CVE-2024-36944 Reapply "drm/qxl: simplify qxl_fence_wait"

In the Linux kernel, the following vulnerability has been resolved: Reapply "drm/qxl: simplify qxlfencewait" This reverts commit 07ed11afb68d94eadd4ffc082b97c2331307c5ea. Stephen Rostedt reports: "I went to run my tests on my VMs and the tests hung on boot up. Unfortunately, the most I ever got o...

CVE-2024-36944 Reapply "drm/qxl: simplify qxl_fence_wait"

In the Linux kernel, the following vulnerability has been resolved: Reapply "drm/qxl: simplify qxlfencewait" This reverts commit 07ed11afb68d94eadd4ffc082b97c2331307c5ea. Stephen Rostedt reports: "I went to run my tests on my VMs and the tests hung on boot up. Unfortunately, the most I ever got o...

CVE-2024-36944

CVE-2024-36944 affects the Linux kernel. The issue arises from reverting the commit that simplified drm/qxl_fence_wait, which created a possible circular locking dependency between console_owner and the worker pool locking. Reverting the commit allows VMs to boot to completion but may reintroduce...

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from being able to read the same value twice without locking it...

SUSE CVE-2023-52774

In the Linux kernel, the following vulnerability has been resolved: s390/dasd: protect device queue against concurrent access In dasdprofilestart the amount of requests on the device queue are counted. The access to the device queue is unprotected against concurrent access. With a lot of parallel...

SUSE CVE-2021-47494

In the Linux kernel, the following vulnerability has been resolved: cfg80211: fix management registrations locking The management registrations locking was broken, the list was locked for each wdev, but cfg80211mgmtregistrationsupdate iterated it without holding all the correct spinlocks, causing...

dma: xilinx_dpdma: Fix locking

...

CVE-2021-47494

A vulnerability was found in the Linux kernel's cfg80211 module, where improper locking of management registrations could lead to list corruption. This issue occurred because the cfg80211mgmtregistrationsupdate function iterated over a list without holding the correct spinlocks. Mitigation...

SUSE CVE-2021-47280

In the Linux kernel, the following vulnerability has been resolved: drm: Fix use-after-free read in drmgetunique There is a time-of-check-to-time-of-use error in drmgetunique due to retrieving filepriv-master prior to locking the device's master mutex. An example can be seen in the crash report o...

SUSE CVE-2023-52771

In the Linux kernel, the following vulnerability has been resolved: cxl/port: Fix deleteendpoint vs parent unregistration race The CXL subsystem, at cxlmem -probe time, establishes a lineage of ports struct cxlport objects between an endpoint and the root of a CXL topology. Each port including th...

kernel: dm: fix a race condition in retrieve_deps

A use-after-free flaw was found in the Linux kernel's device-mapper multipath implementation. A race condition exists between retrievedeps and multipathmessage when devices are added or removed. The retrievedeps function walks the device list without holding a lock while multipathmessage can modi...

kernel: ixgbe: Fix panic during XDP_TX with > 64 CPUs

A flaw was found in the Linux kernel's ixgbe network driver. On systems with more than 64 CPUs, XDPTX operations can cause a kernel panic due to an array-index-out-of-bounds access. The ixgbexdplockingkey variable can be incorrectly decremented to zero during ring reconfiguration, causing the...

kernel: ALSA: hda: fix a possible null-pointer dereference due to data race in snd_hdac_regmap_sync()

In the Linux kernel, the following vulnerability has been resolved: ALSA: hda: fix a possible null-pointer dereference due to data race in sndhdacregmapsync The variable codec-regmap is often protected by the lock codec-regmaplock when is accessed. However, it is accessed without holding the lock...

DEBIAN-CVE-2021-47494

In the Linux kernel, the following vulnerability has been resolved: cfg80211: fix management registrations locking The management registrations locking was broken, the list was locked for each wdev, but cfg80211mgmtregistrationsupdate iterated it without holding all the correct spinlocks, causing...

CVE-2021-47494

In the Linux kernel, the following vulnerability has been resolved: cfg80211: fix management registrations locking The management registrations locking was broken, the list was locked for each wdev, but cfg80211mgmtregistrationsupdate iterated it without holding all the correct spinlocks, causing...

UBUNTU-CVE-2021-47494

In the Linux kernel, the following vulnerability has been resolved: cfg80211: fix management registrations locking The management registrations locking was broken, the list was locked for each wdev, but cfg80211mgmtregistrationsupdate iterated it without holding all the correct spinlocks, causing...

CVE-2021-47494 cfg80211: fix management registrations locking

In the Linux kernel, the following vulnerability has been resolved: cfg80211: fix management registrations locking The management registrations locking was broken, the list was locked for each wdev, but cfg80211mgmtregistrationsupdate iterated it without holding all the correct spinlocks, causing...

CVE-2021-47494 cfg80211: fix management registrations locking

In the Linux kernel, the following vulnerability has been resolved: cfg80211: fix management registrations locking The management registrations locking was broken, the list was locked for each wdev, but cfg80211mgmtregistrationsupdate iterated it without holding all the correct spinlocks, causing...

CVE-2021-47494

CVE-2021-47494 in the Linux kernel affects cfg80211 management registrations locking. The vulnerability arose because cfg80211_mgmt_registrations_update() iterated the per-wdev list without holding all necessary spinlocks, leading to list corruption. The fix moves the lock to the wiphy/rdev level...

CVE-2021-47494

In the Linux kernel, the following vulnerability has been resolved: cfg80211: fix management registrations locking The management registrations locking was broken, the list was locked for each wdev, but cfg80211mgmtregistrationsupdate iterated it without holding all the correct spinlocks, causing...