ROS-20240814-04

A vulnerability in the ofxudmadevget function in the dmaengine component of the Linux operating system kernel is related to a a leakage bug in ofxudmadevget. Exploitation of the vulnerability could allow an attacker to cause a denial of denial of service A vulnerability in the scmidomainreset...

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: Input: cyapa - add missing input core locking to suspend/resume functions CVE-2023-52884 In the Linux kernel, the following vulnerability has been resolved: genirq/cpuhotplug, x86/vector: Prevent vector leak durin...

kernel: vfio/pci: Lock external INTx masking ops

In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Lock external INTx masking ops Mask operations through config space changes to DisINTx may race INTx configuration changes via ioctl. Create wrappers that add locking for paths outside of the core interrupt code. In...

kernel: vfio/pci: Lock external INTx masking ops

In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Lock external INTx masking ops Mask operations through config space changes to DisINTx may race INTx configuration changes via ioctl. Create wrappers that add locking for paths outside of the core interrupt code. In...

kernel: mm/hugetlb: fix missing hugetlb_lock for resv uncharge

CVE-2024-36000 addresses a synchronization issue in the Linux kernel's management of huge pages. The problem arises when multiple threads modify the reservation map concurrently without proper locking, leading to potential inconsistencies and system instability...

kernel: tracing: Restructure trace_clock_global() to never block

In the Linux kernel, the following vulnerability has been resolved: tracing: Restructure traceclockglobal to never block It was reported that a fix to the ring buffer recursion detection would cause a hung machine when performing suspend / resume testing. The following backtrace was extracted fro...

kernel: vfio/pci: Lock external INTx masking ops

In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Lock external INTx masking ops Mask operations through config space changes to DisINTx may race INTx configuration changes via ioctl. Create wrappers that add locking for paths outside of the core interrupt code. In...

qemu-kvm security update

7.2.0-13.el9 - vfio/migration: Enhance VFIO migration state tracing Avihai Horon - vfio/migration: Don't emit STOPCOPY VFIO migration QAPI event twice Avihai Horon - vfio/migration: Emit VFIO migration QAPI event Avihai Horon - qapi/vfio: Add VFIO migration QAPI event Avihai Horon -...

The vulnerability of the log_ctrl() function in the Linux operating system’s video driver allows a hacker to cause a service failure.

The vulnerability of the logctrl function in the drivers/media/v4l2-core/v4l2-ctrls-core.c file, a video driver for the Linux operating system, is related to mutual locking of execution threads. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the zynqmp_dpsub_probe() function in the ZynQMP driver for Linux operating systems allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the zynqmpdpsubprobe function in the drivers/gpu/drm/xlnx/zynqmpdpsub.c file of the ZynMP driver for the Linux operating system is related to incorrect resource locking. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

SUSE CVE-2024-41036

In the Linux kernel, the following vulnerability has been resolved: net: ks8851: Fix deadlock with the SPI chip variant When SMP is enabled and spinlocks are actually functional then there is a deadlock with the 'statelock' spinlock between ks8851startxmitspi and ks8851irq: watchdog: BUG: soft...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-38662)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-38662 advisory. - In the Linux kernel, the following vulnerability has been resolved: bpf: Allow delete from sockmap/sockhash...

PUB-A-312268456

In sendDeviceState16 of RadioExt.cpp, there is a possible use after free due to improper locking. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

PT-2024-7185

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to a regression introduced by a commit that changed the EFR locking to operate on each channel instead of chip-wise. This regression causes the Tx buffer data on one...

CVE-2024-27823

A race condition was addressed with improved locking. This issue is fixed in macOS Sonoma 14.5, iOS 16.7.8 and iPadOS 16.7.8, macOS Ventura 13.6.7, watchOS 10.5, visionOS 1.3, tvOS 17.5, iOS 17.5 and iPadOS 17.5, macOS Monterey 12.7.5. An attacker in a privileged network position may be able to...

AZL-47985 CVE-2024-41080 affecting package kernel for versions less than 5.15.176.3-1

In the Linux kernel, the following vulnerability has been resolved: iouring: fix possible deadlock in ioregisteriowqmaxworkers The ioregisteriowqmaxworkers function calls ioputsqdata, which acquires the sqd-lock without releasing the uringlock. Similar to the commit 009ad9f0c6ee "iouring: drop...

DEBIAN-CVE-2024-41036

In the Linux kernel, the following vulnerability has been resolved: net: ks8851: Fix deadlock with the SPI chip variant When SMP is enabled and spinlocks are actually functional then there is a deadlock with the 'statelock' spinlock between ks8851startxmitspi and ks8851irq: watchdog: BUG: soft...

UBUNTU-CVE-2024-41080

In the Linux kernel, the following vulnerability has been resolved: iouring: fix possible deadlock in ioregisteriowqmaxworkers The ioregisteriowqmaxworkers function calls ioputsqdata, which acquires the sqd-lock without releasing the uringlock. Similar to the commit 009ad9f0c6ee "iouring: drop...

CVE-2024-41036 net: ks8851: Fix deadlock with the SPI chip variant

In the Linux kernel, the following vulnerability has been resolved: net: ks8851: Fix deadlock with the SPI chip variant When SMP is enabled and spinlocks are actually functional then there is a deadlock with the 'statelock' spinlock between ks8851startxmitspi and ks8851irq: watchdog: BUG: soft...

DEBIAN-CVE-2024-41020

In the Linux kernel, the following vulnerability has been resolved: filelock: Fix fcntl/close race recovery compat path When I wrote commit 3cad1bc01041 "filelock: Remove locks reliably when fcntl/close race is detected", I missed that there are two copies of the code I was patching: The normal...