Lucene search
K

716 matches found

Positive Technologies
Positive Technologies
added 2024/07/30 12:0 a.m.4 views

PT-2024-30719 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the Linux kernel, specifically with the fsl qmc hdlc module. The carrier lock spinlock protects the carrier detection, but while it is held, framer get status i...

7.5CVSS5.2AI score0.00141EPSS
Exploits0References17
CVE
CVE
added 2024/07/29 3:4 p.m.153 views

CVE-2024-41080

CVE-2024-41080 concerns the Linux kernel and describes a deadlock risk in io_uring when locking order is not respected in io_register_iowq_max_workers. The root cause is that io_put_sq_data() can be called while uring_lock is held, risking deadlock with sqd->lock. The documented fix releases u...

5.5CVSS6.5AI score0.00206EPSS
Exploits0References8Affected Software1
SUSE CVE
SUSE CVE
added 2024/07/26 3:11 a.m.6 views

SUSE CVE-2024-41012

In the Linux kernel, the following vulnerability has been resolved: filelock: Remove locks reliably when fcntl/close race is detected When fcntlsetlk races with close, it removes the created lock with dolockfilewait. However, LSMs can allow the first dolockfilewait that created the lock while...

6.3CVSS6.3AI score0.00221EPSS
Exploits0References19
RedhatCVE
RedhatCVE
added 2024/07/23 6:31 p.m.24 views

CVE-2024-41012

In the Linux kernel, the following vulnerability has been resolved: filelock: Remove locks reliably when fcntl/close race is detected When fcntlsetlk races with close, it removes the created lock with dolockfilewait. However, LSMs can allow the first dolockfilewait that created the lock while...

5.5CVSS6.9AI score0.00221EPSS
Exploits0References4
OSV
OSV
added 2024/07/23 8:15 a.m.2 views

DEBIAN-CVE-2024-41012

In the Linux kernel, the following vulnerability has been resolved: filelock: Remove locks reliably when fcntl/close race is detected When fcntlsetlk races with close, it removes the created lock with dolockfilewait. However, LSMs can allow the first dolockfilewait that created the lock while...

6.3CVSS6AI score0.00221EPSS
Exploits0References1
OSV
OSV
added 2024/07/23 8:15 a.m.4 views

UBUNTU-CVE-2024-41012

In the Linux kernel, the following vulnerability has been resolved: filelock: Remove locks reliably when fcntl/close race is detected When fcntlsetlk races with close, it removes the created lock with dolockfilewait. However, LSMs can allow the first dolockfilewait that created the lock while...

6.3CVSS6.3AI score0.00221EPSS
Exploits0References31
CVE
CVE
added 2024/07/23 8:6 a.m.223 views

CVE-2024-41012

CVE-2024-41012 (Linux kernel) describes a filelock race where fcntl_setlk() races with close() and a second path in posix_lock_file() could fail to remove a lock. In certain LSMs this could let a created lock survive a competing removal, enabling use-after-free reads in /proc/locks and potentiall...

6.3CVSS6.9AI score0.00221EPSS
Exploits0References9Affected Software1
Vulnrichment
Vulnrichment
added 2024/07/23 8:6 a.m.34 views

CVE-2024-41012 filelock: Remove locks reliably when fcntl/close race is detected

In the Linux kernel, the following vulnerability has been resolved: filelock: Remove locks reliably when fcntl/close race is detected When fcntlsetlk races with close, it removes the created lock with dolockfilewait. However, LSMs can allow the first dolockfilewait that created the lock while...

6.7AI score0.00221EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2024/07/17 3:32 a.m.2 views

SUSE CVE-2024-40980

In the Linux kernel, the following vulnerability has been resolved: dropmonitor: replace spinlock by rawspinlock tracedropcommon is called with preemption disabled, and it acquires a spinlock. This is problematic for RT kernels because spinlocks are sleeping locks in this configuration, which...

4.7CVSS6AI score0.00235EPSS
Exploits0References16
RedHat Linux
RedHat Linux
added 2024/07/15 5:18 a.m.4 views

kernel: can: j1939: prevent deadlock by changing j1939_socks_lock to rwlock

A vulnerability was found in the Linux kernel's Controller Area Network CAN protocol, within the J1939 protocol implementation. This issue occurs due to a potential deadlock caused by a race condition involving three locks: j1939sockslock, activesessionlistlock, and sksessionqueuelock. This issue...

5.5CVSS7.2AI score0.00185EPSS
Exploits0References5
NVD
NVD
added 2024/07/12 1:15 p.m.22 views

CVE-2024-40980

In the Linux kernel, the following vulnerability has been resolved: dropmonitor: replace spinlock by rawspinlock tracedropcommon is called with preemption disabled, and it acquires a spinlock. This is problematic for RT kernels because spinlocks are sleeping locks in this configuration, which...

5.5CVSS0.00235EPSS
Exploits0References11
UbuntuCve
UbuntuCve
added 2024/07/12 1:15 p.m.21 views

CVE-2024-40980

In the Linux kernel, the following vulnerability has been resolved: dropmonitor: replace spinlock by rawspinlock tracedropcommon is called with preemption disabled, and it acquires a spinlock. This is problematic for RT kernels because spinlocks are sleeping locks in this configuration, which...

5.5CVSS6.2AI score0.00235EPSS
Exploits0References28
Cvelist
Cvelist
added 2024/07/12 12:32 p.m.35 views

CVE-2024-40980 drop_monitor: replace spin_lock by raw_spin_lock

In the Linux kernel, the following vulnerability has been resolved: dropmonitor: replace spinlock by rawspinlock tracedropcommon is called with preemption disabled, and it acquires a spinlock. This is problematic for RT kernels because spinlocks are sleeping locks in this configuration, which...

0.00235EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2024/07/12 12:32 p.m.18 views

CVE-2024-40980 drop_monitor: replace spin_lock by raw_spin_lock

In the Linux kernel, the following vulnerability has been resolved: dropmonitor: replace spinlock by rawspinlock tracedropcommon is called with preemption disabled, and it acquires a spinlock. This is problematic for RT kernels because spinlocks are sleeping locks in this configuration, which...

6.7AI score0.00235EPSS
Exploits0References7
CVE
CVE
added 2024/07/12 12:32 p.m.120 views

CVE-2024-40980

CVE-2024-40980 affects the Linux kernel where drop_monitor uses a spin_lock in trace_drop_common() executed with preemption disabled, problematic on RT kernels due to sleeping locks in atomic context. The vulnerability can lead to a crash (sleeping function called from invalid context) and potent...

5.5CVSS7.1AI score0.00235EPSS
Exploits0References11Affected Software1
OSV
OSV
added 2024/07/12 12:32 p.m.16 views

CVE-2024-40980 drop_monitor: replace spin_lock by raw_spin_lock

In the Linux kernel, the following vulnerability has been resolved: dropmonitor: replace spinlock by rawspinlock tracedropcommon is called with preemption disabled, and it acquires a spinlock. This is problematic for RT kernels because spinlocks are sleeping locks in this configuration, which...

5.5CVSS5.5AI score0.00235EPSS
Exploits0References11
Debian CVE
Debian CVE
added 2024/07/12 12:32 p.m.24 views

CVE-2024-40980

In the Linux kernel, the following vulnerability has been resolved: dropmonitor: replace spinlock by rawspinlock tracedropcommon is called with preemption disabled, and it acquires a spinlock. This is problematic for RT kernels because spinlocks are sleeping locks in this configuration, which...

5.5CVSS5.2AI score0.00235EPSS
Exploits0
NVD
NVD
added 2024/07/11 3:15 a.m.16 views

CVE-2024-23485

Improperly Preserved Integrity of Hardware Configuration State During a Power Save/Restore Operation CWE-1304 in the Controller 6000 and 7000 can lead to secured door locks connected via Aperio Communication Hubs to momentarily allow free access. This issue affects: Gallagher Controller 6000 and...

4.6CVSS0.00186EPSS
Exploits0References1
CVE
CVE
added 2024/07/11 2:38 a.m.49 views

CVE-2024-23485

CVE-2024-23485 affects Gallagher Controller 6000 and 7000. Root cause: improper preservation of hardware configuration state during a power save/restore operation, which can cause Aperio-connected door locks to momentarily allow free access. Affected versions span 8.60 and prior; 8.70 prior to vC...

4.6CVSS4.9AI score0.00186EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/11 2:38 a.m.19 views

CVE-2024-23485

Improperly Preserved Integrity of Hardware Configuration State During a Power Save/Restore Operation CWE-1304 in the Controller 6000 and 7000 can lead to secured door locks connected via Aperio Communication Hubs to momentarily allow free access. This issue affects: Gallagher Controller 6000 and...

4.6CVSS0.00186EPSS
Exploits0References1
Rows per page
Query Builder