58 matches found
CVE-2026-22980
The CVE-2026-22980 issue is confirmed to affect the Linux kernel and is addressed by a patch that fixes a race between v4_end_grace writes and server shutdown. The fix introduces two new fields in the nfsd network context: client_tracking_active (protected by nn->client_lock) and grace_end_for...
Linux Distros Unpatched Vulnerability : CVE-2025-71159
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: btrfs: fix use-after-free warning in btrfsgetorcreatedelayednode Previously,...
Azure Linux 3.0 Security Update: kernel (CVE-2025-38004)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38004 advisory. - In the Linux kernel, the following vulnerability has been resolved: can: bcm: add locking for bcmop runtime...
SUSE CVE-2025-68185
In the Linux kernel, the following vulnerability has been resolved: nfs4setupreaddir: insufficient locking for -dparent-dinode dereferencing Theoretically it's an oopsable race, but I don't believe one can manage to hit it on real hardware; might become doable on a KVM, but it still won't be easy...
CVE-2022-50648
CVE-2022-50648 concerns a Linux kernel ftrace deadlock involving direct_mutex during ftrace_modify_direct_caller. The connected advisories document a fix using register_ftrace_function_nolock in ftrace_modify_direct_caller to resolve the recursive locking issue, with multiple vendors/refs confirm...
UBUNTU-CVE-2023-53759
In the Linux kernel, the following vulnerability has been resolved: HID: hidraw: fix data race on device refcount The hidrawopen function increments the hidraw device reference counter. The counter has no dedicated synchronization mechanism, resulting in a potential data race when concurrently...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989518)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989518 advisory. In the Linux kernel, the following vulnerability has been resolved: sysv: don't call sbbread with pointerslock held syzbot is reporting sleep in atomic context in Sy...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989443)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989443 advisory. In the Linux kernel, the following vulnerability has been resolved: sysv: don't call sbbread with pointerslock held syzbot is reporting sleep in atomic context in Sy...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989188)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989188 advisory. In the Linux kernel, the following vulnerability has been resolved: cfg80211: fix management registrations locking The management registrations locking was broken, t...
Linux Distros Unpatched Vulnerability : CVE-2023-53622
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - gfs2: Fix possible data races in gfs2showoptions Some fields such as gtlogdsecs of the struct gfs2tune are accessed without holding the lock gtspin in...
CVE-2022-50518 parisc: Fix locking in pdc_iodc_print() firmware call
In the Linux kernel, the following vulnerability has been resolved: parisc: Fix locking in pdciodcprint firmware call Utilize pdclock spinlock to protect parallel modifications of the iodcdbuf buffer, check length to prevent buffer overflow of iodcdbuf, drop the iodcretbuf buffer and fix some wro...
PT-2025-51598
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the nfs4 setup readdir function related to insufficient locking when dereferencing -d parent-d inode. This condition could potentially lead to a...
CVE-2023-53281 drivers: staging: rtl8723bs: Fix locking in _rtw_join_timeout_handler()
In the Linux kernel, the following vulnerability has been resolved: drivers: staging: rtl8723bs: Fix locking in rtwjointimeouthandler Commit 041879b12ddb "drivers: staging: rtl8192bs: Fix deadlock in rtwjoinbsseventprehandle" besides fixing the deadlock also modified rtwjointimeouthandler to use...
CVE-2023-53281
In the Linux kernel, the following vulnerability has been resolved: drivers: staging: rtl8723bs: Fix locking in rtwjointimeouthandler Commit 041879b12ddb "drivers: staging: rtl8192bs: Fix deadlock in rtwjoinbsseventprehandle" besides fixing the deadlock also modified rtwjointimeouthandler to use...
9p: add missing locking around taking dentry fid list
...
Linux Distros Unpatched Vulnerability : CVE-2024-35990
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: dma: xilinxdpdma: Fix locking There are several places where either chan-lock or...
CVE-2025-38372 RDMA/mlx5: Fix unsafe xarray access in implicit ODP handling
In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix unsafe xarray access in implicit ODP handling xastore and xaerase were used without holding the proper lock, which led to a lockdep warning due to unsafe RCU usage. This patch replaces them with xastore and xaerase...
DEBIAN-CVE-2022-50045
In the Linux kernel, the following vulnerability has been resolved: powerpc/pci: Fix getphbnumber locking The recent change to getphbnumber causes a DEBUGATOMICSLEEP warning on some systems: BUG: sleeping function called from invalid context at kernel/locking/mutex.c:580 inatomic: 1, irqsdisabled...
CVE-2022-49989
CVE-2022-49989 concerns the Linux kernel’s xen/privcmd code. The vulnerability stems from: (1) error exit handling in privcmd_ioctl_dm_op() calling unlock_pages() with NULL pages, risking a NULL dereference, and (2) lock_pages() not verifying pin_user_pages_fast() success, potentially leaving som...
AZL-63687 CVE-2025-38004 affecting package kernel for versions less than 6.6.96.1-1
In the Linux kernel, the following vulnerability has been resolved: can: bcm: add locking for bcmop runtime updates The CAN broadcast manager CAN BCM can send a sequence of CAN frames via hrtimer. The content and also the length of the sequence can be changed resp reduced at runtime where the...