Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: blk-iocost: Use spinlockirqsave in adjustinuseandcalccost. The adjustinuseandcalccost function uses spinlockirq, and IRQ will be enabled when unlocking. A DEADLOCK may occur if other locks are held and IRQs are disabled before...

Astra Linux - уязвимость в linux-5.15

In the Linux kernel, the following vulnerability has been resolved: block: fix rq-qos breakage from skipping rqqosdonebio a647a524a467 "block: don't call rqqosops-donebio if the bio isn't tracked" made bioendio skip rqqosdonebio if BIOTRACKED is not set. While this fixed a potential oops, it also...

SUSE CVE-2023-53783

In the Linux kernel, the following vulnerability has been resolved: blk-iocost: fix divide by 0 error in calclcoefs echo max of u64 to cost.model can cause divide by 0 error. echo 8:0 rbps=18446744073709551615 /sys/fs/cgroup/io.cost.model divide error: 0000 1 PREEMPT SMP RIP:...

EUVD-2023-60123

In the Linux kernel, the following vulnerability has been resolved: blk-iocost: fix divide by 0 error in calclcoefs echo max of u64 to cost.model can cause divide by 0 error. echo 8:0 rbps=18446744073709551615 /sys/fs/cgroup/io.cost.model divide error: 0000 1 PREEMPT SMP RIP:...

CVE-2023-53783

In the Linux kernel, the following vulnerability has been resolved: blk-iocost: fix divide by 0 error in calclcoefs echo max of u64 to cost.model can cause divide by 0 error. echo 8:0 rbps=18446744073709551615 /sys/fs/cgroup/io.cost.model divide error: 0000 1 PREEMPT SMP RIP:...

CVE-2023-53783

The CVE-2023-53783 issue affects the Linux kernel’s blk-iocost cost model: calc_lcoefs() can divide by zero when the input cost.model overflows ULLONG_MAX, triggered by large values (e.g., echoing a max u64 to /sys/fs/cgroup/io.cost.model). The root cause is an overflow in DIV_ROUND_UP_ULL used i...

CVE-2023-53783 blk-iocost: fix divide by 0 error in calc_lcoefs()

In the Linux kernel, the following vulnerability has been resolved: blk-iocost: fix divide by 0 error in calclcoefs echo max of u64 to cost.model can cause divide by 0 error. echo 8:0 rbps=18446744073709551615 /sys/fs/cgroup/io.cost.model divide error: 0000 1 PREEMPT SMP RIP:...

CVE-2023-53783 blk-iocost: fix divide by 0 error in calc_lcoefs()

In the Linux kernel, the following vulnerability has been resolved: blk-iocost: fix divide by 0 error in calclcoefs echo max of u64 to cost.model can cause divide by 0 error. echo 8:0 rbps=18446744073709551615 /sys/fs/cgroup/io.cost.model divide error: 0000 1 PREEMPT SMP RIP:...

PT-2025-49643

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw in the block I/O cost model calc lcoefs function that can lead to a divide-by-zero error. This occurs when a maximum value is echoed to the cost.model...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989769)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989769 advisory. In the Linux kernel, the following vulnerability has been resolved: blk-iocost: avoid out of bounds shift UBSAN catches undefined behavior in blk-iocost, where...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990325)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990325 advisory. In the Linux kernel, the following vulnerability has been resolved: blk-iocost: avoid out of bounds shift UBSAN catches undefined behavior in blk-iocost, where...

Siemens SIMATIC Devices Out-of-bounds Write (CVE-2024-36916)

In the Linux kernel, the following vulnerability has been resolved: blk-iocost: avoid out of bounds shift UBSAN catches undefined behavior in blk-iocost, where sometimes iocg-delay is shifted right by a number that is too large, resulting in undefined behavior on some architectures. 186.556576...

SUSE CVE-2023-53730

In the Linux kernel, the following vulnerability has been resolved: blk-iocost: use spinlockirqsave in adjustinuseandcalccost adjustinuseandcalccost use spinlockirq and IRQ will be enabled when unlock. DEADLOCK might happen if we have held other locks and disabled IRQ before invoking it. Fix it b...

UBUNTU-CVE-2023-53730

In the Linux kernel, the following vulnerability has been resolved: blk-iocost: use spinlockirqsave in adjustinuseandcalccost adjustinuseandcalccost use spinlockirq and IRQ will be enabled when unlock. DEADLOCK might happen if we have held other locks and disabled IRQ before invoking it. Fix it b...

CVE-2023-53730

CVE-2023-53730 : In the Linux kernel, the blk-iocost code path uses spin_lock_irq() when acquiring bfqd-related locks in adjust_inuse_and_calc_cost(), which can leave IRQ state inconsistent and lead to a potential deadlock if other locks are held and IRQ is disabled before unlocking. The fix swit...

CVE-2023-53730 blk-iocost: use spin_lock_irqsave in adjust_inuse_and_calc_cost

In the Linux kernel, the following vulnerability has been resolved: blk-iocost: use spinlockirqsave in adjustinuseandcalccost adjustinuseandcalccost use spinlockirq and IRQ will be enabled when unlock. DEADLOCK might happen if we have held other locks and disabled IRQ before invoking it. Fix it b...

EUVD-2024-36259

Malicious code in bioql PyPI...

kernel: blk_iocost: fix more out of bound shifts

In the Linux kernel, the following vulnerability has been resolved: blkiocost: fix more out of bound shifts Recently running UBSAN caught few out of bound shifts in the iocforgivedebts function: UBSAN: shift-out-of-bounds in block/blk-iocost.c:2142:38 shift exponent 80 is too large for 64-bit typ...

Linux Distros Unpatched Vulnerability : CVE-2022-49266

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - block: fix rq-qos breakage from skipping rqqosdonebio a647a524a467 block: don't call rqqosops-donebio if the bio isn't tracked made bioendio skip rqqosdonebio i...

DEBIAN-CVE-2022-49266

In the Linux kernel, the following vulnerability has been resolved: block: fix rq-qos breakage from skipping rqqosdonebio a647a524a467 "block: don't call rqqosops-donebio if the bio isn't tracked" made bioendio skip rqqosdonebio if BIOTRACKED is not set. While this fixed a potential oops, it also...