Lucene search
K

57 matches found

CVE
CVE
added 2024/05/21 2:35 p.m.84 views

CVE-2021-47343

CVE-2021-47343 is a Linux kernel issue in the device-mapper (dm) btree removal path. The bug could cause an uninitialized value to be assigned to new_root when removal fails, leading to out-of-bounds access in dm-thin metadata (details_root/details_info) and potential general protection faults. T...

5.5CVSS6.4AI score0.00259EPSS
Exploits0References9Affected Software1
RedHat Linux
RedHat Linux
added 2023/05/09 10:4 a.m.4 views

kernel: dm thin: Fix ABBA deadlock between shrink_slab and dm_pool_abort_metadata

An ABBA deadlock flaw was found in the Linux kernel's device-mapper thin provisioning subsystem between the memory reclaim path and metadata abort handling. A local user can trigger this issue by initiating cache drop operations while dm-thin operations are active, causing process P1 to hold...

5.5CVSS7.1AI score0.00141EPSS
Exploits0References5
OSV
OSV
added 2023/01/17 7:1 p.m.14 views

GSD-2023-1001289 dm thin: Fix ABBA deadlock between shrink_slab and dm_pool_abort_metadata

dm thin: Fix ABBA deadlock between shrinkslab and dmpoolabortmetadata This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.163 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2023/01/17 5:43 p.m.8 views

GSD-2023-1000486 dm thin: Fix ABBA deadlock between shrink_slab and dm_pool_abort_metadata

dm thin: Fix ABBA deadlock between shrinkslab and dmpoolabortmetadata This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.18 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2023/01/17 5:43 p.m.10 views

GSD-2023-1000485 dm thin: Use last transaction's pmd->root when commit failed

dm thin: Use last transaction's pmd-root when commit failed This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.18 by commit...

7.3AI score
Exploits0
Positive Technologies
Positive Technologies
added 2023/01/17 12:0 a.m.5 views

PT-2023-33563 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.18 Description: The issue is related to a potential deadlock between shrink slab and dm pool abort metadata in the dm thin component. The actual impact and attack plausibility have not yet been proven...

7.1AI score
Exploits0References1
RedHat Linux
RedHat Linux
added 2022/11/15 11:55 a.m.2 views

kernel: dm thin: fix use-after-free crash in dm_sm_register_threshold_callback

In the Linux kernel, the following vulnerability has been resolved: dm thin: fix use-after-free crash in dmsmregisterthresholdcallback Fault inject on pool metadata device reports: BUG: KASAN: use-after-free in dmpoolregistermetadatathreshold+0x40/0x80 Read of size 8 at addr ffff8881b9d50068 by...

5.5CVSS6.3AI score0.00204EPSS
Exploits0References5
OSV
OSV
added 2022/09/17 12:45 a.m.9 views

GSD-2022-1005995 dm thin: fix use-after-free crash in dm_sm_register_threshold_callback

dm thin: fix use-after-free crash in dmsmregisterthresholdcallback This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.211 by commit...

7.3AI score
Exploits0
OSV
OSV
added 2022/09/17 12:28 a.m.4 views

GSD-2022-1005819 dm thin: fix use-after-free crash in dm_sm_register_threshold_callback

dm thin: fix use-after-free crash in dmsmregisterthresholdcallback This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.137 by commit...

7.3AI score
Exploits0
OSV
OSV
added 2022/09/17 12:5 a.m.9 views

GSD-2022-1005551 dm thin: fix use-after-free crash in dm_sm_register_threshold_callback

dm thin: fix use-after-free crash in dmsmregisterthresholdcallback This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.61 by commit...

7.3AI score
Exploits0
OSV
OSV
added 2022/09/16 11:36 p.m.5 views

GSD-2022-1005190 dm thin: fix use-after-free crash in dm_sm_register_threshold_callback

dm thin: fix use-after-free crash in dmsmregisterthresholdcallback This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.2 by commit...

7.3AI score
Exploits0
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.42 views

Oracle: Security Advisory (ELSA-2014-0475)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.2AI score0.10385EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2014/12/18 12:0 a.m.68 views

Scientific Linux Security Update : kernel on SL6.x i386/x86_64 (20141216)

A flaw was found in the way the Linux kernel's SCTP implementation handled malformed or duplicate Address Configuration Change Chunks ASCONF. A remote attacker could use either of these flaws to crash the system. CVE-2014-3673, CVE-2014-3687, Important - A flaw was found in the way the Linux...

7.8CVSS7AI score0.08579EPSS
Exploits15References9
Cent OS
Cent OS
added 2014/12/17 12:13 p.m.108 views

kernel, perf, python security update

CentOS Errata and Security Advisory CESA-2014:1997 Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System...

7.8CVSS6.6AI score0.08579EPSS
Exploits15References7
RedHat Linux
RedHat Linux
added 2014/12/16 7:12 p.m.55 views

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

7.8CVSS6.6AI score0.08579EPSS
Exploits15References8
Oracle linux
Oracle linux
added 2014/12/16 12:0 a.m.73 views

kernel security and bug fix update

2.6.32-504.3.3 - x86 traps: stop using IST for SS Petr Matousek 1172810 1172811 CVE-2014-9322 2.6.32-504.3.2 - md dm-thin: fix pooliohints to avoid looking at maxhwsectors Mike Snitzer 1161420 1161421 1142773 1145230 2.6.32-504.3.1 - s390 zcrypt: toleration of new crypto adapter hardware Hendrik...

7.8CVSS0.2AI score0.08579EPSS
Exploits15
Oracle linux
Oracle linux
added 2014/05/07 12:0 a.m.62 views

kernel security and bug fix update

2.6.32-431.17.1 - scsi qla2xxx: Fixup looking for a space in the outstandingcmds array in qla2x00allociocbs Chad Dupuis 1085660 1070856 - scsi isci: fix reset timeout handling David Milburn 1080600 1040393 - scsi isci: correct erroneous foreachiscihost macro David Milburn 1074855 1059325 - kernel...

10CVSS7.3AI score0.10385EPSS
Exploits3
Rows per page
Query Builder