16 matches found
kernel: drm/vkms: Fix null-ptr-deref in vkms_release()
In the Linux kernel, the following vulnerability has been resolved: drm/vkms: Fix null-ptr-deref in vkmsrelease A null-ptr-deref is triggered when it tries to destroy the workqueue in vkms-output.composerworkq in vkmsrelease. KASAN: null-ptr-deref in range 0x0000000000000118-0x000000000000011f CP...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the smb/server module calling destroyworkqueue before ksmbdrdmadestroy...
CVE-2022-49027 iavf: Fix error handling in iavf_init_module()
In the Linux kernel, the following vulnerability has been resolved: iavf: Fix error handling in iavfinitmodule The iavfinitmodule won't destroy workqueue when pciregisterdriver failed. Call destroyworkqueue when pciregisterdriver failed to prevent the resource leak. Similar to the handling of...
CVE-2022-49027 iavf: Fix error handling in iavf_init_module()
In the Linux kernel, the following vulnerability has been resolved: iavf: Fix error handling in iavfinitmodule The iavfinitmodule won't destroy workqueue when pciregisterdriver failed. Call destroyworkqueue when pciregisterdriver failed to prevent the resource leak. Similar to the handling of...
CVE-2024-50019
In CVE-2024-50019 the IBM bulletin documents a Linux kernel issue where kthread unparked-per-CPU threads could be woken up during stop. Root cause: calling kthread_unpark unconditionally before ensuring the thread is inactive can cause a wakeup on a per-CPU kthread that has been bound via kthread...
CVE-2024-49956
In the Linux kernel, the following vulnerability has been resolved: gfs2: fix double destroyworkqueue error When gfs2fillsuper fails, destroyworkqueue is called within gfs2glhashclear, and the subsequent code path calls destroyworkqueue on the same work queue again. This issue can be fixed by...
CVE-2024-49956 gfs2: fix double destroy_workqueue error
In the Linux kernel, the following vulnerability has been resolved: gfs2: fix double destroyworkqueue error When gfs2fillsuper fails, destroyworkqueue is called within gfs2glhashclear, and the subsequent code path calls destroyworkqueue on the same work queue again. This issue can be fixed by...
CVE-2024-49956 gfs2: fix double destroy_workqueue error
In the Linux kernel, the following vulnerability has been resolved: gfs2: fix double destroyworkqueue error When gfs2fillsuper fails, destroyworkqueue is called within gfs2glhashclear, and the subsequent code path calls destroyworkqueue on the same work queue again. This issue can be fixed by...
CVE-2024-49956 gfs2: fix double destroy_workqueue error
In the Linux kernel, the following vulnerability has been resolved: gfs2: fix double destroyworkqueue error When gfs2fillsuper fails, destroyworkqueue is called within gfs2glhashclear, and the subsequent code path calls destroyworkqueue on the same work queue again. This issue can be fixed by...
CVE-2024-49956
CVE-2024-49956 pertains to the Linux kernel GFS2 subsystem. The issue is a double destroy_workqueue call: when gfs2_fill_super() fails, gfs2_gl_hash_clear() calls destroy_workqueue(), and the code path may call destroy_workqueue() again on the same workqueue. The root cause is that the workqueue ...
CVE-2024-42307 cifs: fix potential null pointer use in destroy_workqueue in init_cifs error path
In the Linux kernel, the following vulnerability has been resolved: cifs: fix potential null pointer use in destroyworkqueue in initcifs error path Dan Carpenter reported a Smack static checker warning: fs/smb/client/cifsfs.c:1981 initcifs error: we previously assumed 'serverclosewq' could be nul...
SUSE CVE-2024-41063
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcicore: cancel all works upon hciunregisterdev syzbot is reporting that calling hcireleasedev from hcierrorreset due to hcidevput from hcierrorreset can cause deadlock at destroyworkqueue, for hcierrorreset is called...
CVE-2024-41063 Bluetooth: hci_core: cancel all works upon hci_unregister_dev()
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcicore: cancel all works upon hciunregisterdev syzbot is reporting that calling hcireleasedev from hcierrorreset due to hcidevput from hcierrorreset can cause deadlock at destroyworkqueue, for hcierrorreset is called...
CVE-2024-41063 Bluetooth: hci_core: cancel all works upon hci_unregister_dev()
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcicore: cancel all works upon hciunregisterdev syzbot is reporting that calling hcireleasedev from hcierrorreset due to hcidevput from hcierrorreset can cause deadlock at destroyworkqueue, for hcierrorreset is called...
UBUNTU-CVE-2024-35899
In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: flush pending destroy work before exitnet release Similar to 2c9f0293280e "netfilter: nftables: flush pending destroy work before netlink notifier" to address a race between exitnet and the destroy workqueue...
GSD-2022-1004995 ieee802154/adf7242: defer destroy_workqueue call
ieee802154/adf7242: defer destroyworkqueue call This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.8 by commit...