5 matches found
CVE-2025-40342
In the Linux kernel, the following vulnerability has been resolved: nvme-fc: use lock accessing portstate and rport state nvmefcunregisterremote removes the remote port on a lport object at any point in time when there is no active association. This races with with the reconnect logic, because...
kernel: sch_hfsc: make hfsc_qlen_notify() idempotent
In the Linux kernel, the following vulnerability has been resolved: schhfsc: make hfscqlennotify idempotent hfscqlennotify is not idempotent either and not friendly to its callers, like fqcodeldequeue. Let's make it idempotent to ease qdisctreereducebacklog callers' life: 1. updatevf decreases...
Linux Distros Unpatched Vulnerability : CVE-2025-21853
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: bpf: avoid holding freezemutex during mmap operation We use map-freezemutex to prevent races...
Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12
In the Linux kernel, the following vulnerability has been resolved: BPF: Avoid holding the freezemutex during an mmap operation. We use the freezemutex to prevent race conditions between the mapfreeze function and memory mapping operations with writable permissions. The way we currently handle th...
CVE-2025-21853
CVE-2025-21853 affects the Linux kernel BPF mmap path. The issue arises from holding map->freeze_mutex for the entire duration of mmap mm/VMA manipulations when ensuring writeable map contents, which could deadlock. The fixed approach holds freeze_mutex only during writeability checks, increme...