Lucene search
K

8 matches found

OSV
OSV
added 2026/06/22 11:10 a.m.2 views

SUSE-SU-2026:2482-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP7 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2025-38549: efivarfs: Fix memory leak of efivarfsfsinfo in fscontext error paths bsc1248235. - CVE-2025-68324: scsi: imm: Fix use-after-free bug caused by unfinished...

9.8CVSS7.3AI score0.93235EPSS
Exploits48References222
SUSE CVE
SUSE CVE
added 2026/04/23 1:26 a.m.8 views

SUSE CVE-2026-31453

In the Linux kernel, the following vulnerability has been resolved: xfs: avoid dereferencing log items after push callbacks After xfsaildpushitem calls ioppush, the log item may have been freed if the AIL lock was dropped during the push. Background inode reclaim or the dquot shrinker can free th...

5.5CVSS5.7AI score0.00129EPSS
Exploits0References16
SUSE CVE
SUSE CVE
added 2026/04/23 1:26 a.m.6 views

SUSE CVE-2026-31454

In the Linux kernel, the following vulnerability has been resolved: xfs: save ailp before dropping the AIL lock in push callbacks In xfsinodeitempush and xfsqmdquotlogitempush, the AIL lock is dropped to perform buffer IO. Once the cluster buffer no longer protects the log item from reclaim, the...

5.5CVSS5.7AI score0.00126EPSS
Exploits0References16
EUVD
EUVD
added 2026/04/22 3:31 p.m.5 views

EUVD-2026-24793

In the Linux kernel, the following vulnerability has been resolved: xfs: save ailp before dropping the AIL lock in push callbacks In xfsinodeitempush and xfsqmdquotlogitempush, the AIL lock is dropped to perform buffer IO. Once the cluster buffer no longer protects the log item from reclaim, the...

5.7AI score0.00126EPSS
Exploits0References9
NVD
NVD
added 2026/04/22 2:16 p.m.5 views

CVE-2026-31453

In the Linux kernel, the following vulnerability has been resolved: xfs: avoid dereferencing log items after push callbacks After xfsaildpushitem calls ioppush, the log item may have been freed if the AIL lock was dropped during the push. Background inode reclaim or the dquot shrinker can free th...

7.8CVSS0.00129EPSS
Exploits0References6
NVD
NVD
added 2026/04/22 2:16 p.m.7 views

CVE-2026-31454

In the Linux kernel, the following vulnerability has been resolved: xfs: save ailp before dropping the AIL lock in push callbacks In xfsinodeitempush and xfsqmdquotlogitempush, the AIL lock is dropped to perform buffer IO. Once the cluster buffer no longer protects the log item from reclaim, the...

7.8CVSS0.00126EPSS
Exploits0References8
CVE
CVE
added 2026/04/22 1:53 p.m.23 views

CVE-2026-31454

Summary: CVE-2026-31454 affects the Linux kernel's XFS code. In xfs_inode_item_push() and xfs_qm_dquot_logitem_push(), the AIL lock is dropped to perform buffer IO, which can allow a log item to be freed during reclaim. A subsequent spin_lock() may dereference lip->li_ailp, causing a use-after...

7.8CVSS5.7AI score0.00126EPSS
Exploits0References8Affected Software1
CVE
CVE
added 2026/04/22 1:53 p.m.18 views

CVE-2026-31453

The CVE-2026-31453 issue affects the Linux kernel XFS path. The root cause is use-after-free-like behavior: after xfsaild_push_item() calls iop_push(), the log item could be freed if the AIL lock is dropped, allowing a freed log item to be dereferenced by tracepoints in the switch that follow. Th...

7.8CVSS5.7AI score0.00129EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder