45 matches found
Astra Linux - уязвимость в linux-5.15
A use-after-free flaw was discovered in the Linux kernel. When a disk is removed, the bdiunregister function is called to stop further write-back operations, and the system waits for the associated delayed tasks to complete. However, the wb inodewritebackend function may schedule bandwidth...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: block: fixed leakage of debugfs entries caused by blktrace. The commit 99d055b4fd4b “block: removed per-disk debugfs files in blkunregisterqueue” moves the blkTraceShutdown function to blkUnregisterQueue. This is safe if blktrace...
PT-2026-6495
Impact Config partition measurement was moved from PCR 13 to PCR 14 in a commit, but PCR 14 was not added to the list of PCRs that seal/unseal the vault key. As a result, an attacker can remove the disk, use another server to modify the files in the config partition, and then re-insert the disk...
CVE-2023-54209
In the Linux kernel, the following vulnerability has been resolved: block: fix blktrace debugfs entries leakage Commit 99d055b4fd4b "block: remove per-disk debugfs files in blkunregisterqueue" moves blktraceshutdown from blkreleasequeue to blkunregisterqueue, this is safe if blktrace is created...
SUSE CVE-2023-53823
In the Linux kernel, the following vulnerability has been resolved: block/rqqos: protect rqqos apis with a new lock commit 50e34d78815e "block: disable the elevator int delgendisk" move rqqosexit from diskrelease to delgendisk, this will introduce some problems: 1 If rqqosadd is triggered by...
EUVD-2023-60173
In the Linux kernel, the following vulnerability has been resolved: block/rqqos: protect rqqos apis with a new lock commit 50e34d78815e "block: disable the elevator int delgendisk" move rqqosexit from diskrelease to delgendisk, this will introduce some problems: 1 If rqqosadd is triggered by...
DEBIAN-CVE-2023-53823
In the Linux kernel, the following vulnerability has been resolved: block/rqqos: protect rqqos apis with a new lock commit 50e34d78815e "block: disable the elevator int delgendisk" move rqqosexit from diskrelease to delgendisk, this will introduce some problems: 1 If rqqosadd is triggered by...
CVE-2023-53823
In the Linux kernel, the following vulnerability has been resolved: block/rqqos: protect rqqos apis with a new lock commit 50e34d78815e "block: disable the elevator int delgendisk" move rqqosexit from diskrelease to delgendisk, this will introduce some problems: 1 If rqqosadd is triggered by...
UBUNTU-CVE-2023-53823
In the Linux kernel, the following vulnerability has been resolved: block/rqqos: protect rqqos apis with a new lock commit 50e34d78815e "block: disable the elevator int delgendisk" move rqqosexit from diskrelease to delgendisk, this will introduce some problems: 1 If rqqosadd is triggered by...
CVE-2023-53823 block/rq_qos: protect rq_qos apis with a new lock
In the Linux kernel, the following vulnerability has been resolved: block/rqqos: protect rqqos apis with a new lock commit 50e34d78815e "block: disable the elevator int delgendisk" move rqqosexit from diskrelease to delgendisk, this will introduce some problems: 1 If rqqosadd is triggered by...
CVE-2023-53823
CVE-2023-53823 in the Linux kernel was fixed by introducing a disk-level mutex (rq_qos_mutex) to protect rq_qos APIs. The patch ensures rq_qos_exit() is not concurrently accessed with rq_qos_add() during disk removal/initialization and cgroup policy changes, mitigating races that could trigger nu...
CVE-2023-53823
In the Linux kernel, the following vulnerability has been resolved: block/rqqos: protect rqqos apis with a new lock commit 50e34d78815e "block: disable the elevator int delgendisk" move rqqosexit from diskrelease to delgendisk, this will introduce some problems: 1 If rqqosadd is triggered by...
CVE-2023-53823 block/rq_qos: protect rq_qos apis with a new lock
In the Linux kernel, the following vulnerability has been resolved: block/rqqos: protect rqqos apis with a new lock commit 50e34d78815e "block: disable the elevator int delgendisk" move rqqosexit from diskrelease to delgendisk, this will introduce some problems: 1 If rqqosadd is triggered by...
Linux Distros Unpatched Vulnerability : CVE-2023-53823
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - block/rqqos: protect rqqos apis with a new lock commit 50e34d78815e block: disable the elevator int delgendisk move rqqosexit from diskrelease to delgendisk, th...
CVE-2023-53722 md: raid1: fix potential OOB in raid1_remove_disk()
In the Linux kernel, the following vulnerability has been resolved: md: raid1: fix potential OOB in raid1removedisk If rddev-raiddisk is greater than mddev-raiddisks, there will be an out-of-bounds in raid1removedisk. We have already found similar reports as follows: 1 commit d17f744e883b...
EUVD-2022-55274
Malicious code in bioql PyPI...
EUVD-2024-16355
Malicious code in bioql PyPI...
CVE-2025-38620
In the Linux kernel, the following vulnerability has been resolved: zloop: fix KASAN use-after-free of tag set When a zoned loop device, or zloop device, is removed, KASAN enabled kernel reports "BUG KASAN use-after-free" in blkmqfreetagset. The BUG happens because zloopctlremove calls putdisk,...
CVE-2025-38620 zloop: fix KASAN use-after-free of tag set
In the Linux kernel, the following vulnerability has been resolved: zloop: fix KASAN use-after-free of tag set When a zoned loop device, or zloop device, is removed, KASAN enabled kernel reports "BUG KASAN use-after-free" in blkmqfreetagset. The BUG happens because zloopctlremove calls putdisk,...
UBUNTU-CVE-2022-49995
In the Linux kernel, the following vulnerability has been resolved: writeback: avoid use-after-free after removing device When a disk is removed, bdiunregister gets called to stop further writeback and wait for associated delayed work to complete. However, wbinodewritebackend may schedule bandwid...