Lucene search
K

116 matches found

Cvelist
Cvelist
added 2026/05/27 12:18 p.m.43 views

CVE-2026-45953 md/raid5: fix IO hang with degraded array with llbitmap

In the Linux kernel, the following vulnerability has been resolved: md/raid5: fix IO hang with degraded array with llbitmap When llbitmap bit state is still unwritten, any new write should force rcw, as bitmapops-blockssynced is checked in handlestripedirtying. However, later the same check is...

0.00121EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/05/27 12:18 p.m.9 views

CVE-2026-45953

In the Linux kernel, the following vulnerability has been resolved: md/raid5: fix IO hang with degraded array with llbitmap When llbitmap bit state is still unwritten, any new write should force rcw, as bitmapops-blockssynced is checked in handlestripedirtying. However, later the same check is...

5.5CVSS5.7AI score0.00121EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.20 views

PT-2026-43820

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the md/raid5 component where a degraded array using llbitmap can experience an IO hang. When the llbitmap bit state remains unwritten, new writes should force a...

5.5CVSS5.2AI score0.00121EPSS
Exploits0References11
CNNVD
CNNVD
added 2026/05/27 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the lack of a needthisblock check when the llbitmap bitmap status in the md/raid5 driver is not...

5.8AI score0.00121EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/05/27 12:0 a.m.11 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the retryalignedread function in md/raid5, causing a soft lock. This vulnerability may lead to an...

5.8AI score0.00095EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/05/27 12:0 a.m.12 views

CVE-2026-46051

md/raid5: fix soft lockup in retryalignedread...

5.8AI score0.00095EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.11 views

PT-2026-43937

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified openSUSE Tumbleweed versions prior to kernel-devel-7.0.11-1.1 Description An issue exists in the md/raid5 component where the functions r5c recovery analyze meta block and r5l recovery verify data...

7.1CVSS5.9AI score0.00126EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2026/05/27 12:0 a.m.8 views

CVE-2026-46070

md/raid5: validate payload size before accessing journal metadata...

7.1CVSS5.8AI score0.00126EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.17 views

PT-2026-43918

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 7.0.11-1.1 Description A soft lockup occurs in the retry aligned read function when an overlapped stripe is encountered. The function releases the stripe via raid5 release stripe, placing it on the lockless...

5.5CVSS5.9AI score0.00095EPSS
Exploits0
CNNVD
CNNVD
added 2026/05/27 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the lack of validation of the log metadata payload size in md/raid5 implementations. This...

7.1CVSS5.8AI score0.00126EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/05/27 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2026-46070

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - md/raid5: validate payload size before accessing journal metadata r5crecoveryanalyzemetablock and r5lrecoveryverifydatachecksumformb iterate over payloads in a...

7.1CVSS6AI score0.00126EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.1 views

Astra Linux – Vulnerability in Linux 5.10, Linux

In the Linux kernel, the following vulnerability has been resolved: drivers:md: fix a potential use-after-free bug At line 2884, the statement "raid5releasestripesh;" removes the reference to sh, which may cause sh to be released. However, sh is later used in line 2886, where it appears in the...

7.8CVSS6AI score0.0021EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.9 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-012953)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-012953 advisory. Integer Overflow or Wraparound vulnerability in Linux Linux kernel kernel on Linux, x86, ARM md, raid, raid5 modules allows Forced Integer Overflow. Tenable has...

7.8CVSS7AI score0.0059EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/04/17 12:0 a.m.6 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007220)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007220 advisory. Integer Overflow or Wraparound vulnerability in Linux Linux kernel kernel on Linux, x86, ARM md, raid, raid5 modules allows Forced Integer Overflow. Tenable has...

7.8CVSS6.7AI score0.0059EPSS
Exploits0References3
Redos
Redos
added 2026/04/14 12:0 a.m.7 views

ROS-20260414-73-0031

A vulnerability in the r5llogflushendio function of the drivers/md/raid5-cache.c module of the multi-device RAID and LVM driver of the Linux operating system kernel is related to the race condition when using a shared resource. Exploitation of the vulnerability may allow an intruder to affect...

5.5CVSS5.8AI score0.00145EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/04/08 12:0 a.m.7 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006709)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006709 advisory. Integer Overflow or Wraparound vulnerability in Linux Linux kernel kernel on Linux, x86, ARM md, raid, raid5 modules allows Forced Integer Overflow. Tenable has...

7.8CVSS6.5AI score0.0059EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/01/17 12:25 a.m.5 views

SUSE CVE-2025-71135

In the Linux kernel, the following vulnerability has been resolved: md/raid5: fix possible null-pointer dereferences in raid5storegroupthreadcnt The variable mddev-private is first assigned to conf and then checked: conf = mddev-private; if !conf ... If conf is NULL, then mddev-private is also...

5.5CVSS6.6AI score0.0015EPSS
Exploits0References20
UbuntuCve
UbuntuCve
added 2026/01/14 3:16 p.m.4 views

CVE-2025-71135

In the Linux kernel, the following vulnerability has been resolved: md/raid5: fix possible null-pointer dereferences in raid5storegroupthreadcnt The variable mddev-private is first assigned to conf and then checked: conf = mddev-private; if !conf ... If conf is NULL, then mddev-private is also...

5.5CVSS5.9AI score0.0015EPSS
Exploits0References23
Cvelist
Cvelist
added 2026/01/14 3:7 p.m.22 views

CVE-2025-71135 md/raid5: fix possible null-pointer dereferences in raid5_store_group_thread_cnt()

In the Linux kernel, the following vulnerability has been resolved: md/raid5: fix possible null-pointer dereferences in raid5storegroupthreadcnt The variable mddev-private is first assigned to conf and then checked: conf = mddev-private; if !conf ... If conf is NULL, then mddev-private is also...

0.0015EPSS
Exploits0References3
CVE
CVE
added 2026/01/14 3:7 p.m.19 views

CVE-2025-71135

CVE-2025-71135 (Linux kernel md/raid5): The issue is a possible NULL pointer dereference in raid5_store_group_thread_cnt() when mddev->private (conf) is NULL. The fix prevents using conf by returning early/unlocking before raid5_quiesce() if conf is NULL, as described in the Astra Linux and re...

5.5CVSS6.2AI score0.0015EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder