16 matches found
Astra Linux - уязвимость в linux-5.15, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: scsi: elx: libefc: Fixed potential use after free in efcnportvportdel The krefput function will call nport-release if the reference count drops to zero. The nport-release function is efcnportfree, which frees the “nport” object...
Astra Linux - уязвимость в linux-5.10, linux-5.15, linux
In the Linux kernel, the following vulnerability has been resolved: arm64: compat: Do not treat the syscall number as ESRELx for a bad syscall. If a compatible process attempts to execute an unknown system call that exceeds the ARMNRCOMPATEND number, the kernel sends a SIGILL signal to the...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from treating an unknown system call number as an ESRELx value, which could result in a print error exception...
SUSE CVE-2024-49852
In the Linux kernel, the following vulnerability has been resolved: scsi: elx: libefc: Fix potential use after free in efcnportvportdel The krefput function will call nport-release if the refcount drops to zero. The nport-release release function is efcnportfree which frees "nport". But then we...
CVE-2024-49852
In the Linux kernel, the following vulnerability has been resolved: scsi: elx: libefc: Fix potential use after free in efcnportvportdel The krefput function will call nport-release if the refcount drops to zero. The nport-release release function is efcnportfree which frees "nport". But then we...
CVE-2024-49852
In the Linux kernel, the following vulnerability has been resolved: scsi: elx: libefc: Fix potential use after free in efcnportvportdel The krefput function will call nport-release if the refcount drops to zero. The nport-release release function is efcnportfree which frees "nport". But then we...
AZL-50739 CVE-2024-49852 affecting package kernel for versions less than 5.15.173.1-1
In the Linux kernel, the following vulnerability has been resolved: scsi: elx: libefc: Fix potential use after free in efcnportvportdel The krefput function will call nport-release if the refcount drops to zero. The nport-release release function is efcnportfree which frees "nport". But then we...
DEBIAN-CVE-2024-49852
In the Linux kernel, the following vulnerability has been resolved: scsi: elx: libefc: Fix potential use after free in efcnportvportdel The krefput function will call nport-release if the refcount drops to zero. The nport-release release function is efcnportfree which frees "nport". But then we...
CVE-2024-49852 scsi: elx: libefc: Fix potential use after free in efc_nport_vport_del()
In the Linux kernel, the following vulnerability has been resolved: scsi: elx: libefc: Fix potential use after free in efcnportvportdel The krefput function will call nport-release if the refcount drops to zero. The nport-release release function is efcnportfree which frees "nport". But then we...
CVE-2024-49852 scsi: elx: libefc: Fix potential use after free in efc_nport_vport_del()
In the Linux kernel, the following vulnerability has been resolved: scsi: elx: libefc: Fix potential use after free in efcnportvportdel The krefput function will call nport-release if the refcount drops to zero. The nport-release release function is efcnportfree which frees "nport". But then we...
CVE-2024-49852
CVE-2024-49852 affects Linux kernel SCSI/ELX libefc code, where a use-after-free occurs in efc_nport_vport_del() due to dereferencing nport after its release. The root cause is that kref_put() may call nport->release (_efc_nport_free()) which frees nport, but the code subsequently dereferences...
Linux kernel 资源管理错误漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a post-release reuse issue in the efcnportvportdel function in the scsi:elx:libefc subsystem...
GSD-2023-1000967 scsi: elx: libefc: Fix second parameter type in state callbacks
scsi: elx: libefc: Fix second parameter type in state callbacks This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.86 by commit...
CVE-2018-16252
FsPro Labs Event Log Explorer 4.6.1.2115 has ".elx" FileType XML External Entity Injection...
CVE-2018-16252
FsPro Labs Event Log Explorer 4.6.1.2115 has ".elx" FileType XML External Entity Injection...
CVE-2018-16252
FsPro Labs Event Log Explorer 4.6.1.2115 has ".elx" FileType XML External Entity Injection...