Nixpkgs security tracker

Login with GitHub
⚠️ You are using a production deployment that is still only suitable for demo purposes. Any work done in this might be wiped later without notice.

Suggestion detail

Dismissed
(max. allowed matches exceeded)
created 3 weeks ago Activity log
  • Created & dismissed (max. allowed matches exceeded) suggestion
bpf: Validate node_id in arena_alloc_pages()

In the Linux kernel, the following vulnerability has been resolved: bpf: Validate node_id in arena_alloc_pages() arena_alloc_pages() accepts a plain int node_id and forwards it through the entire allocation chain without any bounds checking. Validate node_id before passing it down the allocation chain in arena_alloc_pages().

Affected products

Linux
  • ==6.9
  • =<6.18.*
  • <31d3b4b28e55835646d6829d60023f730dd34e85
  • =<7.0.*
  • <e15900888c09480a4c632bc598f1c5bd39bed6d6
  • =<*
  • <fb66e20130f95a93ffea1677252526a9e39170b2
  • <2845989f2ebaf7848e4eccf9a779daf3156ea0a5
  • <6.9
  • =<6.12.*