kernel: Linux kernel: Hard lockup in lpfc driver leads to Denial of Service

A flaw was found in the Linux kernel. A local user could trigger a hard lockup by concurrently reading the rxmonitor from debugfs during I/O operations in the lpfc driver. This concurrency issue, caused by insufficient spin lock protection, leads to a system crash and results in a Denial of Servi...

K68692291: Linux kernel vulnerability CVE-2018-7754

Security Advisory Description The aoediskdebugfsshow function in drivers/block/aoe/aoeblk.c in the Linux kernel through 4.16.4rc4 allows local users to obtain sensitive address information by reading "ffree: " lines in a debugfs file. CVE-2018-7754 Impact There is no impact; F5 products are not...

SUSE CVE-2010-3079

kernel/trace/ftrace.c in the Linux kernel before 2.6.35.5, when debugfs is enabled, does not properly handle interaction between mutex possession and llseek operations, which allows local users to cause a denial of service NULL pointer dereference and outage of all function tracing files via an...

SUSE CVE-2010-4347

The ACPI subsystem in the Linux kernel before 2.6.36.2 uses 0222 permissions for the debugfs custommethod file, which allows local users to gain privileges by placing a custom ACPI method in the ACPI interpreter tables, related to the acpidebugfsinit function in drivers/acpi/debugfs.c...

SUSE CVE-2011-1021

drivers/acpi/debugfs.c in the Linux kernel before 3.0 allows local users to modify arbitrary kernel memory locations by leveraging root privileges to write to the /sys/kernel/debug/acpi/custommethod file. NOTE: this vulnerability exists because of an incomplete fix for CVE-2010-4347...

SUSE CVE-2013-6378

The lbsdebugfswrite function in drivers/net/wireless/libertas/debugfs.c in the Linux kernel through 3.12.1 allows local users to cause a denial of service OOPS by leveraging root privileges for a zero-length write operation...

SUSE CVE-2017-6899

The msmbusdbgupdaterequestwrite function in drivers/platform/msm/msmbus/msmbusdbg.c in androidkernelhuaweimsm8916 through 2017-06-16 in LineageOS, and possibly other kernels for MSM devices, allows attackers to cause a denial of service NULL pointer dereference and device crash via a crafted...

SUSE CVE-2017-18261

The archtimerregreadstable macro in arch/arm64/include/asm/archtimer.h in the Linux kernel before 4.13 allows local users to cause a denial of service infinite recursion by writing to a file under /sys/kernel/debug in certain circumstances, as demonstrated by a scenario involving debugfs, ftrace,...

SUSE CVE-2018-7754

The aoediskdebugfsshow function in drivers/block/aoe/aoeblk.c in the Linux kernel through 4.16.4rc4 allows local users to obtain sensitive address information by reading "ffree: " lines in a debugfs file...

SUSE CVE-2018-20449

The hidmachanstats function in drivers/dma/qcom/hidmadbg.c in the Linux kernel 4.14.90 allows local users to obtain sensitive address information by reading "callback=" lines in a debugfs file...

SUSE CVE-2018-20509

The printbinderrefolocked function in drivers/android/binder.c in the Linux kernel 4.14.90 allows local users to obtain sensitive address information by reading " ref desc node" lines in a debugfs file...

SUSE CVE-2018-20510

The printbindertransactionilocked function in drivers/android/binder.c in the Linux kernel 4.14.90 allows local users to obtain sensitive address information by reading "from code flags" lines in a debugfs file...

SUSE CVE-2019-19770

In the Linux kernel 4.19.83, there is a use-after-free read in the debugfsremove function in fs/debugfs/inode.c which is used to remove a file or directory in debugfs that was previously created with a call to another debugfs function such as debugfscreatefile. NOTE: Linux kernel developers dispu...

GSD-2023-1001879 drm/i915: Fix request ref counting during error capture & debugfs dump

drm/i915: Fix request ref counting during error capture & debugfs dump This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.11 by commit...

PT-2023-34935 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.1.11 Description: A memory leak issue has been identified, potentially related to the use of debugfs lookup in irqdomain.c. The actual impact and attack plausibility have not yet been proven. Recommendations:...

PT-2025-13312 · Linux +4 · Linux Kernel +4

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A memory leak issue has been identified in the Linux kernel, specifically in the kernel/irq/irqdomain.c file. The problem occurs when using the debugfs lookup function without properly...

PT-2025-13313 · Linux +5 · Linux Kernel +5

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A memory leak issue has been identified in the Linux kernel, specifically in the hv balloon component when using the debugfs lookup function. The issue arises because the result of...

The vulnerability of the debugfs and e2fsck utilities in the E2fsprogs set of utility programs in the EMIAS OS operating system allows a perpetrator to invoke functions, procedures, or subprograms with incorrectly specified arguments. This always leads to incorrect behavior, and consequently, to defects.

The vulnerability of the debugfs and e2fsck utilities in the E2fsprogs set of utility programs in the EMIAS OS is related to calling functions with incorrectly defined arguments. Exploiting this vulnerability allows an attacker to call functions, procedures, or subprograms with incorrectly...

GSD-2023-1001420 crypto: ccree - Remove debugfs when platform_driver_register failed

crypto: ccree - Remove debugfs when platformdriverregister failed This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.163 by commit...

GSD-2023-1001235 drm/i915/gvt: fix gvt debugfs destroy

drm/i915/gvt: fix gvt debugfs destroy This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.163 by commit...