Lucene search
K

116 matches found

RedHat Linux
RedHat Linux
added 2024/05/22 10:3 a.m.5 views

kernel: md/raid5-cache: fix null-ptr-deref for r5l_flush_stripe_to_raid()

In the Linux kernel, the following vulnerability has been resolved: md/raid5-cache: fix null-ptr-deref for r5lflushstripetoraid r5lflushstripetoraid will check if the list 'flushingios' is empty, and then submit 'flushbio', however, r5llogflushendio is clearing the list first and then clear the...

5.5CVSS6.8AI score0.00145EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/04/30 9:57 a.m.4 views

kernel: md/raid5-cache: fix a deadlock in r5l_exit_log()

A deadlock vulnerability was found in the md RAID5 cache r5l subsystem in the Linux kernel. In r5lexitlog, flushwork is called while holding reconfigmutex, which waits for disablewritebackwork to complete. However, r5cdisablewritebackasync calls waitevent which requires conf-log to be NULL, but...

7.2AI score0.00191EPSS
Exploits0References5
OSV
OSV
added 2024/04/22 1:4 p.m.4 views

CLSA-2024-1713791075 Fix of 12 CVEs

CVE-url: https://ubuntu.com/security/CVE-2024-23307 - md/raid5: fix atomicity violation in raid5cachecount CVE-url: https://ubuntu.com/security/CVE-2021-46932 - Input: appletouch - initialize work before device registration CVE-url: https://ubuntu.com/security/CVE-2021-46936 - net: fix...

7.8CVSS6.9AI score0.0094EPSS
Exploits0References1
OSV
OSV
added 2024/04/22 1:0 p.m.7 views

CLSA-2024-1713790844 Fix of 12 CVEs

CVE-url: https://ubuntu.com/security/CVE-2024-23307 - md/raid5: fix atomicity violation in raid5cachecount CVE-url: https://ubuntu.com/security/CVE-2021-46932 - Input: appletouch - initialize work before device registration CVE-url: https://ubuntu.com/security/CVE-2021-46936 - net: fix...

7.8CVSS6.9AI score0.0094EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2024/04/10 2:16 a.m.5 views

SUSE CVE-2024-26756

In the Linux kernel, the following vulnerability has been resolved: md: Don't register syncthread for reshape directly Currently, if reshape is interrupted, then reassemble the array will register syncthread directly from pers-run, in this case 'MDRECOVERYRUNNING' is set directly, however, there ...

5.5CVSS6.8AI score0.00209EPSS
Exploits0References5
OSV
OSV
added 2024/04/03 5:15 p.m.1 views

DEBIAN-CVE-2024-26756

In the Linux kernel, the following vulnerability has been resolved: md: Don't register syncthread for reshape directly Currently, if reshape is interrupted, then reassemble the array will register syncthread directly from pers-run, in this case 'MDRECOVERYRUNNING' is set directly, however, there ...

5.5CVSS4.9AI score0.00209EPSS
Exploits0References1
OSV
OSV
added 2024/04/03 5:15 p.m.13 views

AZL-58753 CVE-2024-26756 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: md: Don't register syncthread for reshape directly Currently, if reshape is interrupted, then reassemble the array will register syncthread directly from pers-run, in this case 'MDRECOVERYRUNNING' is set directly, however, there ...

5.5CVSS5.7AI score0.00209EPSS
Exploits0References1
OSV
OSV
added 2024/04/03 5:15 p.m.3 views

UBUNTU-CVE-2024-26756

In the Linux kernel, the following vulnerability has been resolved: md: Don't register syncthread for reshape directly Currently, if reshape is interrupted, then reassemble the array will register syncthread directly from pers-run, in this case 'MDRECOVERYRUNNING' is set directly, however, there ...

5.5CVSS5.7AI score0.00209EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2024/02/20 12:0 a.m.4 views

PT-2024-14589 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been resolved by reverting a commit that introduced a race condition, potentially causing system hangs. The issue occurred in the md/raid5 modul...

5.8AI score
Exploits0References17
BDU FSTEC
BDU FSTEC
added 2024/02/02 12:0 a.m.4 views

The vulnerability of the raid5_cache_count() function (drivers/md/raid5.c) in the Linux kernel’s RAID driver allows an attacker to compromise the confidentiality, integrity, and accessibility of protected information due to integer overflow.

The vulnerability of the raid5cachecount function drivers/md/raid5.c in the Linux kernel-based RAID driver is related to a numerical overflow vulnerability. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...

7.8CVSS6.5AI score0.0059EPSS
Exploits0References48Affected Software5
ATTACKERKB
ATTACKERKB
added 2024/01/25 7:15 a.m.6 views

CVE-2024-23307

Integer Overflow or Wraparound vulnerability in Linux Linux kernel kernel on Linux, x86, ARM md, raid, raid5 modules allows Forced Integer Overflow...

7.8CVSS5.8AI score0.0059EPSS
Exploits0References2
OSV
OSV
added 2024/01/25 7:15 a.m.2 views

DEBIAN-CVE-2024-23307

Integer Overflow or Wraparound vulnerability in Linux Linux kernel kernel on Linux, x86, ARM md, raid, raid5 modules allows Forced Integer Overflow...

7.8CVSS6.2AI score0.0059EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2023/05/16 8:56 a.m.3 views

kernel: drivers:md:fix a potential use-after-free bug

A use-after-free bug exists in the linux kernel such that in the line "raid5releasestripesh;" drops the reference to sh and may cause sh to be released. However, sh is subsequently used in lines "if sh-batchhead && sh != sh-batchhead" resulting in a minor application crash...

7.8CVSS6.6AI score0.0021EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/05/09 10:4 a.m.7 views

kernel: md/raid5: Remove unnecessary bio_put() in raid5_read_one_chunk()

A double-free vulnerability was found in the Linux kernel's MD RAID5 driver. In raid5readonechunk, when encountering badblocks during chunk-sized reads, an unnecessary bioput is called. Since the bio is also freed by the common I/O completion path, this results in a double-free condition that can...

5.8AI score0.002EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/05/09 10:4 a.m.10 views

kernel: drivers:md:fix a potential use-after-free bug

A use-after-free bug exists in the linux kernel such that in the line "raid5releasestripesh;" drops the reference to sh and may cause sh to be released. However, sh is subsequently used in lines "if sh-batchhead && sh != sh-batchhead" resulting in a minor application crash...

7.8CVSS6.6AI score0.0021EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/11/08 9:32 a.m.10 views

kernel: dm raid: fix address sanitizer warning in raid_status

In the Linux kernel, the following vulnerability has been resolved: dm raid: fix address sanitizer warning in raidstatus There is this warning when using a kernel with the address sanitizer and running this testsuite: https://gitlab.com/cki-project/kernel-tests/-/tree/main/storage/swraid/scsiraid...

7.1CVSS6.3AI score0.00164EPSS
Exploits0References5
Rows per page
Query Builder