5 matches found
Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: blk-mq: The crypto keyslot must be released before reporting I/O completion. Once all I/O operations using the blkcryptokey are completed, the file systems can call blkcryptoevictkey. However, the block layer currently does not...
UBUNTU-CVE-2023-53810
In the Linux kernel, the following vulnerability has been resolved: blk-mq: release crypto keyslot before reporting I/O complete Once all I/O using a blkcryptokey has completed, filesystems can call blkcryptoevictkey. However, the block layer currently doesn't call blkcryptoputkeyslot until the...
SUSE CVE-2023-53536
In the Linux kernel, the following vulnerability has been resolved: blk-crypto: make blkcryptoevictkey more robust If blkcryptoevictkey sees that the key is still in-use due to a bug or that -keyslotevict failed, it currently just returns while leaving the key linked into the keyslot management...
UBUNTU-CVE-2023-53536
In the Linux kernel, the following vulnerability has been resolved: blk-crypto: make blkcryptoevictkey more robust If blkcryptoevictkey sees that the key is still in-use due to a bug or that -keyslotevict failed, it currently just returns while leaving the key linked into the keyslot management...
PT-2025-40678
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The blk crypto evict key function in the Linux kernel could lead to a use-after-free condition in blk crypto reprogram all keys if the key is still in use or if the keyslot evict operati...