4 matches found
CVE-2026-34368 AVideo Vulnerable to Wallet Balance Double-Spend via TOCTOU Race Condition in transferBalance
WWBN AVideo is an open source video platform. In versions up to and including 26.0, the transferBalance method in plugin/YPTWallet/YPTWallet.php contains a Time-of-Check-Time-of-Use TOCTOU race condition. The method reads the sender's wallet balance, checks sufficiency in PHP, then writes the new...
CVE-2023-54023
The CVE-2023-54023 entry concerns a Linux kernel bug in Btrfs where a race between balance and cancel/pause could trigger a kernel panic. The provided docs describe a fix that ensures proper cleanup of balance state when balance completes, even if a pause/cancel was requested, preventing the ASSE...
Linux Distros Unpatched Vulnerability : CVE-2023-54002
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - btrfs: fix assertion of exclop condition when starting balance Balance as exclusive state is compatible with paused balance and device add, which makes some...
PT-2025-52959
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the btrfs subsystem related to the assertion of exclusive operation conditions during balance operations. Specifically, the issue arises when...