109 matches found
Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15
In the Linux kernel, the following vulnerabilities have been resolved: bpf: Address the issue reported by KCSAN regarding bpflrulist. KCSAN reported a data-race when accessing node-ref. Although node-ref doesn’t need to be accurate, take this opportunity to use a more common READONCE and WRITEONC...
Astra Linux - уязвимость в linux-5.10, linux, linux-5.15
In the Linux kernel, the following vulnerability has been resolved: net: tunnels: annotate lockless accesses to dev-neededheadroom IP tunnels can apparently update dev-neededheadroom in their xmit path. This patch takes care of three tunnels xmit, and also the core LLRESERVEDSPACE and...
Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: media: v4l2-m2m: added a lock to protect the numrdy parameter. An error occurs when using KCSAN to check the driver. A lock was added to protect the numrdy parameter when retrieving its value using the functions:...
Astra Linux - уязвимость в linux, linux-5.15, linux-5.10
In the Linux kernel, the following vulnerability has been resolved: net: Fix load-tearing on sk-skstamp in sockrecvcmsgs. KCSAN found a data race in sockrecvcmsgs where the read access to sk-skstamp needs READONCE. BUG: KCSAN: data-race in packetrecvmsg / packetrecvmsg write marked to...
Astra Linux - уязвимость в linux-6.1
In the Linux kernel, the following vulnerabilities have been resolved: mm: kmem: fixed a NULL pointer dereference in objstockflushrequired KCSAN identified an issue in objstockFlushRequired: stock-cachedobjcg can be reset between the check and dereference...
SUSE CVE-2023-54302
In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Fix data race on CQP completion stats CQP completion statistics is read lockesly in irdmawaitevent and irdmacheckcqpprogress while it can be updated in the completion thread irdmascccqgetcqeinfo on another CPU as KCSA...
EUVD-2023-60415
In the Linux kernel, the following vulnerability has been resolved: afunix: Fix data races around sk-skshutdown. KCSAN found a data race around sk-skshutdown where unixreleasesock and unixshutdown update it under unixstatelock, OTOH unixpoll and unixdgrampoll read it locklessly. We need to annota...
CVE-2023-54292
In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Fix data race on CQP request done KCSAN detects a data race on cqprequest-requestdone memory location which is accessed locklessly in irdmahandlecqpop while being updated in irdmacqpcehandler. Annotate lockless intent...
CVE-2023-54292
CVE-2023-54292: In the Linux kernel, a data race was fixed in RDMA/irdma handling of CQP requests. KCSAN showed a race on cqp_request->request_done; the fix annotates lockless access with READ_ONCE/WRITE_ONCE to avoid compiler optimizations and warnings. Public details in the initial descripti...
CVE-2023-54283
CVE-2023-54283 is a Linux kernel vulnerability related to a data-race in the BPF LRU list code. Kernel Concurrency Sanitizer detected a race on accessing node->ref in __bpf_lru_list_rotate/__htab_lru_percpu_map_update_elem, leading to a write of 1 byte and a read of 1 byte across CPUs. The fix...
SUSE CVE-2025-68336
In the Linux kernel, the following vulnerability has been resolved: locking/spinlock/debug: Fix data-race in dorawwritelock KCSAN reports: BUG: KCSAN: data-race in dorawwritelock / dorawwritelock write marked to 0xffff800009cf504c of 4 bytes by task 1102 on cpu 1: dorawwritelock+0x120/0x204...
UBUNTU-CVE-2025-68336
In the Linux kernel, the following vulnerability has been resolved: locking/spinlock/debug: Fix data-race in dorawwritelock KCSAN reports: BUG: KCSAN: data-race in dorawwritelock / dorawwritelock write marked to 0xffff800009cf504c of 4 bytes by task 1102 on cpu 1: dorawwritelock+0x120/0x204...
EUVD-2023-60086
In the Linux kernel, the following vulnerability has been resolved: kcsan: Avoid READONCE in readinstrumentedmemory Haibo Li reported: | Unable to handle kernel paging request at virtual address | ffffff802a0d8d7171 | Mem abort info:o: | ESR = 0x9600002121 | EC = 0x25: DABT current EL, IL = 32...
CVE-2023-53742
In the Linux kernel, the following vulnerability has been resolved: kcsan: Avoid READONCE in readinstrumentedmemory Haibo Li reported: | Unable to handle kernel paging request at virtual address | ffffff802a0d8d7171 | Mem abort info:o: | ESR = 0x9600002121 | EC = 0x25: DABT current EL, IL = 32...
DEBIAN-CVE-2023-53742
In the Linux kernel, the following vulnerability has been resolved: kcsan: Avoid READONCE in readinstrumentedmemory Haibo Li reported: | Unable to handle kernel paging request at virtual address | ffffff802a0d8d7171 | Mem abort info:o: | ESR = 0x9600002121 | EC = 0x25: DABT current EL, IL = 32...
CVE-2023-53742
The CVE-2023-53742 entry concerns the Linux kernel vulnerability in kcsan: avoiding READ_ONCE() in read_instrumented_memory(). The root cause is that on certain arm64 configurations, READ_ONCE() can be promoted to an atomic acquire that cannot handle unaligned addresses, leading to a crash (Oops)...
CVE-2023-53742 kcsan: Avoid READ_ONCE() in read_instrumented_memory()
In the Linux kernel, the following vulnerability has been resolved: kcsan: Avoid READONCE in readinstrumentedmemory Haibo Li reported: | Unable to handle kernel paging request at virtual address | ffffff802a0d8d7171 | Mem abort info:o: | ESR = 0x9600002121 | EC = 0x25: DABT current EL, IL = 32...
Linux Distros Unpatched Vulnerability : CVE-2023-53742
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - kcsan: Avoid READONCE in readinstrumentedmemory Haibo Li reported: | Unable to handle kernel paging request at virtual address | ffffff802a0d8d7171 | Mem abort...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from kcsan's use of READONCE in readinstrumentedmemory, which could lead to an alignment error...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990354)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990354 advisory. In the Linux kernel, the following vulnerability has been resolved: kcsan: Turn reportfilterlistlock into a rawspinlock Ran Xiaokai reports that with a KCSAN-enabled...