57 matches found
CVE-2021-47343
CVE-2021-47343 is a Linux kernel issue in the device-mapper (dm) btree removal path. The bug could cause an uninitialized value to be assigned to new_root when removal fails, leading to out-of-bounds access in dm-thin metadata (details_root/details_info) and potential general protection faults. T...
kernel: dm thin: Fix ABBA deadlock between shrink_slab and dm_pool_abort_metadata
An ABBA deadlock flaw was found in the Linux kernel's device-mapper thin provisioning subsystem between the memory reclaim path and metadata abort handling. A local user can trigger this issue by initiating cache drop operations while dm-thin operations are active, causing process P1 to hold...
GSD-2023-1001289 dm thin: Fix ABBA deadlock between shrink_slab and dm_pool_abort_metadata
dm thin: Fix ABBA deadlock between shrinkslab and dmpoolabortmetadata This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.163 by commit...
GSD-2023-1000486 dm thin: Fix ABBA deadlock between shrink_slab and dm_pool_abort_metadata
dm thin: Fix ABBA deadlock between shrinkslab and dmpoolabortmetadata This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.18 by commit...
GSD-2023-1000485 dm thin: Use last transaction's pmd->root when commit failed
dm thin: Use last transaction's pmd-root when commit failed This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.18 by commit...
PT-2023-33563 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.18 Description: The issue is related to a potential deadlock between shrink slab and dm pool abort metadata in the dm thin component. The actual impact and attack plausibility have not yet been proven...
kernel: dm thin: fix use-after-free crash in dm_sm_register_threshold_callback
In the Linux kernel, the following vulnerability has been resolved: dm thin: fix use-after-free crash in dmsmregisterthresholdcallback Fault inject on pool metadata device reports: BUG: KASAN: use-after-free in dmpoolregistermetadatathreshold+0x40/0x80 Read of size 8 at addr ffff8881b9d50068 by...
GSD-2022-1005995 dm thin: fix use-after-free crash in dm_sm_register_threshold_callback
dm thin: fix use-after-free crash in dmsmregisterthresholdcallback This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.211 by commit...
GSD-2022-1005819 dm thin: fix use-after-free crash in dm_sm_register_threshold_callback
dm thin: fix use-after-free crash in dmsmregisterthresholdcallback This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.137 by commit...
GSD-2022-1005551 dm thin: fix use-after-free crash in dm_sm_register_threshold_callback
dm thin: fix use-after-free crash in dmsmregisterthresholdcallback This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.61 by commit...
GSD-2022-1005190 dm thin: fix use-after-free crash in dm_sm_register_threshold_callback
dm thin: fix use-after-free crash in dmsmregisterthresholdcallback This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.2 by commit...
Oracle: Security Advisory (ELSA-2014-0475)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Scientific Linux Security Update : kernel on SL6.x i386/x86_64 (20141216)
A flaw was found in the way the Linux kernel's SCTP implementation handled malformed or duplicate Address Configuration Change Chunks ASCONF. A remote attacker could use either of these flaws to crash the system. CVE-2014-3673, CVE-2014-3687, Important - A flaw was found in the way the Linux...
kernel, perf, python security update
CentOS Errata and Security Advisory CESA-2014:1997 Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System...
Important: Red Hat Security Advisory: kernel security and bug fix update
Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...
kernel security and bug fix update
2.6.32-504.3.3 - x86 traps: stop using IST for SS Petr Matousek 1172810 1172811 CVE-2014-9322 2.6.32-504.3.2 - md dm-thin: fix pooliohints to avoid looking at maxhwsectors Mike Snitzer 1161420 1161421 1142773 1145230 2.6.32-504.3.1 - s390 zcrypt: toleration of new crypto adapter hardware Hendrik...
kernel security and bug fix update
2.6.32-431.17.1 - scsi qla2xxx: Fixup looking for a space in the outstandingcmds array in qla2x00allociocbs Chad Dupuis 1085660 1070856 - scsi isci: fix reset timeout handling David Milburn 1080600 1040393 - scsi isci: correct erroneous foreachiscihost macro David Milburn 1074855 1059325 - kernel...