Lucene search
K

602 matches found

OSV
OSV
added 2026/01/05 10:15 a.m.5 views

AZL-73421 CVE-2025-68756 affecting package kernel for versions less than 6.6.121.1-1

In the Linux kernel, the following vulnerability has been resolved: block: Use RCU in blkmqunquiescetagset instead of set-taglistlock blkmqadd,delqueuetagset functions add and remove queues from tagset, the functions make sure that tagset and queues are marked as shared when two or more queues ar...

5.6AI score0.00157EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2026/01/05 10:15 a.m.8 views

CVE-2025-68756

In the Linux kernel, the following vulnerability has been resolved: block: Use RCU in blkmqunquiescetagset instead of set-taglistlock blkmqadd,delqueuetagset functions add and remove queues from tagset, the functions make sure that tagset and queues are marked as shared when two or more queues ar...

5.9AI score0.00157EPSS
Exploits0References25
CVE
CVE
added 2026/01/05 9:32 a.m.9 views

CVE-2025-68756

CVE-2025-68756 affects the Linux kernel block layer where blk_mq_[un]quiesce_tagset() and related tag-set management functions can deadlock when NVMe timeout handling and tagset changes interact on shared tagsets. The vulnerability arises because quiescing tagsets and freezing queues previously-r...

6AI score0.00157EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/01/05 12:0 a.m.6 views

PT-2026-1244

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw related to tagset management within the block layer. Specifically, the blk mq unquiesce tagset functions, used for managing queues, were updated to use...

4.6CVSS6.3AI score0.00157EPSS
Exploits0
OSV
OSV
added 2025/12/30 12:11 p.m.11 views

CVE-2023-54242 block, bfq: Fix division by zero error on zero wsum

In the Linux kernel, the following vulnerability has been resolved: block, bfq: Fix division by zero error on zero wsum When the weighted sum is zero the calculation of limit causes a division by zero error. Fix this by continuing to the next level. This was discovered by running as root: stress-...

6.4AI score0.00166EPSS
Exploits0References6
EUVD
EUVD
added 2025/12/24 12:30 p.m.2 views

EUVD-2025-205106

In the Linux kernel, the following vulnerability has been resolved: block: fix memory leak in blkdevissuezeropages Move the fatal signal check before bioalloc to prevent a memory leak when BLKDEVZEROKILLABLE is set and a fatal signal is pending. Previously, the bio was allocated before checking f...

6.2AI score0.00168EPSS
Exploits0References5
NVD
NVD
added 2025/12/24 11:15 a.m.7 views

CVE-2025-68348

In the Linux kernel, the following vulnerability has been resolved: block: fix memory leak in blkdevissuezeropages Move the fatal signal check before bioalloc to prevent a memory leak when BLKDEVZEROKILLABLE is set and a fatal signal is pending. Previously, the bio was allocated before checking f...

0.00168EPSS
Exploits0References4
OSV
OSV
added 2025/12/16 2:52 p.m.14 views

USN-7938-1 linux-azure-5.15 vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

7.8CVSS6.5AI score0.0037EPSS
Exploits3References188
Ubuntu
Ubuntu
added 2025/12/16 2:52 p.m.8 views

USN-7938-1: Linux kernel (Azure) vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

7.8CVSS7.6AI score0.0037EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2025/12/16 12:0 a.m.6 views

Ubuntu 22.04 LTS : Linux kernel (KVM) vulnerabilities (USN-7933-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7933-1 advisory. Jean-Claude Graf, Sandro Regge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation betwee...

7.8CVSS7.6AI score0.0037EPSS
Exploits3References187
OSV
OSV
added 2025/12/15 5:4 p.m.5 views

USN-7909-5 linux-raspi vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM32 architecture; - ARM64 architecture; - MIPS architecture; - PowerPC architecture; - RISC-V architecture; - S39...

7.8CVSS6.5AI score0.0037EPSS
Exploits3References179
Ubuntu
Ubuntu
added 2025/12/15 5:4 p.m.13 views

USN-7909-5: Linux kernel (Raspberry Pi) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM32 architecture; - ARM64 architecture; - MIPS architecture; - PowerPC architecture; - RISC-V architecture; - S39...

7.8CVSS7.2AI score0.0037EPSS
Exploits3
Ubuntu
Ubuntu
added 2025/12/15 5:1 p.m.10 views

USN-7933-1: Linux kernel (KVM) vulnerabilities

Jean-Claude Graf, Sandro Rüegge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation between a guest and a userspace hypervisor for certain processors. This flaw is known as VMSCAPE. An attacker in a guest VM could possibly use this t...

7.8CVSS7.3AI score0.0037EPSS
Exploits3
SUSE CVE
SUSE CVE
added 2025/12/10 12:35 a.m.6 views

SUSE CVE-2023-53810

In the Linux kernel, the following vulnerability has been resolved: blk-mq: release crypto keyslot before reporting I/O complete Once all I/O using a blkcryptokey has completed, filesystems can call blkcryptoevictkey. However, the block layer currently doesn't call blkcryptoputkeyslot until the...

5.5CVSS6.4AI score0.00171EPSS
Exploits0References3
OSV
OSV
added 2025/12/09 1:16 a.m.1 views

DEBIAN-CVE-2023-53810

In the Linux kernel, the following vulnerability has been resolved: blk-mq: release crypto keyslot before reporting I/O complete Once all I/O using a blkcryptokey has completed, filesystems can call blkcryptoevictkey. However, the block layer currently doesn't call blkcryptoputkeyslot until the...

5.5AI score0.00171EPSS
Exploits0References1
OSV
OSV
added 2025/12/09 1:16 a.m.7 views

UBUNTU-CVE-2023-53810

In the Linux kernel, the following vulnerability has been resolved: blk-mq: release crypto keyslot before reporting I/O complete Once all I/O using a blkcryptokey has completed, filesystems can call blkcryptoevictkey. However, the block layer currently doesn't call blkcryptoputkeyslot until the...

5.7AI score0.00171EPSS
Exploits0References9
CVE
CVE
added 2025/12/09 12:1 a.m.11 views

CVE-2023-53810

CVE-2023-53810 is a Linux kernel race condition in the blk-mq/keyslot path. After I/O using a blk_crypto_key completes, keyslot release was delayed until request free, potentially allowing blk_crypto_evict_key() to observe non-zero slot_refs while there is no active bug. The vulnerability manifes...

6AI score0.00171EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/12/09 12:1 a.m.24 views

CVE-2023-53810 blk-mq: release crypto keyslot before reporting I/O complete

In the Linux kernel, the following vulnerability has been resolved: blk-mq: release crypto keyslot before reporting I/O complete Once all I/O using a blkcryptokey has completed, filesystems can call blkcryptoevictkey. However, the block layer currently doesn't call blkcryptoputkeyslot until the...

0.00171EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2025/12/09 12:1 a.m.4 views

CVE-2023-53810

In the Linux kernel, the following vulnerability has been resolved: blk-mq: release crypto keyslot before reporting I/O complete Once all I/O using a blkcryptokey has completed, filesystems can call blkcryptoevictkey. However, the block layer currently doesn't call blkcryptoputkeyslot until the...

5.5AI score0.00171EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.8 views

PT-2025-49670

In the Linux kernel, the following vulnerability has been resolved: blk-mq: release crypto keyslot before reporting I/O complete Once all I/O using a blk crypto key has completed, filesystems can call blk crypto evict key. However, the block layer currently doesn't call blk crypto put keyslot unt...

6.3AI score0.00171EPSS
Exploits0References7
Rows per page
Query Builder