67 matches found
CVE-2025-38717 net: kcm: Fix race condition in kcm_unattach()
In the Linux kernel, the following vulnerability has been resolved: net: kcm: Fix race condition in kcmunattach syzbot found a race condition when kcmunattachpsock and kcmreleasekcm are executed at the same time. kcmunattach is missing a check of the flag kcm-txstopped before calling queuework. I...
net/ncsi: Disable the ncsi work before freeing the associated structure
...
PT-2025-35990
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition was identified in the kcm unattach function within the kernel's networking subsystem. Specifically, the function lacked a check of the kcm-tx stopped flag before calling...
AZL-52048 CVE-2024-49945 affecting package kernel 6.6.126.1-1
In the Linux kernel, the following vulnerability has been resolved: net/ncsi: Disable the ncsi work before freeing the associated structure The work function can run after the ncsi device is freed, resulting in use-after-free bugs or kernel panic...
DEBIAN-CVE-2024-49945
In the Linux kernel, the following vulnerability has been resolved: net/ncsi: Disable the ncsi work before freeing the associated structure The work function can run after the ncsi device is freed, resulting in use-after-free bugs or kernel panic...
kernel: scsi: qedi: Fix use after free bug in qedi_remove()
A use-after-free vulnerability was found in the Linux kernel's QLogic qedi iSCSI driver. When the driver is removed via qediremove, the SCSI host structure may be freed while recoverywork or boarddisablework are still running. The work handlers then access the freed qedi-shost structure, causing ...
PT-2025-53177
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free issue exists in the qedi driver within the Linux kernel. The issue occurs in the qedi remove function, potentially triggered by concurrent execution of qedi recovery...