Количество 13
Количество 13
CVE-2023-52685
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
CVE-2023-52685
[REJECTED CVE] In the Linux kernel, the following vulnerability has been resolved: pstore: ram_core: fix possible overflow in persistent_ram_init_ecc() The Linux kernel CVE team has assigned CVE-2023-52685 to this issue.
CVE-2023-52685
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
GHSA-4fqj-ghw2-3jmf
In the Linux kernel, the following vulnerability has been resolved: pstore: ram_core: fix possible overflow in persistent_ram_init_ecc() In persistent_ram_init_ecc(), on 64-bit arches DIV_ROUND_UP() will return 64-bit value since persistent_ram_zone::buffer_size has type size_t which is derived from the 64-bit *unsigned long*, while the ecc_blocks variable this value gets assigned to has (always 32-bit) *int* type. Even if that value fits into *int* type, an overflow is still possible when calculating the size_t typed ecc_total variable further below since there's no cast to any 64-bit type before multiplication. Declaring the ecc_blocks variable as *size_t* should fix this mess... Found by Linux Verification Center (linuxtesting.org) with the SVACE static analysis tool.
SUSE-SU-2024:1979-1
Security update for the Linux Kernel
SUSE-SU-2024:2184-1
Security update for the Linux Kernel
SUSE-SU-2024:1983-1
Security update for the Linux Kernel
SUSE-SU-2024:2203-1
Security update for the Linux Kernel
SUSE-SU-2024:2135-1
Security update for the Linux Kernel
SUSE-SU-2024:2019-1
Security update for the Linux Kernel
SUSE-SU-2024:2190-1
Security update for the Linux Kernel
SUSE-SU-2024:2008-1
Security update for the Linux Kernel
SUSE-SU-2024:2973-1
Security update for the Linux Kernel
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-52685 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | больше 1 года назад | ||
 | CVE-2023-52685 [REJECTED CVE] In the Linux kernel, the following vulnerability has been resolved: pstore: ram_core: fix possible overflow in persistent_ram_init_ecc() The Linux kernel CVE team has assigned CVE-2023-52685 to this issue. | CVSS3: 5.5 | больше 1 года назад | |
 | CVE-2023-52685 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | больше 1 года назад | ||
| GHSA-4fqj-ghw2-3jmf In the Linux kernel, the following vulnerability has been resolved: pstore: ram_core: fix possible overflow in persistent_ram_init_ecc() In persistent_ram_init_ecc(), on 64-bit arches DIV_ROUND_UP() will return 64-bit value since persistent_ram_zone::buffer_size has type size_t which is derived from the 64-bit *unsigned long*, while the ecc_blocks variable this value gets assigned to has (always 32-bit) *int* type. Even if that value fits into *int* type, an overflow is still possible when calculating the size_t typed ecc_total variable further below since there's no cast to any 64-bit type before multiplication. Declaring the ecc_blocks variable as *size_t* should fix this mess... Found by Linux Verification Center (linuxtesting.org) with the SVACE static analysis tool. | больше 1 года назад | ||
 | SUSE-SU-2024:1979-1 Security update for the Linux Kernel | больше 1 года назад | ||
| SUSE-SU-2024:2184-1 Security update for the Linux Kernel | больше 1 года назад | ||
| SUSE-SU-2024:1983-1 Security update for the Linux Kernel | больше 1 года назад | ||
| SUSE-SU-2024:2203-1 Security update for the Linux Kernel | больше 1 года назад | ||
| SUSE-SU-2024:2135-1 Security update for the Linux Kernel | больше 1 года назад | ||
| SUSE-SU-2024:2019-1 Security update for the Linux Kernel | больше 1 года назад | ||
| SUSE-SU-2024:2190-1 Security update for the Linux Kernel | больше 1 года назад | ||
| SUSE-SU-2024:2008-1 Security update for the Linux Kernel | больше 1 года назад | ||
| SUSE-SU-2024:2973-1 Security update for the Linux Kernel | больше 1 года назад |
Уязвимостей на страницу