12 matches found
CVE-2022-48846
In the Linux kernel, the following vulnerability has been resolved: block: release rq qos structures for queue without disk blkcginitqueue may add rq qos structures to request queue, previously blkcleanupqueue calls rqqosexit to release them, but commit 8e141f9eb803 "block: drain file system I/O ...
CVE-2022-48846 block: release rq qos structures for queue without disk
In the Linux kernel, the following vulnerability has been resolved: block: release rq qos structures for queue without disk blkcginitqueue may add rq qos structures to request queue, previously blkcleanupqueue calls rqqosexit to release them, but commit 8e141f9eb803 "block: drain file system I/O ...
CVE-2021-47552
In the Linux kernel, the following vulnerability has been resolved: blk-mq: cancel blk-mq dispatch work in both blkcleanupqueue and diskrelease For avoiding to slow down queue destroy, we don't call blkmqquiescequeue in blkcleanupqueue, instead of delaying to cancel dispatch work in...
CVE-2021-47552
CVE-2021-47552 – Linux kernel : The vulnerability stems from blk-mq dispatch cancellation logic. Previously, blk_mq_quiesce_queue() was not invoked in blk_cleanup_queue(), delaying cancellation to disk_release(), which allowed a race where a scsi_device could be freed before blk_release_queue() r...
CVE-2021-47552 blk-mq: cancel blk-mq dispatch work in both blk_cleanup_queue and disk_release()
In the Linux kernel, the following vulnerability has been resolved: blk-mq: cancel blk-mq dispatch work in both blkcleanupqueue and diskrelease For avoiding to slow down queue destroy, we don't call blkmqquiescequeue in blkcleanupqueue, instead of delaying to cancel dispatch work in...
CVE-2021-47552 blk-mq: cancel blk-mq dispatch work in both blk_cleanup_queue and disk_release()
In the Linux kernel, the following vulnerability has been resolved: blk-mq: cancel blk-mq dispatch work in both blkcleanupqueue and diskrelease For avoiding to slow down queue destroy, we don't call blkmqquiescequeue in blkcleanupqueue, instead of delaying to cancel dispatch work in...
CVE-2021-47412 block: don't call rq_qos_ops->done_bio if the bio isn't tracked
In the Linux kernel, the following vulnerability has been resolved: block: don't call rqqosops-donebio if the bio isn't tracked rqqos framework is only applied on request based driver, so: 1 rqqosdonebio needn't to be called for bio based driver 2 rqqosdonebio needn't to be called for bio which...
GSD-2021-1002549 blk-mq: cancel blk-mq dispatch work in both blk_cleanup_queue and disk_release()
blk-mq: cancel blk-mq dispatch work in both blkcleanupqueue and diskrelease This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.6 by commit...
CVE-2019-25044
The block subsystem in the Linux kernel before 5.2 has a use-after-free that can lead to arbitrary code execution in the kernel context and privilege escalation, aka CID-c3e2219216c9. This is related to blkmqfreerqs and blkcleanupqueue...
Cross site scripting
The block subsystem in the Linux kernel before 5.2 has a use-after-free that can lead to arbitrary code execution in the kernel context and privilege escalation, aka CID-c3e2219216c9. This is related to blkmqfreerqs and blkcleanupqueue...
CVE-2019-25044
The block subsystem in the Linux kernel before 5.2 has a use-after-free that can lead to arbitrary code execution in the kernel context and privilege escalation, aka CID-c3e2219216c9. This is related to blkmqfreerqs and blkcleanupqueue...
CVE-2019-25044
The CVE-2019-25044 issue affects the Linux kernel before 5.2, specifically the block subsystem. A use-after-free in the blk_mq_free_rqs/blk_cleanup_queue path can lead to arbitrary code execution in kernel context and local privilege escalation. Affected component: block subsystem of the Linux ke...