2567 matches found
kernel: dpll: fix possible deadlock during netlink dump operation
A vulnerability was found in the Linux kernel, where an ABBA deadlock condition may be created if multiple CPUs attempt a DPLL netlink dump operation simultaneously. This deadlock could lead to performance issues...
kernel: memcg: protect concurrent access to mem_cgroup_idr
memcg in linux kernel permit concurrent access to memcgroupidr which can lead to kernel crashes...
PT-2024-37014
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to soft lockups in the Linux kernel's IPv6 route handling, specifically in the fib6 select path function. This occurs when the nodes of the linked list are...
CVE-2024-50257 netfilter: Fix use-after-free in get_info()
In the Linux kernel, the following vulnerability has been resolved: netfilter: Fix use-after-free in getinfo ip6tablenat module unload has refcnt warning for UAF. call trace is: WARNING: CPU: 1 PID: 379 at kernel/module/main.c:853 moduleput+0x6f/0x80 Modules linked in: ip6tablenat- CPU: 1 UID: 0...
btrfs: fix race setting file private on concurrent lseek using same fd
...
CVE-2024-50175
In the Linux kernel, the following vulnerability has been resolved: media: qcom: camss: Remove usecount guard in stopstreaming The usecount check was introduced so that multiple concurrent Raw Data Interfaces RDIs could be driven by different virtual channels VCs on the CSIPHY input driving the...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a race condition issue when there are concurrent accesses to XArray...
The vulnerability of the cdns_i3c_masterremove() function in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the cdnsi3cmasterremove function in the drivers/i3c/master/i3c-master-cdns.c file of the Linux kernel is related to the reutilization of previously freed memory due to concurrent access to resources. Exploiting this vulnerability could allow an attacker to compromise the...
The vulnerability of the nbd_requeue_cmd() function in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the nbdrequeuecmd function in the drivers/block/nbd.c module of the Linux kernel is related to the reutilization of previously freed memory due to concurrent access to resources. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrit...
kernel: memcg: protect concurrent access to mem_cgroup_idr
memcg in linux kernel permit concurrent access to memcgroupidr which can lead to kernel crashes...
kernel: memcg: protect concurrent access to mem_cgroup_idr
memcg in linux kernel permit concurrent access to memcgroupidr which can lead to kernel crashes...
Race Condition
Overview scrapy-zyte-api is a Client library to process URLs through Zyte API Affected versions of this package are vulnerable to Race Condition which allows the crawler to exceed the configured maximum number of Zyte API requests due to inconsistent tracking under concurrent conditions in the...
The vulnerability of the fcntl_setlk() function in the Linux operating system allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the fcntlsetlk function in the fs/locks.c module of the Linux operating system is related to the reutilization of previously freed memory due to concurrent access to resources. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity,...
The vulnerability of the ftrace_location() function in the Linux operating system allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the ftracelocation function in the kernel/trace/ftrace.c module of the Linux operating system is related to the reallocation of previously freed memory due to concurrent access to resources. Exploiting this vulnerability could allow an attacker to compromise the...
The vulnerability of the kcm_sendmsg() function in the implementation of the KCM (Kernel Connection Multiplexer) for Linux kernel sockets allows a attacker to cause a service failure.
The vulnerability of the kcmsendmsg function in the net/kcm/kcmsock.c module of the KCM Kernel Connection Multiplexor implementation for Linux kernel sockets is related to the reutilization of previously freed memory due to concurrent access to resources. Exploiting this vulnerability can allow a...
CVE-2024-49974
In the Linux kernel, the following vulnerability has been resolved: NFSD: Limit the number of concurrent async COPY operations Nothing appears to limit the number of concurrent async COPY operations that clients can start. In addition, AFAICT each async COPY can copy an unlimited number of 4MB...
SUSE CVE-2024-50041
In the Linux kernel, the following vulnerability has been resolved: i40e: Fix macvlan leak by synchronizing access to macfilterhash This patch addresses a macvlan leak issue in the i40e driver caused by concurrent access to vsi-macfilterhash. The leak occurs when multiple threads attempt to modif...
CVE-2024-49870
In the Linux kernel, the following vulnerability has been resolved: cachefiles: fix dentry leak in cachefilesopenfile A dentry leak may be caused when a lookup cookie and a cull are concurrent: P1 | P2 ----------------------------------------------------------- cachefileslookupcookie...
DEBIAN-CVE-2022-49003
In the Linux kernel, the following vulnerability has been resolved: nvme: fix SRCU protection of nvmenshead list Walking the nvmenshead siblings list is protected by the head's srcu in nvmensheadsubmitbio but not nvmempathrevalidatepaths. Removing namespaces from the list also fails to synchroniz...
UBUNTU-CVE-2022-49003
In the Linux kernel, the following vulnerability has been resolved: nvme: fix SRCU protection of nvmenshead list Walking the nvmenshead siblings list is protected by the head's srcu in nvmensheadsubmitbio but not nvmempathrevalidatepaths. Removing namespaces from the list also fails to synchroniz...