Description
In the Linux kernel, the following vulnerability has been resolved:
RDMA/mlx4: Prevent shift wrapping in set_user_sq_size()
The ucmd->log_sq_bb_count variable is controlled by the user so this
shift can wrap. Fix it by using check_shl_overflow() in the same way
that it was done in commit 515f60004ed9 ("RDMA/hns: Prevent undefined
behavior in hns_roce_set_user_sq_size()").
Mitigation
Minimal update. May introduce new vulnerabilities or breaking changes.
|
 debian 11 | | =5.10.103-1 || =5.10.103-1~bpo10+1 || =5.10.106-1 || =5.10.113-1 || =5.10.120-1 || =5.10.120-1~bpo10+1 || =5.10.127-1 || =5.10.127-2 || =5.10.127-2~bpo10+1 || =5.10.136-1 || =5.10.140-1 || =5.10.148-1 || =5.10.149-1 || =5.10.149-2 || =5.10.158-1 || =5.10.158-2 || =5.10.162-1 || =5.10.178-1 || =5.10.178-2 || =5.10.178-3 || =5.10.179-1 || =5.10.179-2 || =5.10.179-3 || =5.10.179-4 || =5.10.179-5 || =5.10.46-4 || =5.10.46-5 || =5.10.70-1 || =5.10.70-1~bpo10+1 || =5.10.84-1 || =5.10.92-1 || =5.10.92-1~bpo10+1 || =5.10.92-2 || >=0 <5.10.191-1 | 5.10.191-1 |
 rpm rhel9 | | - | - |
debian 14 | | | 6.3.7-1 |
debian 13 | | | 6.3.7-1 |
debian 12 | | =6.1.27-1 || >=0 <6.1.37-1 | 6.1.37-1 |
rpm rhel8 | | - | - |
rpm rhel7 | | - | - |
rpm rhel8 | | - | - |
rpm rhel7 | | - | - |
rpm rhel9 | | - | - |
