4329 matches found
CVE-2025-37999
In the Linux kernel, the following vulnerability has been resolved: fs/erofs/fileio: call erofsonlinefoliosplit after bioaddfolio If bioaddfolio fails because it is full, erofsfileioscanfolio needs to submit the I/O request via erofsfileiorqsubmit and allocate a new I/O request with an empty stru...
DEBIAN-CVE-2025-37997
In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: fix region locking in hash types Region locking introduced in v5.6-rc4 contained three macros to handle the region locks: ahashbucketstart, ahashbucketend which gave back the start and end hash bucket values...
UBUNTU-CVE-2025-37997
In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: fix region locking in hash types Region locking introduced in v5.6-rc4 contained three macros to handle the region locks: ahashbucketstart, ahashbucketend which gave back the start and end hash bucket values...
CVE-2025-37999 fs/erofs/fileio: call erofs_onlinefolio_split() after bio_add_folio()
In the Linux kernel, the following vulnerability has been resolved: fs/erofs/fileio: call erofsonlinefoliosplit after bioaddfolio If bioaddfolio fails because it is full, erofsfileioscanfolio needs to submit the I/O request via erofsfileiorqsubmit and allocate a new I/O request with an empty stru...
CVE-2025-37997
CVE-2025-37997 corresponds to a race in Linux kernel/ipset region locking for hash types. The issue arises from incorrect region lock handling in region macros (ahash_bucket_start/end/ahash_region), enabling a race between the garbage collector and adding elements when timeouts are used. Connecte...
CVE-2025-37997 netfilter: ipset: fix region locking in hash types
In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: fix region locking in hash types Region locking introduced in v5.6-rc4 contained three macros to handle the region locks: ahashbucketstart, ahashbucketend which gave back the start and end hash bucket values...
ROS-20250529-01
A vulnerability in the phy component of the Linux kernel is related to the dereferencing of a NULL pointer in the spusbphyphyprobe function in drivers/phy/sunplus/phy-sunplus/phy-sunplus-usb2.c. Exploitation of the vulnerability could allow an attacker to cause a denial of service A vulnerability...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from incorrect region locking in ipset, which could lead to a race condition...
kernel: sched/rt: Fix race in push_rt_task
In the Linux kernel, the following vulnerability has been resolved: sched/rt: Fix race in pushrttask Overview ======== When a CPU chooses to call pushrttask and picks a task to push to another CPU's runqueue then it will call findlocklowestrq method which would take a double lock on both CPUs'...
The vulnerability of the spin_lock_irqsave() function in the drivers/infiniband/sw/rdmavt/qp.c module of the Linux kernel allows a attacker to cause a service failure.
The vulnerability of the spinlockirqsave function in the drivers/infiniband/sw/rdmavt/qp.c module of the Linux kernel is related to improper locking mechanisms. Exploiting this vulnerability could allow an attacker to cause a service failure...
CVE-2024-32927
In sendDeviceState16 of RadioExt.cpp, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2024-32900
In lwisfencesignal of lwisdebug.c, there is a possible Use after Free due to improper locking. This could lead to local escalation of privilege from halcameradefault SELinux label with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2024-32787
Missing Authorization vulnerability in Copy Content Protection Team Secure Copy Content Protection and Content Locking.This issue affects Secure Copy Content Protection and Content Locking: from n/a through 3.7.1...
CVE-2024-33587
Missing Authorization vulnerability in Copy Content Protection Team Secure Copy Content Protection and Content Locking.This issue affects Secure Copy Content Protection and Content Locking: from n/a through 3.9.0...
CVE-2023-32824
In rpmb , there is a possible double free due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07912966; Issue ID: ALPS07912961...
CVE-2023-27952
A race condition was addressed with improved locking. This issue is fixed in macOS Ventura 13.3. An app may bypass Gatekeeper checks...
CVE-2023-21120
In multiple functions of cdmengine.cpp, there is a possible use-after-free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID:...
CVE-2023-21000
In MediaCodec.cpp, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-194783918...
CVE-2023-20939
In multiple functions of looperbackedeventloop.cpp, there is a possible way to corrupt memory due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...
CVE-2023-20743
In vcu, there is a possible out of bounds write due to improper locking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07519142; Issue ID: ALPS07519142...