13 matches found
EUVD-2022-54630
Malicious code in bioql PyPI...
CVE-2022-49630
CVE-2022-49630: In the Linux kernel, a data-race around reading sysctl_tcp_ecn_fallback allows concurrent modification while being read. The issue is mitigated by adding READ_ONCE() to the reader, per the CVE description. This affects the kernel’s TCP/sysctl path and results in a data race that c...
CVE-2022-49607
CVE-2022-49607 concerns a data race in the Linux kernel between perf_event_set_output() and perf_mmap_close() in the perf/core subsystem. The root cause is a race where perf_mmap_close() holds e2->mmap_mutex while perf_event_set_output() holds e1->mmap_mutex, allowing no serialization and p...
CVE-2024-46704 workqueue: Fix spruious data race in __flush_work()
In the Linux kernel, the following vulnerability has been resolved: workqueue: Fix spruious data race in flushwork When flushing a work item for cancellation, flushwork knows that it exclusively owns the work item through its PENDING bit. 134874e2eee9 "workqueue: Allow cancelworksync and...
GSD-2022-1005746 net: Fix a data-race around sysctl_net_busy_read.
net: Fix a data-race around sysctlnetbusyread. This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.140 by commit...
GSD-2022-1000647 af_packet: fix data-race in packet_setsockopt / packet_setsockopt
afpacket: fix data-race in packetsetsockopt / packetsetsockopt This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.16.6 by commit...
GSD-2022-1000466 drop_monitor: fix data-race in dropmon_net_event / trace_napi_poll_hit
dropmonitor: fix data-race in dropmonnetevent / tracenapipollhit This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.25 by commit...
GSD-2022-1000087 af_packet: fix data-race in packet_setsockopt / packet_setsockopt
afpacket: fix data-race in packetsetsockopt / packetsetsockopt This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.300 by commit...
GSD-2021-1000962 perf: Fix data race between pin_count increment/decrement
perf: Fix data race between pincount increment/decrement This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.44 by commit...
UVI-2021-1000962 perf: Fix data race between pin_count increment/decrement
perf: Fix data race between pincount increment/decrement This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.44 by commit...
GSD-2021-1000902 perf: Fix data race between pin_count increment/decrement
perf: Fix data race between pincount increment/decrement This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.126 by commit...
GSD-2021-1000863 perf: Fix data race between pin_count increment/decrement
perf: Fix data race between pincount increment/decrement This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.237 by commit...
GSD-2021-1000847 perf: Fix data race between pin_count increment/decrement
perf: Fix data race between pincount increment/decrement This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.273 by commit...