Lucene search
K

61 matches found

Vulnrichment
Vulnrichment
added 2025/03/27 4:43 p.m.6 views

CVE-2023-52983 block, bfq: fix uaf for bfqq in bic_set_bfqq()

In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix uaf for bfqq in bicsetbfqq After commit 64dc8c732f5c "block, bfq: fix possible uaf for 'bfqq-bic'", bic-bfqq will be accessed in bicsetbfqq, however, in some context bic-bfqq will be freed, and bicsetbfqq is calle...

6.6AI score0.0026EPSS
Exploits0References4
OSV
OSV
added 2025/03/27 4:43 p.m.7 views

CVE-2023-52983 block, bfq: fix uaf for bfqq in bic_set_bfqq()

In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix uaf for bfqq in bicsetbfqq After commit 64dc8c732f5c "block, bfq: fix possible uaf for 'bfqq-bic'", bic-bfqq will be accessed in bicsetbfqq, however, in some context bic-bfqq will be freed, and bicsetbfqq is calle...

7.8CVSS5.3AI score0.0026EPSS
Exploits0References7
Microsoft CVE
Microsoft CVE
added 2025/03/14 7:0 a.m.4 views

block, bfq: fix waker_bfqq UAF after bfq_split_bfqq()

...

7.8CVSS7.6AI score0.00206EPSS
Exploits0
OSV
OSV
added 2025/01/19 11:15 a.m.3 views

DEBIAN-CVE-2025-21631

In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix wakerbfqq UAF after bfqsplitbfqq Our syzkaller report a following UAF for v6.6: BUG: KASAN: slab-use-after-free in bfqinitrq+0x175d/0x17a0 block/bfq-iosched.c:6958 Read of size 8 at addr ffff8881b57147d8 by task...

7.8CVSS5.8AI score0.00206EPSS
Exploits0References1
OSV
OSV
added 2025/01/19 11:15 a.m.7 views

UBUNTU-CVE-2025-21631

In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix wakerbfqq UAF after bfqsplitbfqq Our syzkaller report a following UAF for v6.6: BUG: KASAN: slab-use-after-free in bfqinitrq+0x175d/0x17a0 block/bfq-iosched.c:6958 Read of size 8 at addr ffff8881b57147d8 by task...

7.8CVSS6.3AI score0.00206EPSS
Exploits0References34
OSV
OSV
added 2024/12/27 2:15 p.m.2 views

DEBIAN-CVE-2024-53182

In the Linux kernel, the following vulnerability has been resolved: Revert "block, bfq: merge bfqreleaseprocessref into bfqputcooperator" This reverts commit bc3b1e9e7c50e1de0f573eea3871db61dd4787de. The bic is associated with syncbfqq, and bfqreleaseprocessref cannot be put into bfqputcooperator...

7.8CVSS5.7AI score0.00219EPSS
Exploits0References1
NVD
NVD
added 2024/12/27 2:15 p.m.21 views

CVE-2024-53166

In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix bfqq uaf in bfqlimitdepth Set new allocated bfqq to bic or remove freed bfqq from bic are both protected by bfqd-lock, however bfqlimitdepth is deferencing bfqq from bic without the lock, this can lead to UAF if t...

7.8CVSS0.00238EPSS
Exploits0References7
OSV
OSV
added 2024/12/27 2:15 p.m.4 views

UBUNTU-CVE-2024-53182

In the Linux kernel, the following vulnerability has been resolved: Revert "block, bfq: merge bfqreleaseprocessref into bfqputcooperator" This reverts commit bc3b1e9e7c50e1de0f573eea3871db61dd4787de. The bic is associated with syncbfqq, and bfqreleaseprocessref cannot be put into bfqputcooperator...

7.8CVSS6.5AI score0.00219EPSS
Exploits0References5
OSV
OSV
added 2024/12/27 1:49 p.m.10 views

CVE-2024-53166 block, bfq: fix bfqq uaf in bfq_limit_depth()

In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix bfqq uaf in bfqlimitdepth Set new allocated bfqq to bic or remove freed bfqq from bic are both protected by bfqd-lock, however bfqlimitdepth is deferencing bfqq from bic without the lock, this can lead to UAF if t...

7.8CVSS6.5AI score0.00238EPSS
Exploits0References10
Microsoft CVE
Microsoft CVE
added 2024/11/09 8:0 a.m.15 views

block bfq: fix possible UAF for bfqq->bic with merge chain

...

5.5CVSS6.8AI score0.00236EPSS
Exploits0
OSV
OSV
added 2024/10/21 1:15 p.m.11 views

AZL-50850 CVE-2024-49854 affecting package kernel for versions less than 6.6.56.1-5

In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix uaf for accessing wakerbfqq after splitting After commit 42c306ed7233 "block, bfq: don't break merge chain in bfqsplitbfqq", if the current procress is the last holder of bfqq, the bfqq can be freed after...

7.8CVSS6.5AI score0.00217EPSS
Exploits0References1
NVD
NVD
added 2024/10/21 12:15 p.m.17 views

CVE-2024-47706

In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix possible UAF for bfqq-bic with merge chain 1 initial state, three tasks: Process 1 Process 2 Process 3 BIC1 BIC2 BIC3 | Λ | Λ | Λ | | | | | | V | V | V | bfqq1 bfqq2 bfqq3 process ref: 1 1 1 2 bfqq1 merged to bfqq...

5.5CVSS0.00236EPSS
Exploits0References13
OSV
OSV
added 2024/10/21 12:15 p.m.7 views

DEBIAN-CVE-2024-47706

In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix possible UAF for bfqq-bic with merge chain 1 initial state, three tasks: Process 1 Process 2 Process 3 BIC1 BIC2 BIC3 | Λ | Λ | Λ | | | | | | V | V | V | bfqq1 bfqq2 bfqq3 process ref: 1 1 1 2 bfqq1 merged to bfqq...

5.5CVSS5.8AI score0.00236EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2024/10/21 11:53 a.m.13 views

CVE-2024-47706

In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix possible UAF for bfqq-bic with merge chain 1 initial state, three tasks: Process 1 Process 2 Process 3 BIC1 BIC2 BIC3 | Λ | Λ | Λ | | | | | | V | V | V | bfqq1 bfqq2 bfqq3 process ref: 1 1 1 2 bfqq1 merged to bfqq...

5.5CVSS5.8AI score0.00236EPSS
Exploits0
CVE
CVE
added 2024/10/21 11:53 a.m.170 views

CVE-2024-47706

Markdown: CVE-2024-47706 is tied to a Linux kernel issue in the bfq/I/O scheduler where an UAF could occur when bfqq structures are merged across BICs (bfqq1 → bfqq2 → bfqq3). The connected Astra Linux bulletin reproduces the scenario: on insert, a bfqq handle is obtained from the merge chain, bu...

5.5CVSS6.9AI score0.00236EPSS
Exploits0References13Affected Software1
Cvelist
Cvelist
added 2024/10/21 11:53 a.m.21 views

CVE-2024-47706 block, bfq: fix possible UAF for bfqq->bic with merge chain

In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix possible UAF for bfqq-bic with merge chain 1 initial state, three tasks: Process 1 Process 2 Process 3 BIC1 BIC2 BIC3 | Λ | Λ | Λ | | | | | | V | V | V | bfqq1 bfqq2 bfqq3 process ref: 1 1 1 2 bfqq1 merged to bfqq...

0.00236EPSS
Exploits0References9
CNNVD
CNNVD
added 2024/10/21 12:0 a.m.4 views

Linux kernel 资源管理错误漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a post-release reuse issue that may occur when the bfq module in the block layer accesses wakerbfqq after...

7.8CVSS6.6AI score0.00217EPSS
Exploits0References9
CNNVD
CNNVD
added 2024/10/21 12:0 a.m.4 views

Linux kernel 资源管理错误漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A resource management error vulnerability exists in Linux kernel that stems from a potential post-release reuse issue with the bfqq-bic merge chain in the block, bfq subsystem...

5.5CVSS6.7AI score0.00236EPSS
Exploits0References12
OSV
OSV
added 2023/02/13 5:35 p.m.15 views

GSD-2023-1002043 block, bfq: fix uaf for bfqq in bic_set_bfqq()

block, bfq: fix uaf for bfqq in bicsetbfqq This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.93 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2023/02/13 5:22 p.m.15 views

GSD-2023-1001882 block, bfq: fix uaf for bfqq in bic_set_bfqq()

block, bfq: fix uaf for bfqq in bicsetbfqq This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.11 by commit...

7.2AI score
Exploits0
Rows per page
Query Builder