Lucene search
K

110 matches found

OSV
OSV
added 2024/10/09 2:15 p.m.2 views

UBUNTU-CVE-2024-47660

In the Linux kernel, the following vulnerability has been resolved: fsnotify: clear PARENTWATCHED flags lazily In some setups directories can have many usually negative dentries. Hence fsnotifyupdatechilddentryflags function can take a significant amount of time. Since the bulk of this function...

4.7CVSS6.5AI score0.00159EPSS
Exploits0References18
CVE
CVE
added 2024/10/09 2:2 p.m.165 views

CVE-2024-47660

CVE-2024-47660 : Linux kernel fsnotify race causing lock contention. When removing watches on a directory with many dentries, __fsnotify_update_child_dentry_flags() races with __fsnotify_parent() on children, risking softlockup reports. The fix, per the bulletin, is to set PARENT_WATCHED only whe...

4.7CVSS6.4AI score0.00159EPSS
Exploits0References9Affected Software1
Debian CVE
Debian CVE
added 2024/10/09 2:2 p.m.8 views

CVE-2024-47660

In the Linux kernel, the following vulnerability has been resolved: fsnotify: clear PARENTWATCHED flags lazily In some setups directories can have many usually negative dentries. Hence fsnotifyupdatechilddentryflags function can take a significant amount of time. Since the bulk of this function...

4.7CVSS5.7AI score0.00159EPSS
Exploits0
OSV
OSV
added 2024/10/09 2:2 p.m.15 views

CVE-2024-47660 fsnotify: clear PARENT_WATCHED flags lazily

In the Linux kernel, the following vulnerability has been resolved: fsnotify: clear PARENTWATCHED flags lazily In some setups directories can have many usually negative dentries. Hence fsnotifyupdatechilddentryflags function can take a significant amount of time. Since the bulk of this function...

4.7CVSS6AI score0.00159EPSS
Exploits0References12
Vulnrichment
Vulnrichment
added 2024/10/09 2:2 p.m.14 views

CVE-2024-47660 fsnotify: clear PARENT_WATCHED flags lazily

In the Linux kernel, the following vulnerability has been resolved: fsnotify: clear PARENTWATCHED flags lazily In some setups directories can have many usually negative dentries. Hence fsnotifyupdatechilddentryflags function can take a significant amount of time. Since the bulk of this function...

6.9AI score0.00159EPSS
Exploits0References6
Cvelist
Cvelist
added 2024/10/09 2:2 p.m.17 views

CVE-2024-47660 fsnotify: clear PARENT_WATCHED flags lazily

In the Linux kernel, the following vulnerability has been resolved: fsnotify: clear PARENTWATCHED flags lazily In some setups directories can have many usually negative dentries. Hence fsnotifyupdatechilddentryflags function can take a significant amount of time. Since the bulk of this function...

0.00159EPSS
Exploits0References6
Oracle linux
Oracle linux
added 2024/09/12 12:0 a.m.376 views

Unbreakable Enterprise kernel security update

5.15.0-210.163.7 - crypto: qat - specify firmware files for 402xx Giovanni Cabiddu Orabug: 37030280 5.15.0-210.163.6 - Revert 'Fix userfaultfdapi to return EINVAL as expected' Vijayendra Suman Orabug: 37004422 5.15.0-210.163.5 - Revert 'bpf: Allow reads from uninit stack' Vijayendra Suman Orabug:...

7.8CVSS10AI score0.00478EPSS
Exploits1
Oracle linux
Oracle linux
added 2024/09/11 12:0 a.m.38 views

Unbreakable Enterprise kernel-container security update

5.4.17-2136.335.4.el8 - mm: memcg/slab: enable kmalloc-cg- caches for x8664. Imran Khan Orabug: 36951041 - printk: add kthread for long-running print Stephen Brennan Orabug: 36456582 - kdb: Use the passed prompt in kdbpositioncursor Douglas Anderson - driver core: Fix ueventshow vs driver detach...

7.8CVSS9.6AI score0.00675EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2024/09/11 12:0 a.m.43 views

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel-container (ELSA-2024-12612)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12612 advisory. 5.4.17-2136.335.4.el8 - mm: memcg/slab: enable kmalloc-cg- caches for x8664. Imran Khan Orabug: 36951041 - printk: add kthread for long-running...

7.8CVSS7.5AI score0.00675EPSS
Exploits1References86
Rockylinux
Rockylinux
added 2024/08/21 2:52 p.m.124 views

kernel security update

An update is available for kernel. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The kernel packages contain the Linux kernel, the core of any Linux operating...

9.8CVSS8.3AI score0.08555EPSS
Exploits3
RedHat Linux
RedHat Linux
added 2023/11/07 9:3 a.m.3 views

kernel: io_uring/rw: defer fsnotify calls to task context

A locking context violation was found in the Linux kernel's iouring subsystem. The fsnotify calls were being made directly from kiocb completion context, which can execute in soft or hard IRQ context. This causes lockdep warnings when fsnotify attempts memory allocation with GFPKERNEL flags, whic...

5.8AI score0.00167EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2023/09/07 12:0 a.m.15 views

Oracle Linux 7 : ELSA-2017-2473-1: / kernel (ELSA-2017-24731)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2017-24731 advisory. - Race condition in the fsnotify implementation in the Linux kernel through 4.12.4 allows local users to gain privileges or cause a denial of service memory...

6.5AI score0.01223EPSS
Exploits3References2
SUSE CVE
SUSE CVE
added 2023/02/15 4:47 a.m.3 views

SUSE CVE-2017-7533

Race condition in the fsnotify implementation in the Linux kernel through 4.12.4 allows local users to gain privileges or cause a denial of service memory corruption via a crafted application that leverages simultaneous execution of the inotifyhandleevent and vfsrename functions...

7.4CVSS6.5AI score0.01223EPSS
Exploits3References47
OSV
OSV
added 2022/11/14 6:39 p.m.11 views

GSD-2022-1006797 io_uring/rw: defer fsnotify calls to task context

iouring/rw: defer fsnotify calls to task context This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.3 by commit...

7.2AI score
Exploits0
Positive Technologies
Positive Technologies
added 2022/11/14 12:0 a.m.4 views

PT-2022-35052 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.3 Description: The issue is related to the io uring/rw component, where fsnotify calls are not properly deferred to the task context. This could potentially lead to security vulnerabilities, although the...

7.2AI score
Exploits0References1
OSV
OSV
added 2022/06/28 8:12 p.m.6 views

GSD-2022-1004016 fsnotify: fix wrong lockdep annotations

fsnotify: fix wrong lockdep annotations This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.283 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/06/28 7:49 p.m.7 views

GSD-2022-1003799 fsnotify: fix wrong lockdep annotations

fsnotify: fix wrong lockdep annotations This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.198 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/06/28 7:34 p.m.8 views

GSD-2022-1003639 fsnotify: fix wrong lockdep annotations

fsnotify: fix wrong lockdep annotations This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.121 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/06/28 7:14 p.m.9 views

GSD-2022-1003426 fsnotify: fix wrong lockdep annotations

fsnotify: fix wrong lockdep annotations This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.46 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2022/06/28 6:48 p.m.9 views

GSD-2022-1003134 fsnotify: fix wrong lockdep annotations

fsnotify: fix wrong lockdep annotations This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.14 by commit...

7.2AI score
Exploits0
Rows per page
Query Builder