DEBIAN-CVE-2023-52825

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix a race condition of vram buffer unref in svm code prange-svmbo unref can happen in both mmu callback and a callback after migrate to system ram. Both are async call in different tasks. Sync svmbo unref operation t...

AZL-67548 CVE-2023-52700 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: tipc: fix kernel warning when sending SYN message When sending a SYN message, this kernel stack trace is observed: ... 13.396352 RIP: 0010:copyfromiter+0xb4/0x550 ... 13.398494 Call Trace: 13.398630 13.398630 ? allocskb+0xed/0x1a...

UBUNTU-CVE-2023-52825

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix a race condition of vram buffer unref in svm code prange-svmbo unref can happen in both mmu callback and a callback after migrate to system ram. Both are async call in different tasks. Sync svmbo unref operation t...

DEBIAN-CVE-2021-47323

In the Linux kernel, the following vulnerability has been resolved: watchdog: sc520wdt: Fix possible use-after-free in wdtturnoff This module's remove path calls deltimer. However, that function does not wait until the timer handler finishes. This means that the timer handler may still be running...

DEBIAN-CVE-2021-47324

In the Linux kernel, the following vulnerability has been resolved: watchdog: Fix possible use-after-free in wdtstartup This module's remove path calls deltimer. However, that function does not wait until the timer handler finishes. This means that the timer handler may still be running after the...

UBUNTU-CVE-2021-47355

In the Linux kernel, the following vulnerability has been resolved: atm: nicstar: Fix possible use-after-free in nicstarcleanup This module's remove path calls deltimer. However, that function does not wait until the timer handler finishes. This means that the timer handler may still be running...

UBUNTU-CVE-2021-47327

In the Linux kernel, the following vulnerability has been resolved: iommu/arm-smmu: Fix armsmmudevice refcount leak when armsmmurpmget fails armsmmurpmget invokes pmruntimegetsync, which increases the refcount of the "smmu" even though the return value is less than 0. The reference counting issue...

UBUNTU-CVE-2021-47278

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: pcigeneric: Fix possible use-after-free in mhipciremove This driver's remove path calls deltimer. However, that function does not wait until the timer handler finishes. This means that the timer handler may still be...

UBUNTU-CVE-2021-47324

In the Linux kernel, the following vulnerability has been resolved: watchdog: Fix possible use-after-free in wdtstartup This module's remove path calls deltimer. However, that function does not wait until the timer handler finishes. This means that the timer handler may still be running after the...

CVE-2021-47414

Summary: CVE-2021-47414 concerns a Linux kernel vulnerability on RISCV (SiFive HiFive Unmatched) where ftrace patching may trigger an illegal instruction due to icache/dcache synchronization across CPUs. The root cause is that icache of the current CPU is not flushed before other CPUs are asked t...

CVE-2021-47318 arch_topology: Avoid use-after-free for scale_freq_data

In the Linux kernel, the following vulnerability has been resolved: archtopology: Avoid use-after-free for scalefreqdata Currently topologyscalefreqtick which gets called from schedulertick may end up using a pointer to "struct scalefreqdata", which was previously cleared by...

CVE-2021-47230

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Immediately reset the MMU context when the SMM flag is cleared Immediately reset the MMU context when the vCPU's SMM flag is cleared so that the SMM flag in the MMU role is always synchronized with the vCPU's flag. If R...

SUSE CVE-2024-35843

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Use device rbtree in iopf reporting path The existing I/O page fault handler currently locates the PCI device by calling pcigetdomainbusandslot. This function searches the list of all PCI devices until the desired...

SUSE CVE-2024-35910

In the Linux kernel, the following vulnerability has been resolved: tcp: properly terminate timers for kernel sockets We had various syzbot reports about tcp timers firing after the corresponding netns has been dismantled. Fortunately Josef Bacik could trigger the issue more often, and could test...

SUSE CVE-2024-35998

In the Linux kernel, the following vulnerability has been resolved: smb3: fix lock ordering potential deadlock in cifssyncmidresult Coverity spotted that the cifssyncmidresult function could deadlock "Thread deadlock ORDERREVERSAL lockorder: Calling spinlock acquires lock TCPServerInfo.srvlock...

CVE-2024-35991

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Convert spinlock to mutex to lock evl workqueue drainworkqueue cannot be called safely in a spinlocked context due to possible task rescheduling. In the multi-task scenario, calling queuework while drainworkqueue...

CVE-2024-35991

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Convert spinlock to mutex to lock evl workqueue drainworkqueue cannot be called safely in a spinlocked context due to possible task rescheduling. In the multi-task scenario, calling queuework while drainworkqueue...

CVE-2024-35991

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Convert spinlock to mutex to lock evl workqueue drainworkqueue cannot be called safely in a spinlocked context due to possible task rescheduling. In the multi-task scenario, calling queuework while drainworkqueue...

CVE-2024-35991 dmaengine: idxd: Convert spinlock to mutex to lock evl workqueue

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Convert spinlock to mutex to lock evl workqueue drainworkqueue cannot be called safely in a spinlocked context due to possible task rescheduling. In the multi-task scenario, calling queuework while drainworkqueue...

CVE-2024-35991 dmaengine: idxd: Convert spinlock to mutex to lock evl workqueue

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Convert spinlock to mutex to lock evl workqueue drainworkqueue cannot be called safely in a spinlocked context due to possible task rescheduling. In the multi-task scenario, calling queuework while drainworkqueue...