9106 matches found
UBUNTU-CVE-2023-53009
In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Add sync after creating vram bo There will be data corruption on vram allocated by svm if the initialization is not complete and application is writting on the memory. Adding sync to wait for the initialization...
UBUNTU-CVE-2023-53007
In the Linux kernel, the following vulnerability has been resolved: tracing: Make sure traceprintk can output as soon as it can be used Currently traceprintk can be used as soon as earlytraceinit is called from startkernel. But if a crash happens, and "ftracedumponoops" is set on the kernel comma...
UBUNTU-CVE-2022-49742
In the Linux kernel, the following vulnerability has been resolved: f2fs: initialize locks earlier in f2fsfillsuper syzbot is reporting lockdep warning at f2fshandleerror 1, for spinlock&sbi-errorlock is called before spinlockinit is called. For safe locking in error handling, move initialization...
CVE-2023-53020
CVE-2023-53020 affects the Linux kernel: l2tp_tunnel_register() contains race conditions that modify the tunnel socket after publishing, call setup_udp_tunnel_sock() on an existing socket without locking, and change sock lock class on the fly. A patch fixes these by initializing the socket before...
CVE-2023-53020 l2tp: close all race conditions in l2tp_tunnel_register()
In the Linux kernel, the following vulnerability has been resolved: l2tp: close all race conditions in l2tptunnelregister The code in l2tptunnelregister is racy in several ways: 1. It modifies the tunnel socket after publishing it. 2. It calls setupudptunnelsock on an existing socket without...
CVE-2023-53020 l2tp: close all race conditions in l2tp_tunnel_register()
In the Linux kernel, the following vulnerability has been resolved: l2tp: close all race conditions in l2tptunnelregister The code in l2tptunnelregister is racy in several ways: 1. It modifies the tunnel socket after publishing it. 2. It calls setupudptunnelsock on an existing socket without...
CVE-2023-53020
In the Linux kernel, the following vulnerability has been resolved: l2tp: close all race conditions in l2tptunnelregister The code in l2tptunnelregister is racy in several ways: 1. It modifies the tunnel socket after publishing it. 2. It calls setupudptunnelsock on an existing socket without...
CVE-2023-53009 drm/amdkfd: Add sync after creating vram bo
In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Add sync after creating vram bo There will be data corruption on vram allocated by svm if the initialization is not complete and application is writting on the memory. Adding sync to wait for the initialization...
CVE-2023-53009 drm/amdkfd: Add sync after creating vram bo
In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Add sync after creating vram bo There will be data corruption on vram allocated by svm if the initialization is not complete and application is writting on the memory. Adding sync to wait for the initialization...
CVE-2023-53009
The CVE-2023-53009 entry concerns the Linux kernel DRM/AMDKFD path. It describes a fix where a sync is added after creating a VRAM buffer (vram bo) to ensure initialization completes before memory is written by SVM. Without this synchronization there is a risk of data corruption on VRAM allocated...
CVE-2023-53007
The CVE-2023-53007 issue affects the Linux kernel tracing path, specifically trace_printk(): the vulnerability arises because trace_printk() can be used before the ftrace events are fully registered, leading to missing trace output after a crash if ftrace_dump_on_oops is enabled. The fix register...
CVE-2023-53007 tracing: Make sure trace_printk() can output as soon as it can be used
In the Linux kernel, the following vulnerability has been resolved: tracing: Make sure traceprintk can output as soon as it can be used Currently traceprintk can be used as soon as earlytraceinit is called from startkernel. But if a crash happens, and "ftracedumponoops" is set on the kernel comma...
CVE-2022-49742 f2fs: initialize locks earlier in f2fs_fill_super()
In the Linux kernel, the following vulnerability has been resolved: f2fs: initialize locks earlier in f2fsfillsuper syzbot is reporting lockdep warning at f2fshandleerror 1, for spinlock&sbi-errorlock is called before spinlockinit is called. For safe locking in error handling, move initialization...
CVE-2022-49742 f2fs: initialize locks earlier in f2fs_fill_super()
In the Linux kernel, the following vulnerability has been resolved: f2fs: initialize locks earlier in f2fsfillsuper syzbot is reporting lockdep warning at f2fshandleerror 1, for spinlock&sbi-errorlock is called before spinlockinit is called. For safe locking in error handling, move initialization...
CVE-2022-49742
The CVE-2022-49742 issue affects the Linux kernel’s f2fs code. It describes a lock initialization order problem where spin_lock(&sbi->error_lock) is taken before spin_lock_init() is called, flagging a lockdep warning in f2fs_handle_error(). The recommended remediation is to initialize locks (a...
CVE-2022-49742
In the Linux kernel, the following vulnerability has been resolved: f2fs: initialize locks earlier in f2fsfillsuper syzbot is reporting lockdep warning at f2fshandleerror 1, for spinlock&sbi-errorlock is called before spinlockinit is called. For safe locking in error handling, move initialization...
CVE-2022-49742 f2fs: initialize locks earlier in f2fs_fill_super()
In the Linux kernel, the following vulnerability has been resolved: f2fs: initialize locks earlier in f2fsfillsuper syzbot is reporting lockdep warning at f2fshandleerror 1, for spinlock&sbi-errorlock is called before spinlockinit is called. For safe locking in error handling, move initialization...
DEBIAN-CVE-2025-2849
A vulnerability, which was classified as problematic, was found in UPX up to 5.0.0. Affected is the function PackLinuxElf64::unDTINIT of the file src/plxelf.cpp. The manipulation leads to heap-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been...
The vulnerability of the nfs_fattr_init() function in the fs/nfs/inode.c module of the Linux kernel allows a hacker to cause a service failure.
The vulnerability of the nfsfattrinit function in the fs/nfs/inode.c module of the Linux kernel is related to the use of an uninitialized resource. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the SYM_CODE_START() function in the arch/x86/entry/entry_32.S module of the Linux operating system allows a attacker to compromise the confidentiality and accessibility of protected information.
The vulnerability of the SYMCODESTART function in the arch/x86/entry/entry32.S module of the Linux operating system is related to incorrect initialization of resources. Exploiting this vulnerability could allow an attacker to compromise the confidentiality and accessibility of protected informati...