Lucene search
K

89 matches found

CNNVD
CNNVD
added 2025/02/12 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from not truncating the address space when flipping the GFS2DIFJDATA flag. An attacker exploiting this vulnerability...

5.5CVSS6.4AI score0.00225EPSS
Exploits0References9
OSV
OSV
added 2024/10/21 6:15 p.m.1 views

DEBIAN-CVE-2024-49956

In the Linux kernel, the following vulnerability has been resolved: gfs2: fix double destroyworkqueue error When gfs2fillsuper fails, destroyworkqueue is called within gfs2glhashclear, and the subsequent code path calls destroyworkqueue on the same work queue again. This issue can be fixed by...

5.5CVSS5.5AI score0.002EPSS
Exploits0References1
OSV
OSV
added 2024/09/26 11:58 a.m.11 views

USN-7039-1 linux, linux-aws, linux-kvm, linux-lts-xenial vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - Input Device Tablet drivers; - Modular ISDN driver; - Multiple devices driver; - Network drivers; -...

7.8CVSS6.7AI score0.00689EPSS
Exploits1References23
RedHat Linux
RedHat Linux
added 2024/09/24 2:39 a.m.4 views

kernel: gfs2: Fix potential glock use-after-free on unmount

A vulnerability was found in the Linux kernel within the gfs2 component, where potential use-after-free issues could occur on unmount. When DLM lockspaces are released with remaining locks, callbacks for asynchronous lock contention may access freed objects, causing unexpected behavior...

7.8CVSS6.8AI score0.00248EPSS
Exploits0References5
Microsoft CVE
Microsoft CVE
added 2024/09/11 7:0 a.m.1 views

gfs2: Fix potential glock use-after-free on unmount

...

7.8CVSS7.3AI score0.00248EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2024/09/03 3:48 p.m.6 views

kernel: gfs2: Fix potential glock use-after-free on unmount

A vulnerability was found in the Linux kernel within the gfs2 component, where potential use-after-free issues could occur on unmount. When DLM lockspaces are released with remaining locks, callbacks for asynchronous lock contention may access freed objects, causing unexpected behavior...

7.8CVSS6.8AI score0.00248EPSS
Exploits0References5
OSV
OSV
added 2024/08/27 10:19 a.m.5 views

CLSA-2024-1724753960 Fix CVE(s): CVE-2023-52760, CVE-2024-35835, CVE-2024-39484, CVE-2024-39487

CVE-url: https://ubuntu.com/security/CVE-2024-39487 - bonding: Fix out-of-bounds read in bondoptionarpiptargetsset CVE-url: https://ubuntu.com/security/CVE-2023-52760 - gfs2: Fix slab-use-after-free in gfs2qddealloc CVE-url: https://ubuntu.com/security/CVE-2024-39484 - mmc: davinci: Don't strip...

7.8CVSS6.7AI score0.00861EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2024/08/13 10:53 a.m.10 views

kernel: gfs2: Fix kernel NULL pointer dereference in gfs2_rgrp_dump

A NULL pointer dereference flaw was found in the Linux kernel when accessing the rgd-rdrgl in the gfs2rgrpdump function. This issue may lead to a crash...

5.5CVSS6.6AI score0.00244EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/06/22 3:35 a.m.11 views

SUSE CVE-2024-38570

In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix potential glock use-after-free on unmount When a DLM lockspace is released and there ares still locks in that lockspace, DLM will unlock those locks automatically. Commit fb6791d100d1b started exploiting this behavior t...

6.7CVSS6.2AI score0.00248EPSS
Exploits0References15
CNNVD
CNNVD
added 2024/06/19 12:0 a.m.2 views

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a post-release reuse issue in gfs2...

7.8CVSS6.6AI score0.00248EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/05/29 10:0 a.m.5 views

SUSE CVE-2023-52760

In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix slab-use-after-free in gfs2qddealloc In gfs2putsuper, whether withdrawn or not, the quota should be cleaned up by gfs2quotacleanup. Otherwise, struct gfs2sbd will be freed before gfs2qddealloc rcu callback has run for a...

7.8CVSS6.8AI score0.00269EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/02/22 12:0 a.m.2 views

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a NULL pointer dereference in gfs2rgrpdump...

5.5CVSS6.5AI score0.00244EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2023/11/14 3:46 p.m.2 views

kernel: gfs2: NULL pointer dereference in gfs2_evict_inode()

A NULL pointer dereference flaw was found in the gfs2 file system in the Linux kernel. This issue occurs on corrupt gfs2 file systems when the evict code tries to reference the journal descriptor structure after it has been freed and set to NULL. This flaw allows a privileged local user to cause ...

4.4CVSS6.6AI score0.00262EPSS
Exploits0References4
OSV
OSV
added 2023/10/17 2:6 p.m.14 views

USN-6396-3 linux-azure vulnerabilities

It was discovered that some AMD x86-64 processors with SMT enabled could speculatively execute instructions using a return address from a sibling thread. A local attacker could possibly use this to expose sensitive information. CVE-2022-27672 Daniel Moghimi discovered that some IntelR Processors...

7.8CVSS7.3AI score0.03882EPSS
Exploits1References7
OSV
OSV
added 2023/09/26 3:9 p.m.7 views

USN-6396-1 linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-4.15, linux-gcp, linux-gcp-4.15, linux-hwe, linux-oracle vulnerabilities

It was discovered that some AMD x86-64 processors with SMT enabled could speculatively execute instructions using a return address from a sibling thread. A local attacker could possibly use this to expose sensitive information. CVE-2022-27672 Daniel Moghimi discovered that some IntelR Processors...

7.8CVSS7.1AI score0.03882EPSS
Exploits1References7
OSV
OSV
added 2023/09/11 6:34 p.m.5 views

USN-6339-3 linux-azure, linux-azure-5.15, linux-azure-fde, linux-azure-fde-5.15, linux-raspi vulnerabilities

It was discovered that the NTFS file system implementation in the Linux kernel did not properly validate MFT flags in certain situations. An attacker could use this to construct a malicious NTFS image that, when mounted and operated on, could cause a denial of service system crash. CVE-2022-48425...

9.8CVSS6.8AI score0.02975EPSS
Exploits0References9
Amazon
Amazon
added 2023/08/21 12:0 a.m.2 views

Medium: kernel

Issue Overview: A flaw in the Linux Kernel found in the GFS2 file system. On corrupted gfs2 file systems the evict code can try to reference the journal descriptor structure, jdesc, after it has been freed and set to NULL. It can lead to null pointer dereference when gfs2transbegin being called a...

7.8CVSS6.6AI score0.00296EPSS
Exploits0
OSV
OSV
added 2023/07/08 11:5 a.m.6 views

OESA-2023-1395 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: A known cache speculation vulnerability, known as Branch History Injection BHI or Spectre-BHB, becomes actual again for the new hw AmpereOne. Spectre-BHB is similar to Spectre v2, except that malicious code uses the shared branch...

7.8CVSS6.9AI score0.00536EPSS
Exploits1References10
OSV
OSV
added 2023/06/23 8:15 p.m.1 views

DEBIAN-CVE-2023-3212

A NULL pointer dereference issue was found in the gfs2 file system in the Linux kernel. It occurs on corrupt gfs2 file systems when the evict code tries to reference the journal descriptor structure after it has been freed and set to NULL. A privileged local user could use this flaw to cause a...

4.4CVSS6.1AI score0.00262EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 5:58 a.m.3 views

SUSE CVE-2010-2798

The gfs2direntfindspace function in fs/gfs2/dir.c in the Linux kernel before 2.6.35 uses an incorrect size value in calculations associated with sentinel directory entries, which allows local users to cause a denial of service NULL pointer dereference and panic and possibly have unspecified other...

7.8CVSS6.6AI score0.00414EPSS
Exploits0References7
Rows per page
Query Builder