82 matches found
scsi: ufs: pltfrm: Dellocate HBA during ufshcd_pltfrm_remove()
...
CVE-2025-5187 vulnerabilities
Vulnerabilities for packages: emissary, k8ssandra-client, rancher-webhook, mesosphere-vsphere-csi, kubernetes, rancher-system-agent, rancher-agent, docker-machine-driver-harvester, kapp, kubernetes-dns-node-cache, rancher, argo-rollouts, vcluster, ip-masq-agent, kubernetes-csi-driver-hostpath,...
SUSE CVE-2025-38332
In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Use memcpy for BIOS version The strlcat with FORTIFY support is triggering a panic because it thinks the target buffer will overflow although the correct target buffer size is passed in. Anyway, instead of memset with...
UBUNTU-CVE-2025-4088
A security vulnerability in Thunderbird allowed malicious sites to use redirects to send credentialed requests to arbitrary endpoints on any site that had invoked the Storage Access API. This enabled potential Cross-Site Request Forgery attacks across origins. This vulnerability was fixed in...
Microsoft Windows Runtime Broker ClipboardBroker Privilege Escalation
The Runtime Broker’s Clipboard Broker allows any low IL/AppContainer such as Edge or IE EPM to get access to an OOP IStorage object through the ClipboardBroker leading to a sandbox escape...
Buffalo LS520D 信息泄露漏洞
The Buffalo LS520D is a network attached storage device from Buffalo Japan that efficiently handles multi-CPU access to store and share data. A security vulnerability exists in the Buffalo LS520D version 4.53 that originates from an unauthenticated user being able to access the NAS web UI and rea...
SUSE CVE-2022-49332
In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Address NULL pointer dereference after stargettorport Calls to stargettorport may return NULL. Add check for NULL rport before dereference...
DEBIAN-CVE-2022-49160
In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix crash during module load unload test During purex packet handling the driver was incorrectly freeing a pre-allocated structure. Fix this by skipping that entry. System crashed with the following stack during a...
The vulnerabilities of vSphere CPI (Cloud Provider Interface) and vSphere CSI (Container Storage Interface), which are software platforms for deploying containers in a production environment, allow attackers to exploit them to disclose sensitive information.
The vulnerability of vSphere CPI Cloud Provider Interface and vSphere CSI Container Storage Interface, two components of the software platform for container deployment in a production environment, is related to insufficient protection of registration data. Exploiting this vulnerability can allow ...
The vulnerability of the Container Storage Interface (CSI) component in the Nomad application orchestrator allows a attacker to influence the integrity of the protected information.
The vulnerability of the Container Storage Interface CSI component in the Nomad application orchestrator is related to improper authentication. Exploiting this vulnerability allows an attacker to influence the integrity of the protected information...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a post-release reuse issue during uninstallation in the scsi:qla2xxx module...
PT-2025-3598
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved, related to the scsi: ufs: pltfrm module. The issue is addressed by dellocating the HBA during ufshcd pltfrm remove, ensuring the sc...
CVE-2022-45157
A vulnerability has been identified in the way that Rancher stores vSphere's CPI Cloud Provider Interface and CSI Container Storage Interface credentials used to deploy clusters through the vSphere cloud provider. This issue leads to the vSphere CPI and CSI passwords being stored in a plaintext...
SUSE CVE-2024-10975
Nomad Community and Nomad Enterprise "Nomad" volume specification is vulnerable to arbitrary cross-namespace volume creation through unauthorized Container Storage Interface CSI volume writes. This vulnerability, identified as CVE-2024-10975, is fixed in Nomad Community Edition 1.9.2 and Nomad...
The vulnerability of the SCSI component in the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the Linux operating system’s SCSI kernel component is related to errors in reading beyond the boundary in the resreadcap16 function. Exploiting this vulnerability can allow an attacker to cause a service failure...
HCL Nomad 安全漏洞
HCL Nomad is an application for using and managing the Domino application development platform in mobile devices from HCL Corporation, USA. A security vulnerability exists in HCL Nomad that stems from vulnerability to arbitrary cross-namespace volume creation via unauthorized Container Storage...
SUSE CVE-2022-45157
A vulnerability has been identified in the way that Rancher stores vSphere's CPI Cloud Provider Interface and CSI Container Storage Interface credentials used to deploy clusters through the vSphere cloud provider. This issue leads to the vSphere CPI and CSI passwords being stored in a plaintext...
UBUNTU-CVE-2024-49891
In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Validate hdwq pointers before dereferencing in reset/errata paths When the HBA is undergoing a reset or is handling an errata event, NULL ptr dereference crashes may occur in routines such as lpfcsliflushiorings,...
USN-7020-4 linux-aws-6.8, linux-oracle-6.8 vulnerabilities
Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPU drivers; - Network drivers; - SCSI drivers; - F2FS file system; - BPF subsystem; - IPv4 networking;...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from failing to check if a SCSI host has been added before removing it...