Lucene search
K

23 matches found

Debian CVE
Debian CVE
added 2025/12/30 12:11 p.m.4 views

CVE-2023-54242

In the Linux kernel, the following vulnerability has been resolved: block, bfq: Fix division by zero error on zero wsum When the weighted sum is zero the calculation of limit causes a division by zero error. Fix this by continuing to the next level. This was discovered by running as root: stress-...

5.2AI score0.00166EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/10/08 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2022-50488

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - block, bfq: fix possible uaf for 'bfqq-bic' Our test report a uaf for 'bfqq-bic' in 5.10: ================================================================== BUG...

7.8CVSS7.1AI score0.00153EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.4 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987315)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987315 advisory. In the Linux kernel, the following vulnerability has been resolved: bfq: Make sure bfqg for which we are queueing requests is online Bios queued into BFQ IO schedule...

7.8CVSS5.7AI score0.00281EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-54818

Malicious code in bioql PyPI...

7.8CVSS5.8AI score0.00281EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-55526

Malicious code in bioql PyPI...

6.3AI score0.00153EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.5 views

The vulnerability of the `bfq_choose_req()` function in the `block/bfq-iosched.c` module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the bfqchoosereq function in the block/bfq-iosched.c module of the Linux operating system is related to the repeated use of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...

7.8CVSS6.9AI score0.00238EPSS
Exploits0References15Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/04/14 12:0 a.m.9 views

The vulnerability of the bfq_setup_merge() function in the block/bfq-iosched.c module exposes the block-level kernel support of the Linux operating system, allowing attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the bfqsetupmerge function in the block/bfq-iosched.c module related to Linux kernel’s block-level support involves the reutilization of previously freed memory. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibilit...

7.8CVSS6.2AI score0.00254EPSS
Exploits0References19Affected Software3
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2022-49411

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bfq: Make sure bfqg for which we are queueing requests is online Bios queued into BFQ IO scheduler can be associated with a cgroup that was already offlined. Th...

7.8CVSS6.7AI score0.00281EPSS
Exploits0References3
NVD
NVD
added 2025/02/26 7:1 a.m.7 views

CVE-2022-49411

In the Linux kernel, the following vulnerability has been resolved: bfq: Make sure bfqg for which we are queueing requests is online Bios queued into BFQ IO scheduler can be associated with a cgroup that was already offlined. This may then cause insertion of this bfqgroup into a service tree. But...

7.8CVSS0.00281EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2025/02/26 2:12 a.m.7 views

CVE-2022-49411

In the Linux kernel, the following vulnerability has been resolved: bfq: Make sure bfqg for which we are queueing requests is online Bios queued into BFQ IO scheduler can be associated with a cgroup that was already offlined. This may then cause insertion of this bfqgroup into a service tree. But...

7.8CVSS5.4AI score0.00281EPSS
Exploits0
CVE
CVE
added 2025/02/26 2:12 a.m.103 views

CVE-2022-49411

The CVE-2022-49411 entry describes a Linux kernel BFQ IO scheduler issue where bios queued to a bfq_group tied to an offline cgroup could be inserted into the service tree and be freed when the last bio completes, causing a use-after-free. The documented fix is to always operate on an online bfq_...

7.8CVSS5.5AI score0.00281EPSS
Exploits0References6Affected Software1
Vulnrichment
Vulnrichment
added 2025/02/26 2:12 a.m.8 views

CVE-2022-49411 bfq: Make sure bfqg for which we are queueing requests is online

In the Linux kernel, the following vulnerability has been resolved: bfq: Make sure bfqg for which we are queueing requests is online Bios queued into BFQ IO scheduler can be associated with a cgroup that was already offlined. This may then cause insertion of this bfqgroup into a service tree. But...

7.2AI score0.00281EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/02/26 2:12 a.m.13 views

CVE-2022-49411 bfq: Make sure bfqg for which we are queueing requests is online

In the Linux kernel, the following vulnerability has been resolved: bfq: Make sure bfqg for which we are queueing requests is online Bios queued into BFQ IO scheduler can be associated with a cgroup that was already offlined. This may then cause insertion of this bfqgroup into a service tree. But...

0.00281EPSS
Exploits0References6
OSV
OSV
added 2025/02/26 2:12 a.m.10 views

CVE-2022-49411 bfq: Make sure bfqg for which we are queueing requests is online

In the Linux kernel, the following vulnerability has been resolved: bfq: Make sure bfqg for which we are queueing requests is online Bios queued into BFQ IO scheduler can be associated with a cgroup that was already offlined. This may then cause insertion of this bfqgroup into a service tree. But...

7.8CVSS5.3AI score0.00281EPSS
Exploits0References9
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.3 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: Block, bfq: Fixed a possible UAF issue for bfqq-bic when using the merge chain. 1 Initial state: Three tasks: - Process 1 Process 2 Process 3 - BIC1 BIC2 BIC3 | Λ | Λ | Λ | | | | | V | V | V bfqq1 bfqq2 bfqq3 Process reference...

5.5CVSS6.5AI score0.00236EPSS
Exploits0References3
OSV
OSV
added 2025/01/19 11:15 a.m.12 views

AZL-56315 CVE-2025-21631 affecting package kernel for versions less than 6.6.76.1-1

In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix wakerbfqq UAF after bfqsplitbfqq Our syzkaller report a following UAF for v6.6: BUG: KASAN: slab-use-after-free in bfqinitrq+0x175d/0x17a0 block/bfq-iosched.c:6958 Read of size 8 at addr ffff8881b57147d8 by task...

7.8CVSS6.7AI score0.00206EPSS
Exploits0References1
OSV
OSV
added 2025/01/19 11:15 a.m.3 views

DEBIAN-CVE-2025-21631

In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix wakerbfqq UAF after bfqsplitbfqq Our syzkaller report a following UAF for v6.6: BUG: KASAN: slab-use-after-free in bfqinitrq+0x175d/0x17a0 block/bfq-iosched.c:6958 Read of size 8 at addr ffff8881b57147d8 by task...

7.8CVSS5.8AI score0.00206EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/27 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates in the block, bfq module where the bfqlimitdepth function accesses bfqq unlocked, which could lead to reuse...

7.8CVSS6.9AI score0.00238EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/04/30 9:57 a.m.4 views

kernel: block, bfq: Fix division by zero error on zero wsum

A division by zero error was found in the BFQ I/O scheduler. When the weighted sum of I/O priorities becomes zero, the limit calculation divides by zero, causing a kernel crash...

5.7AI score0.00166EPSS
Exploits0References5
Microsoft CVE
Microsoft CVE
added 2020/09/25 7:0 a.m.10 views

An issue was discovered in the Linux kernel before 5.6.5. There is a use-after-free in block/bfq-iosched.c related to bfq_idle_slice_timer_body.

...

7.8CVSS7AI score0.00711EPSS
Exploits0
Rows per page
Query Builder