5 matches found
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: scsi: Reverted the behavior from “scsi: core: Do not increase scsidevice’s iorequestcnt if dispatch failed”. The use of “atomicinc&cmd-device-iorequestcnt” in scsiqueuerq would cause kernel panic, as cmd-device might be freed aft...
EUVD-2023-59999
In the Linux kernel, the following vulnerability has been resolved: soc: qcom: qmiencdec: Restrict string length in decode The QMI TLV value for strings in a lot of qmi element info structures account for null terminated strings with MAXLEN + 1. If a string is actually MAXLEN + 1 length, this wil...
Linux Distros Unpatched Vulnerability : CVE-2023-53609
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - scsi: Revert scsi: core: Do not increase scsidevice's iorequestcnt if dispatch failed The atomicinc&cmd-device-iorequestcnt in scsiqueuerq would cause kernel...
CVE-2023-53609
CVE-2023-53609 affects Linux kernel’s SCSI subsystem. The vulnerability stems from atomic_inc(&cmd->device->iorequest_cnt) in scsi_queue_rq(), which could access a freed scsi_device after scsi_dispatch_cmd() returns, risking kernel panic. The patch reverts the changes introduced by commit c...
CVE-2023-53609 scsi: Revert "scsi: core: Do not increase scsi_device's iorequest_cnt if dispatch failed"
In the Linux kernel, the following vulnerability has been resolved: scsi: Revert "scsi: core: Do not increase scsidevice's iorequestcnt if dispatch failed" The "atomicinc&cmd-device-iorequestcnt" in scsiqueuerq would cause kernel panic because cmd-device may be freed after returning from...