4 matches found
SUSE CVE-2022-50432
In the Linux kernel, the following vulnerability has been resolved: kernfs: fix use-after-free in kernfsremove Syzkaller managed to trigger concurrent calls to kernfsremovebynamens for the same file resulting in a KASAN detected use-after-free. The race occurs when the root node is freed during...
CVE-2022-50432
In the Linux kernel, the following vulnerability has been resolved: kernfs: fix use-after-free in kernfsremove Syzkaller managed to trigger concurrent calls to kernfsremovebynamens for the same file resulting in a KASAN detected use-after-free. The race occurs when the root node is freed during...
CVE-2022-50148
Consolidated details indicate CVE-2022-50148 is a Linux kernel issue affecting kernfs: __kernfs_remove may dereference NULL if lockdep is enabled, due to a dereference before checking kn (as noted in fs/kernfs/dir.c:1353). The vulnerability is mitigated by upstream fixes in kernel commits (e.g., ...
CVE-2022-50148 kernfs: fix potential NULL dereference in __kernfs_remove
In the Linux kernel, the following vulnerability has been resolved: kernfs: fix potential NULL dereference in kernfsremove When lockdep is enabled, lockdepassertheldwrite would cause potential NULL pointer dereference. Fix the following smatch warnings: fs/kernfs/dir.c:1353 kernfsremove warn:...