CVE-2021-46921

In the Linux kernel, the following vulnerability has been resolved: locking/qrwlock: Fix ordering in queuedwritelockslowpath While this code is executed with the waitlock held, a reader can acquire the lock without holding waitlock. The writer side loops checking the value with the...

CVE-2021-46921 locking/qrwlock: Fix ordering in queued_write_lock_slowpath()

In the Linux kernel, the following vulnerability has been resolved: locking/qrwlock: Fix ordering in queuedwritelockslowpath While this code is executed with the waitlock held, a reader can acquire the lock without holding waitlock. The writer side loops checking the value with the...

CVE-2021-46921

In the Linux kernel, the following vulnerability has been resolved: locking/qrwlock: Fix ordering in queuedwritelockslowpath While this code is executed with the waitlock held, a reader can acquire the lock without holding waitlock. The writer side loops checking the value with the...

Linux Kernel ksmbd TCP Connection Race Condition Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Linux Kernel. Authentication is not required to exploit this vulnerability. However, only systems with ksmbd enabled are vulnerable. The specific flaw exists within the handling of TCP connection and...

PT-2024-1718 · Freebsd · Freebsd

Name of the Vulnerable Software and Affected Versions: FreeBSD affected versions not specified Description: The issue is related to incorrect process locking in the jail2 system call, which can lead to an information leak about processes outside the current jail. An attacker can exploit this to...

USN-6624-1: Linux kernel vulnerabilities

Marek Marczykowski-Górecki discovered that the Xen event channel infrastructure implementation in the Linux kernel contained a race condition. An attacker in a guest VM could possibly use this to cause a denial of service paravirtualized device unavailability. CVE-2023-34324 Zheng Wang discovered...

Important: Red Hat Security Advisory: kernel security and bug fix update

An update for kernel is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

kernel: use after free in unix_stream_sendpage

A use-after-free flaw was found in the Linux kernel's afunix component that allows local privilege escalation. The unixstreamsendpage function tries to add data to the last skb in the peer's recv queue without locking the queue. This issue leads to a race condition where the unixstreamsendpage...

PT-2024-21468

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to a circular locking dependency in the KVM Kernel-based Virtual Machine component of the Linux kernel, specifically on arm64 architectures. The problem arises becau...

kernel: use after free in unix_stream_sendpage

A use-after-free flaw was found in the Linux kernel's afunix component that allows local privilege escalation. The unixstreamsendpage function tries to add data to the last skb in the peer's recv queue without locking the queue. This issue leads to a race condition where the unixstreamsendpage...

Vulnerability of the sctp_auto_asconf_init function in the Linux operating system’s kernel, which allows a hacker to trigger a service failure

The vulnerability of the sctpautoasconfinit function net/sctp/socket.c in the Linux operating system is related to the occurrence of mutual locking. Exploiting this vulnerability could allow a attacker to cause a service failure...

The vulnerability of the `tipc_crypto_key_revoke` function in the `net/tipc/crypto.c` module of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the tipccryptokeyrevoke function in the net/tipc/crypto.c module of the Linux kernel is related to the occurrence of mutual locking. Exploiting this vulnerability could allow a attacker to cause a service failure...

PT-2024-21510

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to a potential deadlock at set capacity in the Linux kernel. This occurs due to an interrupt unsafe locking scenario where aoeblk gdalloc holds &d-lock and attempts ...

Debian dla-3714 : keystone - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3714 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3714-1 [email protected]...

PT-2024-9840

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.7.5 Description A vulnerability in the Linux kernel has been identified, which can cause a deadlock when using bcachefs with compression. The issue arises when snapshotting a mongodb data volume, resulting in a...

veOLAS.sol : PointVoting's slope and bias values are reset to zero when depositing for another account.

Lines of code Vulnerability details Impact Since the bias vote weight and slope are reset, the voting power of as user is nullified. Proof of Concept veOLAS.sol is escrow based contract where the OLAs tokens are locked for certain amount of time in order to gain the voting power. This voting powe...

MALICIOUS USER CAN DoS A NORMAL USER FROM LOCKING THE OLAS TOKENS FOR A SHORTER PERIOD OF TIME, TO GET VOTING POWER

Lines of code Vulnerability details Impact The veOLAS.createLockFor function is used to deposit amount of OLAS tokens for account and locks for unlockTime. The createLockFor is an external function which can be called by any user since there is no access control. Hence any user can create a lock...

SUSE CVE-2023-42917

A memory corruption vulnerability was addressed with improved locking. This issue is fixed in iOS 17.1.2 and iPadOS 17.1.2, macOS Sonoma 14.1.2, Safari 17.1.2. Processing web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been exploited against...

This Week in Spring - December 5th, 2023

Hi, Spring fans! Welcome to another installment of This Week in Spring! today, Spring Cloud, based on Spring Boot 3.2, goes GA! Don't miss this! I love this blog by Spring Framework legend Sébastien Deleuze on CDS with Spring Framework 6.1 I really enjoyed this discussion with Spring Security...

DEBIAN-CVE-2023-42917

A memory corruption vulnerability was addressed with improved locking. This issue is fixed in iOS 17.1.2 and iPadOS 17.1.2, macOS Sonoma 14.1.2, Safari 17.1.2. Processing web content may lead to arbitrary code execution. Apple is aware of a report that this issue may have been exploited against...