Количество 17
Количество 17
CVE-2024-35962
In the Linux kernel, the following vulnerability has been resolved: netfilter: complete validation of user input In my recent commit, I missed that do_replace() handlers use copy_from_sockptr() (which I fixed), followed by unsafe copy_from_sockptr_offset() calls. In all functions, we can perform the @optlen validation before even calling xt_alloc_table_info() with the following check: if ((u64)optlen < (u64)tmp.size + sizeof(tmp)) return -EINVAL;
CVE-2024-35962
In the Linux kernel, the following vulnerability has been resolved: netfilter: complete validation of user input In my recent commit, I missed that do_replace() handlers use copy_from_sockptr() (which I fixed), followed by unsafe copy_from_sockptr_offset() calls. In all functions, we can perform the @optlen validation before even calling xt_alloc_table_info() with the following check: if ((u64)optlen < (u64)tmp.size + sizeof(tmp)) return -EINVAL;
CVE-2024-35962
In the Linux kernel, the following vulnerability has been resolved: netfilter: complete validation of user input In my recent commit, I missed that do_replace() handlers use copy_from_sockptr() (which I fixed), followed by unsafe copy_from_sockptr_offset() calls. In all functions, we can perform the @optlen validation before even calling xt_alloc_table_info() with the following check: if ((u64)optlen < (u64)tmp.size + sizeof(tmp)) return -EINVAL;
CVE-2024-35962
In the Linux kernel, the following vulnerability has been resolved: n ...
GHSA-j7rq-227r-98j4
In the Linux kernel, the following vulnerability has been resolved: netfilter: complete validation of user input In my recent commit, I missed that do_replace() handlers use copy_from_sockptr() (which I fixed), followed by unsafe copy_from_sockptr_offset() calls. In all functions, we can perform the @optlen validation before even calling xt_alloc_table_info() with the following check: if ((u64)optlen < (u64)tmp.size + sizeof(tmp)) return -EINVAL;
BDU:2024-10060
Уязвимость в компонента netfilter ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании
ROS-20241118-01
Множественные уязвимости kernel-lt
ELSA-2024-5928
ELSA-2024-5928: kernel security update (IMPORTANT)
SUSE-SU-2024:2381-1
Security update for the Linux Kernel
SUSE-SU-2024:2360-1
Security update for the Linux Kernel
SUSE-SU-2024:2561-1
Security update for the Linux Kernel
SUSE-SU-2024:2394-1
Security update for the Linux Kernel
SUSE-SU-2024:2372-1
Security update for the Linux Kernel
SUSE-SU-2024:2571-1
Security update for the Linux Kernel
SUSE-SU-2024:2896-1
Security update for the Linux Kernel
SUSE-SU-2024:2939-1
Security update for the Linux Kernel
SUSE-SU-2024:2973-1
Security update for the Linux Kernel
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-35962 In the Linux kernel, the following vulnerability has been resolved: netfilter: complete validation of user input In my recent commit, I missed that do_replace() handlers use copy_from_sockptr() (which I fixed), followed by unsafe copy_from_sockptr_offset() calls. In all functions, we can perform the @optlen validation before even calling xt_alloc_table_info() with the following check: if ((u64)optlen < (u64)tmp.size + sizeof(tmp)) return -EINVAL; | 0% Низкий | около 1 года назад | |
 | CVE-2024-35962 In the Linux kernel, the following vulnerability has been resolved: netfilter: complete validation of user input In my recent commit, I missed that do_replace() handlers use copy_from_sockptr() (which I fixed), followed by unsafe copy_from_sockptr_offset() calls. In all functions, we can perform the @optlen validation before even calling xt_alloc_table_info() with the following check: if ((u64)optlen < (u64)tmp.size + sizeof(tmp)) return -EINVAL; | CVSS3: 5.5 | 0% Низкий | около 1 года назад |
 | CVE-2024-35962 In the Linux kernel, the following vulnerability has been resolved: netfilter: complete validation of user input In my recent commit, I missed that do_replace() handlers use copy_from_sockptr() (which I fixed), followed by unsafe copy_from_sockptr_offset() calls. In all functions, we can perform the @optlen validation before even calling xt_alloc_table_info() with the following check: if ((u64)optlen < (u64)tmp.size + sizeof(tmp)) return -EINVAL; | 0% Низкий | около 1 года назад | |
| CVE-2024-35962 In the Linux kernel, the following vulnerability has been resolved: n ... | 0% Низкий | около 1 года назад | |
| GHSA-j7rq-227r-98j4 In the Linux kernel, the following vulnerability has been resolved: netfilter: complete validation of user input In my recent commit, I missed that do_replace() handlers use copy_from_sockptr() (which I fixed), followed by unsafe copy_from_sockptr_offset() calls. In all functions, we can perform the @optlen validation before even calling xt_alloc_table_info() with the following check: if ((u64)optlen < (u64)tmp.size + sizeof(tmp)) return -EINVAL; | 0% Низкий | около 1 года назад | |
 | BDU:2024-10060 Уязвимость в компонента netfilter ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 5.5 | 0% Низкий | около 1 года назад |
 | ROS-20241118-01 Множественные уязвимости kernel-lt | CVSS3: 8.8 | 7 месяцев назад | |
| ELSA-2024-5928 ELSA-2024-5928: kernel security update (IMPORTANT) | 10 месяцев назад | ||
 | SUSE-SU-2024:2381-1 Security update for the Linux Kernel | 11 месяцев назад | ||
| SUSE-SU-2024:2360-1 Security update for the Linux Kernel | 12 месяцев назад | ||
| SUSE-SU-2024:2561-1 Security update for the Linux Kernel | 11 месяцев назад | ||
| SUSE-SU-2024:2394-1 Security update for the Linux Kernel | 11 месяцев назад | ||
| SUSE-SU-2024:2372-1 Security update for the Linux Kernel | 12 месяцев назад | ||
| SUSE-SU-2024:2571-1 Security update for the Linux Kernel | 11 месяцев назад | ||
| SUSE-SU-2024:2896-1 Security update for the Linux Kernel | 10 месяцев назад | ||
| SUSE-SU-2024:2939-1 Security update for the Linux Kernel | 10 месяцев назад | ||
| SUSE-SU-2024:2973-1 Security update for the Linux Kernel | 10 месяцев назад |
Уязвимостей на страницу