quota: check block number when reading the block in quota file
A use-after-free vulnerability in the quota mechanism, leading to a denial of service.
openvswitch: integer underflow leads to out-of-bounds write
An integer coercion error in the openvswitch kernel module potentially leading to an out-of-bounds write access. This flaw allows a local user to crash or potentially escalate their privileges on the system.
memory leak in ipv6_renew_options
A memory leak in the IPv6 functionality. This flaw allows a user to crash the system.
data races around icsk->icsk_af_ops pointer
A vulnerability in the tcp subsystem. This issue could allow an attacker to leak internal kernel information.
netfilter fix irc helper
A firewall flaw that can bypass the Netfilter functionality. This flaw allows a remote user to gain unauthorized access to the system.
use-after-free in nfp device driver
A vulnerability in the Netronome Flow Processor (NFP) driver. This flaw allows a manipulation that may lead to a use-after-free issue.
NFSv4.1 double svc_xprt_put if rpc_create failures
A use-after-free vulnerability the NFS filesystem. This flaw allows an attacker to conduct a remote denial of service.
xprtrdma incorrect header size calculations
An information leak flaw in NFS over RDMA. This flaw allows an attacker with normal user privileges to leak kernel information.
Handle case where the lookup of a directory but file exists
A flaw in the NFS filesystem. This flaw leads to the kernel's data leak into the userspace.
Null pointer dereference in net SLIP driver
A NULL pointer dereference in the net SLIP driver. This issue could allow an attacker to crash the system or leak internal kernel information.
Double free in net vhost driver error path
A use-after-free in the virtio network subcomponent. This issue could allow a local attacker to crash the system, and could lead to a kernel information leak problem.
Memory leak in net queue scheduler cls_u32 error handler
A use-after-free in the network subcomponent. This flaw allows a local attacker to crash the system, cause a privilege escalation, and leak kernel information.
Use after free in packet family socket in prb_retire_rx_blk_timer_expired()
kernel data leak via spectre like gadget
A speculative pointer dereference vulnerabilty that can be used to leak the contents.
Kernel crash on mount invalid xfs image
An out-of-bounds memory access flaw in the XFS file system in how a user restores an XFS image after failure (with a dirty log journal). This flaw allows a local user to crash or potentially escalate their privileges on the system.
Use after free in iscsi driver
A use-after-free in the SCSI sub-component. This issue could allow an attacker to leak kernel internal information.
Out of bound memory access in qfq network packet scheduler
An out-of-bounds memory access flaw in the traffic control (QoS) subsystem. This flaw allows a local user to crash or potentially escalate their privileges on the system.
Use after free in ext4 setfattr
A use-after-free vulnerability in the ext4 filesystem in the way it handled the extra inode size for extended attributes. This flaw allows a privileged local user to cause a system crash or other undefined behaviors.
Missed CR0 and CR4 register check in KVM subsystem
A flaw in the KVM's Intel nested virtualization feature (nVMX). In rare circumstances (i.e., kvm_intel module loaded with parameters nested=1 and ept=0) this could allow a malicious guest to crash the host system, causing a denial of service.
Memory leak in sctp socket error path
A memory leak in the Stream Control Transmission Protocol. This issue may occur when a user starts a malicious networking service and someone connects to this service. This could allow a local user to starve resources, causing a denial of service.
Invalid memory access on mount invalid gfs2 image
A NULL pointer dereference in the gfs2 file system. This flaw allows a privileged local user to cause a kernel panic.
Use after free while changing network packet scheduler
A use-after-free in the network scheduler due to a race problem. This flaw leads to a denial of service issue.
Null pointer dereference in traffic control if try to assing classes to noqueue discipline
A NULL pointer dereference in traffic control. This issue may allow a local unprivileged user to trigger a system crash or leaked internal kernel information.
Null pointer dereference caused by race during updating ntf tables
A NULL pointer dereference in the netfilter subsystem. This flaw allows a local, unprivileged user to crash the system, resulting in a denial of service.
Use after free during routing igmp multicast message
A use-after-free flaw in the IGMP protocol. This flaw allows a local user to crash or potentially escalate their privileges on the system.
Memory leak in cgroup subsystem
Partial fix to prevent memory leak in some cases.
fuse: pcs: fix incorrect update of dirty status
Possible data loss in cluster storage.
fuse: pcs: missing timeout at authentication
Possible deadlock in kernel during connect to cluster storage.
Use-after-free in function sco_sock_sendmsg() of the HCI subsystem.
proc string out of bound in proc_skip_spaces()
bluetooth use-after-free in bluetooth l2cap_rx_state_recv
netfilter per/cpu memory leak on error path
fix device_rename for containers
virtualize timestamps in /dev/ksmg and syslog outputs
kernel data leak in pfkey_register