3 matches found
EUVD-2026-26653
In the Linux kernel, the following vulnerability has been resolved: scsi: target: tcmloop: Drain commands in targetreset handler tcmlooptargetreset violates the SCSI EH contract: it returns SUCCESS without draining any in-flight commands. The SCSI EH documentation scsieh.rst requires that when a...
CVE-2026-43054
CVE-2026-43054 concerns the Linux kernel SCSI target core (tcm_loop). The vulnerability stems from tcm_loop_target_reset() not draining in-flight commands, which can cause SCSI EH to reuse in-flight scsi_cmnd structures and leak LUN references, potentially hanging configfs LUN unlink. The fix dra...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: virtio-blk: Do not keep the queue frozen during system suspension. The commit 4ce6e2db00de “virtio-blk: Ensure no requests are in the virtqueues before deleting the vqs.” replaces “queue quiesce” with “queue freeze” in virtio-blk...