116 matches found
kernel: md/raid5-cache: fix null-ptr-deref for r5l_flush_stripe_to_raid()
In the Linux kernel, the following vulnerability has been resolved: md/raid5-cache: fix null-ptr-deref for r5lflushstripetoraid r5lflushstripetoraid will check if the list 'flushingios' is empty, and then submit 'flushbio', however, r5llogflushendio is clearing the list first and then clear the...
kernel: md/raid5-cache: fix a deadlock in r5l_exit_log()
A deadlock vulnerability was found in the md RAID5 cache r5l subsystem in the Linux kernel. In r5lexitlog, flushwork is called while holding reconfigmutex, which waits for disablewritebackwork to complete. However, r5cdisablewritebackasync calls waitevent which requires conf-log to be NULL, but...
CLSA-2024-1713791075 Fix of 12 CVEs
CVE-url: https://ubuntu.com/security/CVE-2024-23307 - md/raid5: fix atomicity violation in raid5cachecount CVE-url: https://ubuntu.com/security/CVE-2021-46932 - Input: appletouch - initialize work before device registration CVE-url: https://ubuntu.com/security/CVE-2021-46936 - net: fix...
CLSA-2024-1713790844 Fix of 12 CVEs
CVE-url: https://ubuntu.com/security/CVE-2024-23307 - md/raid5: fix atomicity violation in raid5cachecount CVE-url: https://ubuntu.com/security/CVE-2021-46932 - Input: appletouch - initialize work before device registration CVE-url: https://ubuntu.com/security/CVE-2021-46936 - net: fix...
SUSE CVE-2024-26756
In the Linux kernel, the following vulnerability has been resolved: md: Don't register syncthread for reshape directly Currently, if reshape is interrupted, then reassemble the array will register syncthread directly from pers-run, in this case 'MDRECOVERYRUNNING' is set directly, however, there ...
DEBIAN-CVE-2024-26756
In the Linux kernel, the following vulnerability has been resolved: md: Don't register syncthread for reshape directly Currently, if reshape is interrupted, then reassemble the array will register syncthread directly from pers-run, in this case 'MDRECOVERYRUNNING' is set directly, however, there ...
AZL-58753 CVE-2024-26756 affecting package kernel 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: md: Don't register syncthread for reshape directly Currently, if reshape is interrupted, then reassemble the array will register syncthread directly from pers-run, in this case 'MDRECOVERYRUNNING' is set directly, however, there ...
UBUNTU-CVE-2024-26756
In the Linux kernel, the following vulnerability has been resolved: md: Don't register syncthread for reshape directly Currently, if reshape is interrupted, then reassemble the array will register syncthread directly from pers-run, in this case 'MDRECOVERYRUNNING' is set directly, however, there ...
PT-2024-14589 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been resolved by reverting a commit that introduced a race condition, potentially causing system hangs. The issue occurred in the md/raid5 modul...
The vulnerability of the raid5_cache_count() function (drivers/md/raid5.c) in the Linux kernel’s RAID driver allows an attacker to compromise the confidentiality, integrity, and accessibility of protected information due to integer overflow.
The vulnerability of the raid5cachecount function drivers/md/raid5.c in the Linux kernel-based RAID driver is related to a numerical overflow vulnerability. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...
CVE-2024-23307
Integer Overflow or Wraparound vulnerability in Linux Linux kernel kernel on Linux, x86, ARM md, raid, raid5 modules allows Forced Integer Overflow...
DEBIAN-CVE-2024-23307
Integer Overflow or Wraparound vulnerability in Linux Linux kernel kernel on Linux, x86, ARM md, raid, raid5 modules allows Forced Integer Overflow...
kernel: drivers:md:fix a potential use-after-free bug
A use-after-free bug exists in the linux kernel such that in the line "raid5releasestripesh;" drops the reference to sh and may cause sh to be released. However, sh is subsequently used in lines "if sh-batchhead && sh != sh-batchhead" resulting in a minor application crash...
kernel: md/raid5: Remove unnecessary bio_put() in raid5_read_one_chunk()
A double-free vulnerability was found in the Linux kernel's MD RAID5 driver. In raid5readonechunk, when encountering badblocks during chunk-sized reads, an unnecessary bioput is called. Since the bio is also freed by the common I/O completion path, this results in a double-free condition that can...
kernel: drivers:md:fix a potential use-after-free bug
A use-after-free bug exists in the linux kernel such that in the line "raid5releasestripesh;" drops the reference to sh and may cause sh to be released. However, sh is subsequently used in lines "if sh-batchhead && sh != sh-batchhead" resulting in a minor application crash...
kernel: dm raid: fix address sanitizer warning in raid_status
In the Linux kernel, the following vulnerability has been resolved: dm raid: fix address sanitizer warning in raidstatus There is this warning when using a kernel with the address sanitizer and running this testsuite: https://gitlab.com/cki-project/kernel-tests/-/tree/main/storage/swraid/scsiraid...