Vulnerability of the optee_supp_thrd_req() function (drivers/tee/optee/supp.c) in the Linux kernel, allowing a hacker to cause a service failure

The vulnerability of the opteesuppthrdreq function drivers/tee/optee/supp.c in the Linux kernel is related to incorrect blocking mechanisms. Exploiting this vulnerability could allow an attacker to cause a service failure...

CVE-2025-24172

A permissions issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS Ventura 13.7.5. "Block All Remote Content" may not apply for all mail previews...

SUSE CVE-2025-21986

In the Linux kernel, the following vulnerability has been resolved: net: switchdev: Convert blocking notification chain to a raw one A blocking notification chain uses a read-write semaphore to protect the integrity of the chain. The semaphore is acquired for writing when adding / removing...

DEBIAN-CVE-2025-21986

In the Linux kernel, the following vulnerability has been resolved: net: switchdev: Convert blocking notification chain to a raw one A blocking notification chain uses a read-write semaphore to protect the integrity of the chain. The semaphore is acquired for writing when adding / removing...

CVE-2025-21942

In the Linux kernel, the following vulnerability has been resolved: btrfs: zoned: fix extent range end unlock in cowfilerange Running generic/751 on the for-next branch often results in a hang like below. They are both stack by locking an extent. This suggests someone forget to unlock an extent...

UBUNTU-CVE-2025-21986

In the Linux kernel, the following vulnerability has been resolved: net: switchdev: Convert blocking notification chain to a raw one A blocking notification chain uses a read-write semaphore to protect the integrity of the chain. The semaphore is acquired for writing when adding / removing...

CVE-2025-21986

CVE-2025-21986 affects the Linux kernel net: switchdev notification path. The root cause is a blocking notification chain that uses a read-write semaphore to protect the chain, which allows recursive notifications to cause the semaphore to be acquired twice for reading. In certain bridge/offload ...

CVE-2025-21986 net: switchdev: Convert blocking notification chain to a raw one

In the Linux kernel, the following vulnerability has been resolved: net: switchdev: Convert blocking notification chain to a raw one A blocking notification chain uses a read-write semaphore to protect the integrity of the chain. The semaphore is acquired for writing when adding / removing...

CVE-2025-21986 net: switchdev: Convert blocking notification chain to a raw one

In the Linux kernel, the following vulnerability has been resolved: net: switchdev: Convert blocking notification chain to a raw one A blocking notification chain uses a read-write semaphore to protect the integrity of the chain. The semaphore is acquired for writing when adding / removing...

CVE-2025-21942

CVE-2025-21942 affects the Linux kernel btrfs zoned code. A hang can occur in cow_file_range() when unlocking extents if there is no active zone finish path or after partial allocations, due to unlock code being moved outside the loop by a commit. The fix sets the end to the end of the allocated ...

Apple macOS 安全漏洞

Apple macOS is a suite of specialized operating systems developed for Mac computers by Apple Inc. in the United States. A security vulnerability exists in Apple macOS, which stems from the fact that blocking all remote content may not apply to all mail previews...

CVE-2022-49751

In the Linux kernel, the following vulnerability has been resolved: w1: fix WARNING after calling w1process I got the following WARNING message while removing driverds2482: ------------ cut here ------------ do not call blocking ops when !TASKRUNNING; state=1 set at w1process+0x9e/0x1d0 wire...

DEBIAN-CVE-2022-49751

In the Linux kernel, the following vulnerability has been resolved: w1: fix WARNING after calling w1process I got the following WARNING message while removing driverds2482: ------------ cut here ------------ do not call blocking ops when !TASKRUNNING; state=1 set at w1process+0x9e/0x1d0 wire...

CVE-2022-49751

In the Linux kernel, the following vulnerability has been resolved: w1: fix WARNING after calling w1process I got the following WARNING message while removing driverds2482: ------------ cut here ------------ do not call blocking ops when !TASKRUNNING; state=1 set at w1process+0x9e/0x1d0 wire...

CVE-2025-21892

CVE-2025-21892 affects the Linux kernel's RDMA mlx5 driver, specifically the UMR QP recovery path. A race during recovery could cause the firmware to skip flushing some CQEs with errors and discard them when transitioning to RESET, potentially losing CQEs and leaving tasks blocked. The referenced...

CVE-2025-21892 RDMA/mlx5: Fix the recovery flow of the UMR QP

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix the recovery flow of the UMR QP This patch addresses an issue in the recovery flow of the UMR QP, ensuring tasks do not get stuck, as highlighted by the call trace 1. During recovery, before transitioning the QP to...

Vulnerability of RDMA/mad components of the Linux operating system, allowing a hacker to cause a service failure

The vulnerability of RDMA/mad components of the Linux operating system’s kernel is related to incorrect blocking in the retrysend and timeoutsends functions in drivers/infiniband/core/mad.c. Exploiting this vulnerability can allow an attacker to trigger a service failure...

The vulnerabilities of SELinux and SMACK components in the Linux operating system allow attackers to cause service failures.

The vulnerability of SELinux components and SMACK in Linux operating systems is related to improper blocking. Exploiting this vulnerability can allow a perpetrator to cause service failures...

The vulnerability of the ntfs3 component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the ntfs3 component in the Linux operating system’s kernel is related to incorrect blocking in the ntfsdhash function in fs/ntfs3/namei.c. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability in the `include/net/ip_tunnels.h` header file of the IPv4 protocol implementation in Linux kernel allows a attacker to cause a service failure.

The vulnerability in the include/net/iptunnels.h header file of the IPv4 protocol implementation in Linux operating systems is related to incorrect resource blocking. Exploiting this vulnerability can allow an attacker to cause service failures...