Lucene search
K

53 matches found

RedHat Linux
RedHat Linux
added 2025/09/25 12:40 a.m.6 views

kernel: vsock: Fix transport_* TOCTOU

In the Linux kernel, the following vulnerability has been resolved: vsock: Fix transport TOCTOU Transport assignment may race with module unload. Protect newtransport from becoming a stale pointer. This also takes care of an insecure call in vsockuselocaltransport; add a lockdep assert. BUG: unab...

4.7CVSS6.8AI score0.00113EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/09/22 11:7 a.m.3 views

kernel: vsock: Fix transport_* TOCTOU

In the Linux kernel, the following vulnerability has been resolved: vsock: Fix transport TOCTOU Transport assignment may race with module unload. Protect newtransport from becoming a stale pointer. This also takes care of an insecure call in vsockuselocaltransport; add a lockdep assert. BUG: unab...

4.7CVSS6.8AI score0.00113EPSS
Exploits0References5
NVD
NVD
added 2025/09/16 2:15 p.m.3 views

CVE-2025-39832

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix lockdep assertion on sync reset unload event Fix lockdep assertion triggered during sync reset unload event. When the sync reset flow is initiated using the devlink reload fwactivate option, the PF already holds the...

5.5CVSS0.00107EPSS
Exploits0References4
OSV
OSV
added 2025/09/16 2:15 p.m.1 views

DEBIAN-CVE-2025-39832

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix lockdep assertion on sync reset unload event Fix lockdep assertion triggered during sync reset unload event. When the sync reset flow is initiated using the devlink reload fwactivate option, the PF already holds the...

5.5CVSS5.3AI score0.00107EPSS
Exploits0References1
OSV
OSV
added 2025/09/16 2:15 p.m.8 views

AZL-67407 CVE-2025-39832 affecting package kernel for versions less than 6.6.104.2-1

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix lockdep assertion on sync reset unload event Fix lockdep assertion triggered during sync reset unload event. When the sync reset flow is initiated using the devlink reload fwactivate option, the PF already holds the...

5.5CVSS5.6AI score0.00107EPSS
Exploits0References1
CVE
CVE
added 2025/09/16 1:8 p.m.33 views

CVE-2025-39832

CVE-2025-39832 concerns the Linux kernel’s mlx5 driver. The issue is a lockdep assertion triggered during the sync reset unload path, specifically when a sync reset flow is started via the devlink reload fw_activate option. The PF holds the devlink lock while handling the unload event, and the fi...

5.5CVSS6AI score0.00107EPSS
Exploits0References4Affected Software1
RedhatCVE
RedhatCVE
added 2025/08/24 4:7 p.m.6 views

CVE-2025-38647

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: sar: drop lockdep assertion in rtw89setsarfromacpi The following assertion is triggered on the rtw89 driver startup. It looks meaningless to hold wiphy lock on the early init stage so drop the assertion. WARNING: CPU...

5.5CVSS6.3AI score0.00128EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/08/22 11:28 p.m.4 views

SUSE CVE-2025-38647

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: sar: drop lockdep assertion in rtw89setsarfromacpi The following assertion is triggered on the rtw89 driver startup. It looks meaningless to hold wiphy lock on the early init stage so drop the assertion. WARNING: CPU...

5.5CVSS6.4AI score0.00128EPSS
Exploits0References3
NVD
NVD
added 2025/08/22 4:15 p.m.12 views

CVE-2025-38647

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: sar: drop lockdep assertion in rtw89setsarfromacpi The following assertion is triggered on the rtw89 driver startup. It looks meaningless to hold wiphy lock on the early init stage so drop the assertion. WARNING: CPU...

5.5CVSS0.00128EPSS
Exploits0References2
OSV
OSV
added 2025/08/22 4:15 p.m.3 views

UBUNTU-CVE-2025-38647

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: sar: drop lockdep assertion in rtw89setsarfromacpi The following assertion is triggered on the rtw89 driver startup. It looks meaningless to hold wiphy lock on the early init stage so drop the assertion. WARNING: CPU...

5.5CVSS5.7AI score0.00128EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/08/22 4:0 p.m.8 views

CVE-2025-38647 wifi: rtw89: sar: drop lockdep assertion in rtw89_set_sar_from_acpi

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: sar: drop lockdep assertion in rtw89setsarfromacpi The following assertion is triggered on the rtw89 driver startup. It looks meaningless to hold wiphy lock on the early init stage so drop the assertion. WARNING: CPU...

0.00128EPSS
Exploits0References2
OSV
OSV
added 2025/08/22 4:0 p.m.5 views

CVE-2025-38647 wifi: rtw89: sar: drop lockdep assertion in rtw89_set_sar_from_acpi

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: sar: drop lockdep assertion in rtw89setsarfromacpi The following assertion is triggered on the rtw89 driver startup. It looks meaningless to hold wiphy lock on the early init stage so drop the assertion. WARNING: CPU...

5.5CVSS6.4AI score0.00128EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2025/08/22 4:0 p.m.5 views

CVE-2025-38647

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: sar: drop lockdep assertion in rtw89setsarfromacpi The following assertion is triggered on the rtw89 driver startup. It looks meaningless to hold wiphy lock on the early init stage so drop the assertion. WARNING: CPU...

5.5CVSS5.4AI score0.00128EPSS
Exploits0
CVE
CVE
added 2025/08/22 4:0 p.m.28 views

CVE-2025-38647

CVE-2025-38647 affects the Linux kernel wifi/rtw89 driver. The issue is a dropped lockdep assertion in rtw89_set_sar_from_acpi during driver startup, which could trigger under early init and is resolved by the kernel fix. The vulnerability details, call trace, and affected chain are documented in...

5.5CVSS6.5AI score0.00128EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2025/08/22 12:0 a.m.11 views

PT-2025-34408 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.15.0+ Description: The Linux kernel contains a flaw within the rtw89 driver related to a lockdep assertion in the rtw89 set sar from acpi function. The assertion was triggered during driver startup and has bee...

7AI score0.00128EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/08/18 11:27 a.m.5 views

CVE-2025-38539

In the Linux kernel, the following vulnerability has been resolved: tracing: Add downwritetraceeventsem when adding trace event When a module is loaded, it adds trace events defined by the module. It may also need to modify the modules trace printk formats to replace enum names with their values...

4.4CVSS6.5AI score0.00149EPSS
Exploits0References4
NVD
NVD
added 2025/08/16 12:15 p.m.5 views

CVE-2025-38539

In the Linux kernel, the following vulnerability has been resolved: tracing: Add downwritetraceeventsem when adding trace event When a module is loaded, it adds trace events defined by the module. It may also need to modify the modules trace printk formats to replace enum names with their values...

5.5CVSS0.00149EPSS
Exploits0References10
OSV
OSV
added 2025/08/16 12:15 p.m.3 views

DEBIAN-CVE-2025-38539

In the Linux kernel, the following vulnerability has been resolved: tracing: Add downwritetraceeventsem when adding trace event When a module is loaded, it adds trace events defined by the module. It may also need to modify the modules trace printk formats to replace enum names with their values...

5.5CVSS5.4AI score0.00149EPSS
Exploits0References1
OSV
OSV
added 2025/08/16 12:15 p.m.15 views

AZL-66371 CVE-2025-38539 affecting package kernel for versions less than 6.6.104.2-1

In the Linux kernel, the following vulnerability has been resolved: tracing: Add downwritetraceeventsem when adding trace event When a module is loaded, it adds trace events defined by the module. It may also need to modify the modules trace printk formats to replace enum names with their values...

5.5CVSS5.7AI score0.00149EPSS
Exploits0References1
OSV
OSV
added 2025/08/16 12:15 p.m.5 views

UBUNTU-CVE-2025-38539

In the Linux kernel, the following vulnerability has been resolved: tracing: Add downwritetraceeventsem when adding trace event When a module is loaded, it adds trace events defined by the module. It may also need to modify the modules trace printk formats to replace enum names with their values...

5.5CVSS5.9AI score0.00149EPSS
Exploits0References39
Rows per page
Query Builder