CVE ID : CVE-2025-21630 Published : Jan. 15, 2025, 1:15 p.m. | 1 hour, 2 minutes ago Description : In the Linux kernel, the following vulnerability has been resolved: io_uring/net: always initialize kmsg->msg.msg_inq upfront syzbot reports that ->msg_inq may get used uinitialized from the following path: BUG: KMSAN: uninit-value in io_recv_buf_select io_uring/net.c:1094 [inline] BUG: KMSAN: uninit-value in…

CVE ID : CVE-2025-21629 Published : Jan. 15, 2025, 1:15 p.m. | 1 hour, 2 minutes ago Description : In the Linux kernel, the following vulnerability has been resolved: net: reenable NETIF_F_IPV6_CSUM offload for BIG TCP packets The blamed commit disabled hardware offoad of IPv6 packets with extension headers on devices that advertise NETIF_F_IPV6_CSUM, based on the…

CVE ID : CVE-2024-5198 Published : Jan. 15, 2025, 1:15 p.m. | 1 hour, 2 minutes ago Description : OpenVPN ovpn-dco for Windows version 1.1.1 allows an unprivileged local attacker to send I/O control messages with invalid data to the driver resulting in a NULL pointer dereference leading to a system halt. Severity: 0.0 | NA Visit…

CVE ID : CVE-2024-57903 Published : Jan. 15, 2025, 1:15 p.m. | 1 hour, 2 minutes ago Description : In the Linux kernel, the following vulnerability has been resolved: net: restrict SO_REUSEPORT to inet sockets After blamed commit, crypto sockets could accidentally be destroyed from RCU call back, as spotted by zyzbot [1]. Trying to acquire a…

CVE ID : CVE-2024-57902 Published : Jan. 15, 2025, 1:15 p.m. | 1 hour, 2 minutes ago Description : In the Linux kernel, the following vulnerability has been resolved: af_packet: fix vlan_get_tci() vs MSG_PEEK Blamed commit forgot MSG_PEEK case, allowing a crash [1] as found by syzbot. Rework vlan_get_tci() to not touch skb at all, so that…

CVE ID : CVE-2024-57901 Published : Jan. 15, 2025, 1:15 p.m. | 1 hour, 2 minutes ago Description : In the Linux kernel, the following vulnerability has been resolved: af_packet: fix vlan_get_protocol_dgram() vs MSG_PEEK Blamed commit forgot MSG_PEEK case, allowing a crash [1] as found by syzbot. Rework vlan_get_protocol_dgram() to not touch skb at all, so that…

CVE ID : CVE-2024-57900 Published : Jan. 15, 2025, 1:15 p.m. | 1 hour, 2 minutes ago Description : In the Linux kernel, the following vulnerability has been resolved: ila: serialize calls to nf_register_net_hooks() syzbot found a race in ila_add_mapping() [1] commit 031ae72825ce (“ila: call nf_unregister_net_hooks() sooner”) attempted to fix a similar issue. Looking at the syzbot…

CVE ID : CVE-2024-57899 Published : Jan. 15, 2025, 1:15 p.m. | 1 hour, 2 minutes ago Description : In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix mbss changed flags corruption on 32 bit systems On 32-bit systems, the size of an unsigned long is 4 bytes, while a u64 is 8…

CVE ID : CVE-2024-57898 Published : Jan. 15, 2025, 1:15 p.m. | 1 hour, 2 minutes ago Description : In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: clear link ID from bitmap during link delete after clean up Currently, during link deletion, the link ID is first removed from the valid_links bitmap before…

CVE ID : CVE-2024-57897 Published : Jan. 15, 2025, 1:15 p.m. | 1 hour, 2 minutes ago Description : In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Correct the migration DMA map direction The SVM DMA device map direction should be set the same as the DMA unmap setting, otherwise the DMA core will…