PT-2025-52757

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition exists within the veth module when handling XDP eXpress Data Path with no direct return frames. Specifically, the issue arises from concurrent calls to veth pool in...

Security Bulletin: IBM Storage Ceph is vulnerable to CWE in Golang (CVE-2023-39325)

Summary Golang is used by IBM Storage Ceph in Grafana. CVE-2023-39325 Vulnerability Details CVEID:CVE-2023-39325 DESCRIPTION: A malicious HTTP/2 client which rapidly creates requests and immediately resets them can cause excessive server resource consumption. While the total number of requests is...

CVE-2025-47350

Memory corruption while handling concurrent memory mapping and unmapping requests from a user-space application...

CVE-2025-47350

Memory corruption while handling concurrent memory mapping and unmapping requests from a user-space application...

CVE-2025-47350 Use After Free in DSP Service

Memory corruption while handling concurrent memory mapping and unmapping requests from a user-space application...

CVE-2025-47350 Use After Free in DSP Service

Memory corruption while handling concurrent memory mapping and unmapping requests from a user-space application...

EUVD-2025-204026

Memory corruption while handling concurrent memory mapping and unmapping requests from a user-space application...

CVE-2025-47350

CVE-2025-47350 describes a memory corruption flaw in Qualcomm chipsets triggered by concurrent memory mapping/unmapping requests from a user-space application. The vulnerability affects memory handling paths and is labeled with HIGH impact on confidentiality, integrity, and availability (CVSSv3.1...

Qualcomm Chipsets 资源管理错误漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A resource management error vulnerability exists in Qualcomm Chipsets that stems from memory corruption when processing concurrent memory map and unmap requests, which could lead to a denial of service...

PT-2025-51992

Name of the Vulnerable Software and Affected Versions versions prior to 2025-47350 Description A memory corruption issue exists when handling simultaneous memory mapping and unmapping requests originating from a user-space application. Recommendations At the moment, there is no information about ...

kernel: smb: client: fix race with concurrent opens in rename(2)

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix race with concurrent opens in rename2 Besides sending the rename request to the server, the rename process also involves closing any deferred close, waiting for outstanding I/O to complete as well as marking all...

kernel: smb: client: fix race with concurrent opens in rename(2)

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix race with concurrent opens in rename2 Besides sending the rename request to the server, the rename process also involves closing any deferred close, waiting for outstanding I/O to complete as well as marking all...

EUVD-2025-203776

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcicore: lookup hciconn on RX path on protocol side The hdev lock/lookup/unlock/use pattern in the packet RX path doesn't ensure hciconn is not concurrently modified/deleted. This locking appears to be leftover from...

CVE-2025-68319

In the Linux kernel, the following vulnerability has been resolved: netconsole: Acquire sumutex before navigating configs hierarchy There is a race between operations that iterate over the userdata cgchildren list and concurrent add/remove of userdata items through configfs. The updateuserdata...

EUVD-2025-203639

In the Linux kernel, the following vulnerability has been resolved: slab: Avoid race on slab-objexts in allocslabobjexts If two competing threads enter allocslabobjexts and one of them fails to allocate the object extension vector, it might override the valid slab-objexts allocated by the other...

CVE-2025-68264

In the Linux kernel, the following vulnerability has been resolved: ext4: refresh inline data size before write operations The cached ei-iinlinesize can become stale between the initial size check and when ext4updateinlinedata/ext4createinlinedata use it. Although ext4getmaxinlinesize reads the...

CVE-2025-68304 Bluetooth: hci_core: lookup hci_conn on RX path on protocol side

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcicore: lookup hciconn on RX path on protocol side The hdev lock/lookup/unlock/use pattern in the packet RX path doesn't ensure hciconn is not concurrently modified/deleted. This locking appears to be leftover from...

CVE-2025-68287 usb: dwc3: Fix race condition between concurrent dwc3_remove_requests() call paths

In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: Fix race condition between concurrent dwc3removerequests call paths This patch addresses a race condition caused by unsynchronized execution of multiple call paths invoking dwc3removerequests, leading to premature...

CVE-2025-68264 ext4: refresh inline data size before write operations

In the Linux kernel, the following vulnerability has been resolved: ext4: refresh inline data size before write operations The cached ei-iinlinesize can become stale between the initial size check and when ext4updateinlinedata/ext4createinlinedata use it. Although ext4getmaxinlinesize reads the...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from not acquiring the sumutex lock before traversing the configuration hierarchy, which could lead to list acces...