Lucene search
K

5 matches found

OSV
OSV
added 2025/02/26 2:1 a.m.9 views

CVE-2022-49295 nbd: call genl_unregister_family() first in nbd_cleanup()

In the Linux kernel, the following vulnerability has been resolved: nbd: call genlunregisterfamily first in nbdcleanup Otherwise there may be race between module removal and the handling of netlink command, which can lead to the oops as shown below: BUG: kernel NULL pointer dereference, address:...

4.7CVSS4.9AI score0.00224EPSS
Exploits0References11
SUSE CVE
SUSE CVE
added 2024/05/23 2:56 a.m.4 views

SUSE CVE-2023-52837

In the Linux kernel, the following vulnerability has been resolved: nbd: fix uaf in nbdopen Commit 4af5f2e03013 "nbd: use blkmqallocdisk and blkcleanupdisk" cleans up disk by blkcleanupdisk and it won't set disk-privatedata as NULL as before. UAF may be triggered in nbdopen if someone tries to op...

6.7CVSS6.3AI score0.00248EPSS
Exploits0References15
SUSE CVE
SUSE CVE
added 2024/03/20 3:48 a.m.3 views

SUSE CVE-2024-26638

In the Linux kernel, the following vulnerability has been resolved: nbd: always initialize struct msghdr completely syzbot complains that msg-msggetinq value can be uninitialized 1 struct msghdr got many new fields recently, we should always make sure their values is zero by default. 1 BUG: KMSAN...

6.1CVSS6.8AI score0.00222EPSS
Exploits0References11
RedhatCVE
RedhatCVE
added 2024/02/29 9:2 a.m.25 views

CVE-2021-46981

In the Linux kernel, the following vulnerability has been resolved: nbd: Fix NULL pointer in flushworkqueue Open /dev/nbdX first, the configrefs will be 1 and the pointers in nbddevice are still null. Disconnect /dev/nbdX, then reference a null recvworkq. The protection by configrefs in...

4.4CVSS6.2AI score0.0025EPSS
Exploits0References4
OSV
OSV
added 2020/07/06 8:28 p.m.11 views

USN-4414-1 linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-4.15, linux-gcp, linux-gcp-4.15, linux-gke-4.15, linux-hwe, linux-kvm, linux-oem, linux-oracle, linux-raspi2, linux-snapdragon vulnerabilities

It was discovered that the network block device nbd implementation in the Linux kernel did not properly check for error conditions in some situations. An attacker could possibly use this to cause a denial of service system crash. CVE-2019-16089 It was discovered that the btrfs file system...

9.3CVSS6.7AI score0.04505EPSS
Exploits6References13
Rows per page
Query Builder