Lucene search
+L

312 matches found

Vulnrichment
Vulnrichment
added 2025/04/16 2:13 p.m.4 views

CVE-2025-23134 ALSA: timer: Don't take register_mutex with copy_from/to_user()

In the Linux kernel, the following vulnerability has been resolved: ALSA: timer: Don't take registermutex with copyfrom/touser The infamous mmaplock taken in copyfrom/touser can be often problematic when it's called inside another mutex, as they might lead to deadlocks. In the case of ALSA timer...

7.5AI score0.00128EPSS
Exploits0References4
OSV
OSV
added 2025/04/01 4:15 p.m.3 views

DEBIAN-CVE-2025-21897

In the Linux kernel, the following vulnerability has been resolved: schedext: Fix picktaskscx picking non-queued tasks when it's called without balance a6250aa251ea "schedext: Handle cases where picktaskscx is called without preceding balancescx" added a workaround to handle the cases where...

5.5CVSS5.7AI score0.00141EPSS
Exploits0References1
NVD
NVD
added 2025/04/01 4:15 p.m.10 views

CVE-2025-21897

In the Linux kernel, the following vulnerability has been resolved: schedext: Fix picktaskscx picking non-queued tasks when it's called without balance a6250aa251ea "schedext: Handle cases where picktaskscx is called without preceding balancescx" added a workaround to handle the cases where...

5.5CVSS0.00141EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/03/12 3:23 p.m.8 views

SUSE CVE-2025-21853

In the Linux kernel, the following vulnerability has been resolved: bpf: avoid holding freezemutex during mmap operation We use map-freezemutex to prevent races between mapfreeze and memory mapping BPF map contents with writable permissions. The way we naively do this means we'll hold freezemutex...

5.5CVSS7.7AI score0.00221EPSS
Exploits0References18
OSV
OSV
added 2025/03/12 10:15 a.m.16 views

AZL-58536 CVE-2025-21853 affecting package kernel for versions less than 5.15.182.1-1

In the Linux kernel, the following vulnerability has been resolved: bpf: avoid holding freezemutex during mmap operation We use map-freezemutex to prevent races between mapfreeze and memory mapping BPF map contents with writable permissions. The way we naively do this means we'll hold freezemutex...

5.5CVSS6.7AI score0.00221EPSS
Exploits0References1
OSV
OSV
added 2025/03/12 10:15 a.m.2 views

DEBIAN-CVE-2025-21853

In the Linux kernel, the following vulnerability has been resolved: bpf: avoid holding freezemutex during mmap operation We use map-freezemutex to prevent races between mapfreeze and memory mapping BPF map contents with writable permissions. The way we naively do this means we'll hold freezemutex...

5.5CVSS5.5AI score0.00221EPSS
Exploits0References1
CVE
CVE
added 2025/03/12 9:42 a.m.136 views

CVE-2025-21853

CVE-2025-21853 affects the Linux kernel BPF mmap path. The issue arises from holding map->freeze_mutex for the entire duration of mmap mm/VMA manipulations when ensuring writeable map contents, which could deadlock. The fixed approach holds freeze_mutex only during writeability checks, increme...

5.5CVSS6.5AI score0.00221EPSS
Exploits0References10Affected Software1
OSV
OSV
added 2025/03/12 9:42 a.m.9 views

CVE-2025-21853 bpf: avoid holding freeze_mutex during mmap operation

In the Linux kernel, the following vulnerability has been resolved: bpf: avoid holding freezemutex during mmap operation We use map-freezemutex to prevent races between mapfreeze and memory mapping BPF map contents with writable permissions. The way we naively do this means we'll hold freezemutex...

5.5CVSS5.9AI score0.00221EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2024-53207

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Bluetooth: MGMT: Fix possible deadlocks This fixes possible deadlocks like the following caused by hcicmdsyncdequeue causing the destroy function to run: INFO:...

5.5CVSS6.7AI score0.00164EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2024-44952

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: driver core: Fix ueventshow vs driver detach race ueventshow wants to de-reference...

6.9AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2024-43863

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix a deadlock in dma buf fence polling Introduce a version of the fence ops tha...

5.5CVSS6.1AI score0.00164EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2024-26899

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: block: fix deadlock between bdlinkdiskholder and partition scan 'openmutex' of gendisk is us...

5.5CVSS5.6AI score0.0021EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2018-1000127

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - memcached version prior to 1.4.37 contains an Integer Overflow vulnerability in items.c:itemfree that can result in data corruption and deadlocks due to items...

7.5CVSS7AI score0.02316EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/02/27 3:6 a.m.4 views

SUSE CVE-2022-49446

In the Linux kernel, the following vulnerability has been resolved: nvdimm: Fix firmware activation deadlock scenarios Lockdep reports the following deadlock scenarios for CXL root device power-management, deviceprepare, operations, and deviceshutdown operations for 'ndregion' devices: Chain exis...

5.5CVSS7.8AI score0.00191EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2025/02/25 12:0 a.m.5 views

PT-2025-14278 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been resolved, related to the pick task scx function picking non-queued tasks when called without balance. The issue arises from a fair class bu...

4.3CVSS6AI score0.00141EPSS
Exploits0References15
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.4 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: eth: sungem: Remove .ndopollcontroller to avoid deadlocks. Erhard reports netpoll warnings from sungem: netpollsendskbondev: eth0 enables interrupts during polling gemstartxmit+0x0/0x398. Warning: CPU: 1, PID: 1; at...

5.5CVSS6.2AI score0.00178EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.2 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: net: fec: removed .ndopollcontroller to avoid deadlocks. A deadlock issue was found in the sungem driver. Please refer to the commit ac0a230f719b “eth: sungem: removed .ndopollcontroller to avoid deadlocks”. The root cause of the...

5.5CVSS6.1AI score0.00193EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.3 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: mm: revert "mm: shmem: fix data-race in shmemgetattr". The change reverts to the state before the modification made by d949d1d14fa2 “mm: shmem: fix data-race in shmemgetattr“”, as suggested by Chuck 1. This issue caused deadlocks...

4.7CVSS6.2AI score0.00168EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2025/01/29 8:0 a.m.3 views

Bluetooth: MGMT: Fix possible deadlocks

...

5.5CVSS7AI score0.00164EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2025/01/12 12:15 a.m.3 views

SUSE CVE-2024-55642

In the Linux kernel, the following vulnerability has been resolved: block: Prevent potential deadlocks in zone write plug error recovery Zone write plugging for handling writes to zones of a zoned block device always execute a zone report whenever a write BIO to a zone fails. The intent of this i...

4.7CVSS7.9AI score0.00182EPSS
Exploits0References3
Rows per page
Query Builder