| SUSE-SU-2024:3984-1 Security update for the Linux Kernel | около 1 года назад | ||
| SUSE-SU-2024:4364-1 Security update for the Linux Kernel | 11 месяцев назад | ||
| SUSE-SU-2024:4387-1 Security update for the Linux Kernel | 11 месяцев назад |
Уязвимостей на страницу