DEBIAN-CVE-2024-50037

In the Linux kernel, the following vulnerability has been resolved: drm/fbdev-dma: Only cleanup deferred I/O if necessary Commit 5a498d4d06d6 "drm/fbdev-dma: Only install deferred I/O if necessary" initializes deferred I/O only if it is used. drmfbdevdmafbdestroy however calls fbdeferrediocleanup...

UBUNTU-CVE-2024-50037

In the Linux kernel, the following vulnerability has been resolved: drm/fbdev-dma: Only cleanup deferred I/O if necessary Commit 5a498d4d06d6 "drm/fbdev-dma: Only install deferred I/O if necessary" initializes deferred I/O only if it is used. drmfbdevdmafbdestroy however calls fbdeferrediocleanup...

Malicious code in deferred-initialization (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 9e4db661b857c9a0cd462997fc4c4b31ac032777bc902b2e3bd8455dc97bd1f9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2021-37577

Bluetooth LE and BR/EDR Secure Connections pairing and Secure Simple Pairing using the Passkey entry protocol in Bluetooth Core Specifications 2.1 through 5.3 may permit an unauthenticated man-in-the-middle attacker to identify the Passkey used during pairing by reflection of a crafted public key...

DEBIAN-CVE-2024-46867

In the Linux kernel, the following vulnerability has been resolved: drm/xe/client: fix deadlock in showmeminfo There is a real deadlock as well as sleeping in atomic bug in here, if the bo put happens to be the last ref, since bo destruction wants to grab the same spinlock and sleeping locks. Fix...

UBUNTU-CVE-2024-46867

In the Linux kernel, the following vulnerability has been resolved: drm/xe/client: fix deadlock in showmeminfo There is a real deadlock as well as sleeping in atomic bug in here, if the bo put happens to be the last ref, since bo destruction wants to grab the same spinlock and sleeping locks. Fix...

kernel: SUNRPC: double free xprt_ctxt while still in use

A flaw was addressed in the Linux kernel’s SUNRPC implementation affecting deferred RPC request handling. When an RPC request is deferred, the internal rqxprtctxt pointer is moved from the active service request to a deferred request structure. Under certain rare conditions where a request is...

DEBIAN-CVE-2024-45016

In the Linux kernel, the following vulnerability has been resolved: netem: fix return value if duplicate enqueue fails There is a bug in netemenqueue introduced by commit 5845f706388a "net: netem: fix skb length BUGON in skbtosgvec" that can lead to a use-after-free. This commit made netemenqueue...

PCI/DPC: Fix use-after-free on concurrent DPC and hot-removal

...

CVE-2024-42234

A flaw was found in the Linux kernel. The "mm: fix crashes from deferred split racing folio migration" commit involved race conditions during large folio handling. Issues arising from deferred splitting and migration processes where improper locking led to double frees and inconsistencies, such a...

kernel: net: bridge: switchdev: Skip MDB replays of deferred events on offload

A flaw was found in the Linux kernel. A race condition in network bridge management could lead to a denial of service...

SUSE CVE-2024-42234

In the Linux kernel, the following vulnerability has been resolved: mm: fix crashes from deferred split racing folio migration Even on 6.10-rc6, I've been seeing elusive "Bad page state"s often on flags when freeing, yet the flags shown are not bad: PGlocked had been set and cleared??, and...

Unspecified vulnerability in Linux kernel (CNVD-2024-35562)

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a race condition in the way the libceph module handles deferred work in cephmoncstop, which could lead to...

CVE-2024-42234

In the Linux kernel, the following vulnerability has been resolved: mm: fix crashes from deferred split racing folio migration Even on 6.10-rc6, I've been seeing elusive "Bad page state"s often on flags when freeing, yet the flags shown are not bad: PGlocked had been set and cleared??, and...

DEBIAN-CVE-2024-42234

In the Linux kernel, the following vulnerability has been resolved: mm: fix crashes from deferred split racing folio migration Even on 6.10-rc6, I've been seeing elusive "Bad page state"s often on flags when freeing, yet the flags shown are not bad: PGlocked had been set and cleared??, and...

UBUNTU-CVE-2024-42234

In the Linux kernel, the following vulnerability has been resolved: mm: fix crashes from deferred split racing folio migration Even on 6.10-rc6, I've been seeing elusive "Bad page state"s often on flags when freeing, yet the flags shown are not bad: PGlocked had been set and cleared??, and...

CVE-2024-42234

CVE-2024-42234 affects the Linux kernel in the area of memory management, specifically the deferred split and large folio migration path. The root cause is a race during deferred_split_scan() where folios are moved to a local list without proper synchronization, risking double frees and related B...

CVE-2024-42234 mm: fix crashes from deferred split racing folio migration

In the Linux kernel, the following vulnerability has been resolved: mm: fix crashes from deferred split racing folio migration Even on 6.10-rc6, I've been seeing elusive "Bad page state"s often on flags when freeing, yet the flags shown are not bad: PGlocked had been set and cleared??, and...

CVE-2024-42234 mm: fix crashes from deferred split racing folio migration

In the Linux kernel, the following vulnerability has been resolved: mm: fix crashes from deferred split racing folio migration Even on 6.10-rc6, I've been seeing elusive "Bad page state"s often on flags when freeing, yet the flags shown are not bad: PGlocked had been set and cleared??, and...

DEBIAN-CVE-2024-41045

In the Linux kernel, the following vulnerability has been resolved: bpf: Defer work in bpftimercancelandfree Currently, the same case as previous patch two timer callbacks trying to cancel each other can be invoked through bpfmapupdateelem as well, or more precisely, freeing map elements containi...