Lucene search
K

5 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: nvme-rdma: Destroy the cmid before destroying the qp to avoid using it after freeing it. We should always destroy the cmid before destroying the qp to prevent accessing the cma after the qp is destroyed. This can lead to incorrec...

9.8CVSS5.7AI score0.01166EPSS
Exploits0References2
Redos
Redos
added 2026/02/20 12:0 a.m.11 views

ROS-20260220-73-0029

A vulnerability in the EXPORTSYMBOL, destroycmid and cmworkhandler functions drivers/infiniband/core/iwcm.c of the Linux kernel is related to the use of memory after it has been freed. Exploitation of the vulnerability could allow an attacker to escalate his privileges...

7.8CVSS5.5AI score0.00154EPSS
Exploits0
OSV
OSV
added 2024/08/17 9:15 a.m.12 views

AZL-47847 CVE-2024-42285 affecting package kernel for versions less than 5.15.167.1-1

In the Linux kernel, the following vulnerability has been resolved: RDMA/iwcm: Fix a use-after-free related to destroying CM IDs iwconnreqhandler associates a new struct rdmaidprivate connid with an existing struct iwcmid cmid as follows: connid-cmid.iw = cmid; cmid-context = connid; cmid-cmhandl...

7.8CVSS6.3AI score0.00244EPSS
Exploits0References1
OSV
OSV
added 2024/05/21 3:15 p.m.27 views

CVE-2021-47378

In the Linux kernel, the following vulnerability has been resolved: nvme-rdma: destroy cm id before destroy qp to avoid use after free We should always destroy cmid before destroy qp to avoid to get cma event after qp was destroyed, which may lead to use after free. In RDMA connection establishme...

9.8CVSS7.5AI score
Exploits0References3
OSV
OSV
added 2021/10/19 4:30 p.m.17 views

GSD-2021-1001663 nvme-rdma: destroy cm id before destroy qp to avoid use after free

nvme-rdma: destroy cm id before destroy qp to avoid use after free This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.70 by commit...

7.2AI score
Exploits0
Rows per page
Query Builder