CVE-2022-49771

In the Linux kernel, the following vulnerability has been resolved: dm ioctl: fix misbehavior if listversions races with module loading listversions will first estimate the required space using the "dmtargetiteratelistversiongetneeded, &needed" call and then will fill the space using the...

UBUNTU-CVE-2022-49849

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix match incorrectly in devargsmatchdevice syzkaller found a failed assertion: assertion failed: args-devid != u64-1 || args-missing, in fs/btrfs/volumes.c:6921 This can be triggered when we set devid to u64-1 by ioctl. I...

CVE-2022-49849

CVE-2022-49849 fixes a Linux kernel flaw in the Btrfs dev_args_match_device path. When devid is set to (u64)-1 via ioctl, the match of devid may be skipped and device matching may succeed incorrectly. The issue was introduced by a patch that added the function used to match devices; the two match...

CVE-2022-49788 misc/vmw_vmci: fix an infoleak in vmci_host_do_receive_datagram()

In the Linux kernel, the following vulnerability has been resolved: misc/vmwvmci: fix an infoleak in vmcihostdoreceivedatagram struct vmcieventqp allocated by qpnotifypeer contains padding, which may carry uninitialized data to the userspace, as observed by KMSAN: BUG: KMSAN: kernel-infoleak in...

CVE-2022-49771

In the Linux kernel, the following vulnerability has been resolved: dm ioctl: fix misbehavior if listversions races with module loading listversions will first estimate the required space using the "dmtargetiteratelistversiongetneeded, &needed" call and then will fill the space using the...

CVE-2022-49771 dm ioctl: fix misbehavior if list_versions races with module loading

In the Linux kernel, the following vulnerability has been resolved: dm ioctl: fix misbehavior if listversions races with module loading listversions will first estimate the required space using the "dmtargetiteratelistversiongetneeded, &needed" call and then will fill the space using the...

CVE-2022-49771

CVE-2022-49771 affects the Linux kernel’s dm-thin/ioctl path. The vulnerability arises when __list_versions uses dm_target_iterate twice under race conditions between the first size estimation and the second information retrieval, allowing module loading to occur between the two calls. The second...

CVE-2022-49771 dm ioctl: fix misbehavior if list_versions races with module loading

In the Linux kernel, the following vulnerability has been resolved: dm ioctl: fix misbehavior if listversions races with module loading listversions will first estimate the required space using the "dmtargetiteratelistversiongetneeded, &needed" call and then will fill the space using the...

DEBIAN-CVE-2025-37741

In the Linux kernel, the following vulnerability has been resolved: jfs: Prevent copying of nlink with value 0 from disk inode syzbot report a deadlock in diFree. 1 When calling "ioctl$LOOPSETSTATUS64", the offset value passed in is 4, which does not match the mounted loop device, causing the...

UBUNTU-CVE-2025-37741

In the Linux kernel, the following vulnerability has been resolved: jfs: Prevent copying of nlink with value 0 from disk inode syzbot report a deadlock in diFree. 1 When calling "ioctl$LOOPSETSTATUS64", the offset value passed in is 4, which does not match the mounted loop device, causing the...

PT-2025-18488 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A bug in the Linux kernel's dm ioctl has been resolved. The issue occurs when the list versions function estimates the required space using the dm target iteratelist version get needed...

PT-2025-17544 · Unknown · Rollback Rx Professional

Name of the Vulnerable Software and Affected Versions: Rollback Rx Professional version 12.8.0.0 Description: The issue allows local users to cause a denial of service due to a null pointer dereference from IOCtl 0x96202000 in the driver file shieldm.sys. Recommendations: For Rollback Rx...

AZL-62702 CVE-2025-22111 affecting package kernel for versions less than 6.6.121.1-1

In the Linux kernel, the following vulnerability has been resolved: net: Remove RTNL dance for SIOCBRADDIF and SIOCBRDELIF. SIOCBRDELIF is passed to devioctl first and later forwarded to brioctlcall, which causes unnecessary RTNL dance and the splat below 0 under RTNL pressure. Let's say Thread A...

CVE-2025-22111

In the Linux kernel, the following vulnerability has been resolved: net: Remove RTNL dance for SIOCBRADDIF and SIOCBRDELIF. SIOCBRDELIF is passed to devioctl first and later forwarded to brioctlcall, which causes unnecessary RTNL dance and the splat below 0 under RTNL pressure. Let's say Thread A...

CVE-2025-22019

In the Linux kernel, the following vulnerability has been resolved: bcachefs: bch2ioctlsubvolumedestroy fixes bch2evictsubvolumeinodes was getting stuck - due to incorrectly pruning the dcache. Also, fix missing permissions checks...

CVE-2022-43590

A null pointer dereference vulnerability exists in the handleioctl0x830a0systembuffer functionality of Callback technologies CBFS Filter 20.0.8317. A specially crafted I/O request packet IRP can lead to denial of service. An attacker can issue an ioctl to trigger this vulnerability...

The vulnerability of the Linux operating system’s Bluetooth kernel component, which allows a hacker to trigger a service failure

The vulnerability of the Linux operating system’s Bluetooth kernel component is related to incorrect blocking of resources in the function rfcommsockioctl. Exploiting this vulnerability can allow an attacker to cause a service failure...

Vulnerability of the rtw_wx_read32() function in the drivers/staging/r8188eu/os_dep/ioctl_linux.c module – supports additional devices in the Linux operating system, allowing an attacker to cause a service failure.

Vulnerability of the rtwwxread32 function in the drivers/staging/r8188eu/osdep/ioctllinux.c module – Support for additional devices in the Linux operating system involves uncontrolled resource consumption. Exploiting this vulnerability could allow an attacker to cause service failures...

Vulnerability of the vt_ioctl() function in the drivers/tty/vt/vt_ioctl.c module – The console support driver for the Linux kernel allows a hacker to cause a service failure.

Vulnerability of the vtioctl function in the drivers/tty/vt/vtioctl.c module – The driver for supporting TTY consoles in Linux operating systems is vulnerable to integer overflow or cyclic shift attacks. Exploiting this vulnerability could allow an attacker to cause a service failure...

CVE-2024-49848

Memory corruption while processing multiple IOCTL calls from HLOS to DSP...