CVE-2025-38004 can: bcm: add locking for bcm_op runtime updates

In the Linux kernel, the following vulnerability has been resolved: can: bcm: add locking for bcmop runtime updates The CAN broadcast manager CAN BCM can send a sequence of CAN frames via hrtimer. The content and also the length of the sequence can be changed resp reduced at runtime where the...

Linux Distros Unpatched Vulnerability : CVE-2024-57894

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcicore: Fix sleeping function called from invalid context This reworks hcicblist...

Linux Distros Unpatched Vulnerability : CVE-2025-21809

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: rxrpc, afs: Fix peer hash locking vs RCU callback In its address list, afs now retains...

Linux Distros Unpatched Vulnerability : CVE-2024-49943

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: drm/xe/gucsubmit: add missing locking in wedgedfini Any non-wedged queue can have a zero...

Linux Distros Unpatched Vulnerability : CVE-2024-36012

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Bluetooth: msft: fix slab-use-after-free in msftdoclose Tying the msft-data lifetime to hdev by freeing it in hcireleasedev to fix the following case: use...

Linux Distros Unpatched Vulnerability : CVE-2024-40980

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - dropmonitor: replace spinlock by rawspinlock tracedropcommon is called with preemption disabled, and it acquires a spinlock. This is problematic for RT kernels...

Linux Distros Unpatched Vulnerability : CVE-2021-47494

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: cfg80211: fix management registrations locking The management registrations locking was...

Linux Distros Unpatched Vulnerability : CVE-2021-47449

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ice: fix locking for Tx timestamp tracking flush Commit 4dd0d5c33c3e ice: add lock around Tx...

CVE-2021-47632 powerpc/set_memory: Avoid spinlock recursion in change_page_attr()

In the Linux kernel, the following vulnerability has been resolved: powerpc/setmemory: Avoid spinlock recursion in changepageattr Commit 1f9ad21c3b38 "powerpc/mm: Implement setmemory routines" included a spinlock to changepageattr in order to safely perform the three step operations. But then...

SUSE CVE-2024-56610

In the Linux kernel, the following vulnerability has been resolved: kcsan: Turn reportfilterlistlock into a rawspinlock Ran Xiaokai reports that with a KCSAN-enabled PREEMPTRT kernel, we can see splats like: | BUG: sleeping function called from invalid context at kernel/locking/spinlockrt.c:48 |...

kernel: sctp: Fix null-ptr-deref in reuseport_add_sock().

In the Linux kernel, the following vulnerability has been resolved: sctp: Fix null-ptr-deref in reuseportaddsock. syzbot reported a null-ptr-deref while accessing sk2-skreuseportcb in reuseportaddsock. 0 The repro first creates a listener with SOREUSEPORT. Then, it creates another listener on the...

The vulnerability of the queued_spin_lock_slowpath() function in the qspinlock component of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the queuedspinlockslowpath function in the qspinlock component of the Linux operating system’s kernel is related to improper locking of resources. Exploiting this vulnerability could allow an attacker to cause a service failure...

DEBIAN-CVE-2024-45024

In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: fix hugetlb vs. core-mm PT locking We recently made GUP's common page table walking code to also walk hugetlb VMAs without most hugetlb special-casing, preparing for the future of having less hugetlb-specific page tab...

CVE-2024-45017 net/mlx5: Fix IPsec RoCE MPV trace call

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix IPsec RoCE MPV trace call Prevent the call trace below from happening, by not allowing IPsec creation over a slave, if master device doesn't support IPsec. WARNING: CPU: 44 PID: 16136 at kernel/locking/rwsem.c:240...

SUSE CVE-2022-48874

In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: Fix use-after-free and race in fastrpcmapfind Currently, there is a race window between the point when the mutex is unlocked in fastrpcmaplookup and the reference count increasing fastrpcmapget in fastrpcmapfind,...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. Linux kernel has a security vulnerability that originates from kernel locking...

kernel: tracing: Fix sleeping function called from invalid context on RT kernel

In the Linux kernel, the following vulnerability has been resolved: tracing: Fix sleeping function called from invalid context on RT kernel When setting bootparams="traceevent=initcall:initcallstart tpprintk=1" in the cmdline, the outputprintk was called, and the spinlockirqsave was called in the...

CVE-2022-48634 drm/gma500: Fix BUG: sleeping function called from invalid context errors

In the Linux kernel, the following vulnerability has been resolved: drm/gma500: Fix BUG: sleeping function called from invalid context errors gmacrtcpageflip was holding the eventlock spinlock while calling crtcfuncs-modesetbase which takes wwmutex. The only reason to hold eventlock is to clear...

CVE-2024-26854 ice: fix uninitialized dplls mutex usage

In the Linux kernel, the following vulnerability has been resolved: ice: fix uninitialized dplls mutex usage The pf-dplls.lock mutex is initialized too late, after its first use. Move it to the top of icedpllinit. Note that the "errexit" error path destroys the mutex. And the mutex is the last...

kernel: ASoC: soc-compress: Reposition and add pcm_mutex

A locking issue was found in the ASoC ALSA SoC compressed audio subsystem in the Linux kernel. When DPCM Dynamic PCM compressed streams are started, several functions access resources without properly holding the card-pcmmutex lock. This triggers lock assertion warnings and can cause kernel panic...