CVE-2024-53176

CVE-2024-53176 in the Linux kernel SMB/CIFS unmount path could race with cached directory operations, leaving dentries in use and triggering kernel BUGs. The fix drops dentries via queued work (cfid_put_wq) and ensures close_all_cached_dirs() flushes that work, with final cleanup performed by ser...

CVE-2024-53176 smb: During unmount, ensure all cached dir instances drop their dentry

In the Linux kernel, the following vulnerability has been resolved: smb: During unmount, ensure all cached dir instances drop their dentry The unmount process cifskillsb calling closeallcacheddirs can race with various cached directory operations, which ultimately results in dentries not being...

The vulnerabilities of the `runtime_suspend()` and `runtime_resume()` functions of the `cadence-qspi` component in the Linux operating system allow a hacker to trigger a service failure.

The vulnerability of the runtimesuspend and runtimeresume functions of the cadence-qspi component in Linux operating systems is related to a freeze that occurs due to repeated locking of resources. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the sungem kernel component in the Linux operating system, which allows a hacker to trigger a service failure

The vulnerability of the sungem kernel component in the Linux operating system is related to improper locking of resources in the functions geminterrupt and geminitone. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the xsk component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the xsk component in the Linux operating system’s kernel is related to improper locking of resources in the xskrcvzc function. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the m68k kernel component in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the m68k kernel component in the Linux operating system is related to improper locking mechanisms. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the ks8851 component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the ks8851 component in the Linux operating system’s kernel is related to improper locking of resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the ieee80211_sta_ps_deliver_wakeup() function in the mac80211 component of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the ieee80211stapsdeliverwakeup function in the mac80211 component of the Linux operating system is related to improper locking of resources. Exploiting this vulnerability could allow an attacker to trigger a service failure...

ALPINE-CVE-2024-45818

The hypervisor contains code to accelerate VGA memory accesses for HVM guests, when the virtual VGA is in "standard" mode. Locking involved there has an unusual discipline, leaving a lock acquired past the return from the function that acquired it. This behavior results in a problem when emulatin...

CVE-2024-45818

The hypervisor contains code to accelerate VGA memory accesses for HVM guests, when the virtual VGA is in "standard" mode. Locking involved there has an unusual discipline, leaving a lock acquired past the return from the function that acquired it. This behavior results in a problem when emulatin...

CVE-2024-45818

The hypervisor contains code to accelerate VGA memory accesses for HVM guests, when the virtual VGA is in "standard" mode. Locking involved there has an unusual discipline, leaving a lock acquired past the return from the function that acquired it. This behavior results in a problem when emulatin...

DEBIAN-CVE-2024-45818

The hypervisor contains code to accelerate VGA memory accesses for HVM guests, when the virtual VGA is in "standard" mode. Locking involved there has an unusual discipline, leaving a lock acquired past the return from the function that acquired it. This behavior results in a problem when emulatin...

CVE-2024-45818

CVE-2024-45818 describes a deadlock in the Xen hypervisor’s x86 HVM standard VGA handling. The vulnerability arises from a locking discipline where a lock is acquired and not released before returning from the function, causing a second memory access touching VGA memory to attempt reacquiring the...

CVE-2024-45818 Deadlock in x86 HVM standard VGA handling

The hypervisor contains code to accelerate VGA memory accesses for HVM guests, when the virtual VGA is in "standard" mode. Locking involved there has an unusual discipline, leaving a lock acquired past the return from the function that acquired it. This behavior results in a problem when emulatin...

CVE-2024-45818 Deadlock in x86 HVM standard VGA handling

The hypervisor contains code to accelerate VGA memory accesses for HVM guests, when the virtual VGA is in "standard" mode. Locking involved there has an unusual discipline, leaving a lock acquired past the return from the function that acquired it. This behavior results in a problem when emulatin...

CVE-2024-45818

The hypervisor contains code to accelerate VGA memory accesses for HVM guests, when the virtual VGA is in "standard" mode. Locking involved there has an unusual discipline, leaving a lock acquired past the return from the function that acquired it. This behavior results in a problem when emulatin...

Xen 安全漏洞

Xen is an open source virtual machine monitor product from Xen Open Source. The product enables different and incompatible operating systems to run on the same computer and supports runtime migration to ensure uptime and avoid downtime. A security vulnerability exists in Xen that stems from a...

The vulnerability of Intel Core Ultra processor microprogramming software, related to processor locking, allows a hacker to trigger a service failure.

The vulnerability of Intel Core Ultra microprogramming software is related to the locking of the processor due to discrepancies between the instruction set architecture ISA and the processor’s logic. Exploiting this vulnerability can allow an attacker to cause a service failure...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-50095)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-50095 advisory. - In the Linux kernel, the following vulnerability has been resolved: RDMA/mad: Improve handling of timed out...

CVE-2024-54510

A race condition was addressed with improved locking. This issue is fixed in iPadOS 17.7.3, watchOS 11.2, tvOS 18.2, macOS Sequoia 15.2, iOS 18.2 and iPadOS 18.2, macOS Ventura 13.7.2, macOS Sonoma 14.7.2. An app may be able to leak sensitive kernel state...