Description
vmwgfx: NULL pointer dereference in vmw_cmd_dx_define_query.
null-ptr-deref vulnerabilities in sl_tx_timeout in drivers/net/slip.
nfp: use-after-free in area_cache_get().
NULL pointer dereference in can_rcv_filter.
Slab-out-of-bound read in compare_netdev_and_ip.
out-of-bounds write in qfq_change_class function.
NULL pointer dereference in vmxnet3_rq_cleanup().
net/sched: sch_qfq component can be exploited if in qfq_change_agg function happens qfq_enqueue overhead.
ktls overwrites readonly memory pages when using function splice with a ktls socket as destination.
inactive elements in nft_pipapo_walk.
refcount leak in ctnetlink_create_conntrack().
out-of-bounds write in qfq_change_class function (JIRA:RHEL-12700).
vmxnet3: NULL pointer dereference in vmxnet3_rq_cleanup() (JIRA:RHEL-18192).
refcount leak in ctnetlink_create_conntrack() (JIRA:RHEL-20302).
inactive elements in nft_pipapo_walk (JIRA:RHEL-20703).
ktls overwrites readonly memory pages when using function splice with a ktls socket as destination (JIRA:RHEL-22099).
update RT source tree to the latest RHEL-8.4.z Batch 23 (JIRA:RHEL-23825).
null-ptr-deref vulnerabilities in sl_tx_timeout in drivers/net/slip (JIRA:RHEL-19023).
Slab-out-of-bound read in compare_netdev_and_ip (JIRA:RHEL-19404).
A flaw leading to a use-after-free in area_cache_get() (JIRA:RHEL-19530).
vmxgfx: NULL pointer dereference in vmw_cmd_dx_define_query (JIRA:RHEL-22755).
NULL pointer dereference in can_rcv_filter (JIRA:RHEL-19520).