Lucene search
K

4329 matches found

CVE
CVE
added 2025/10/01 11:46 a.m.18 views

CVE-2023-53522

CVE-2023-53522 concerns the Linux kernel, specifically the cgroup/freezer path. The data show a circular locking dependency between cpu_hotplug_lock and freezer_mutex triggered by a rewrite of core freezer logic (commit f5d39b020809) that replaced atomic_inc() with static_branch_inc() in freezer_...

7.8CVSS6.1AI score0.00141EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2025/10/01 11:46 a.m.4 views

CVE-2023-53522 cgroup,freezer: hold cpu_hotplug_lock before freezer_mutex

In the Linux kernel, the following vulnerability has been resolved: cgroup,freezer: hold cpuhotpluglock before freezermutex syzbot is reporting circular locking dependency between cpuhotpluglock and freezermutex, for commit f5d39b020809 "freezer,sched: Rewrite core freezer logic" replaced atomici...

7.8CVSS6.5AI score0.00141EPSS
Exploits0References6
OSV
OSV
added 2025/10/01 11:46 a.m.10 views

CVE-2023-53519 media: v4l2-mem2mem: add lock to protect parameter num_rdy

In the Linux kernel, the following vulnerability has been resolved: media: v4l2-mem2mem: add lock to protect parameter numrdy Getting below error when using KCSAN to check the driver. Adding lock to protect parameter numrdy when getting the value with function:...

5.5CVSS6.4AI score0.00107EPSS
Exploits0References11
OSV
OSV
added 2025/10/01 11:42 a.m.4 views

CVE-2023-53455 drm/vc4: drop all currently held locks if deadlock happens

In the Linux kernel, the following vulnerability has been resolved: drm/vc4: drop all currently held locks if deadlock happens If vc4hdmiresetlink returns -EDEADLK, it means that a deadlock happened in the locking context. This situation should be addressed by dropping all currently held locks an...

5.5CVSS6.4AI score0.00143EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/10/01 11:42 a.m.6 views

CVE-2023-53455 drm/vc4: drop all currently held locks if deadlock happens

In the Linux kernel, the following vulnerability has been resolved: drm/vc4: drop all currently held locks if deadlock happens If vc4hdmiresetlink returns -EDEADLK, it means that a deadlock happened in the locking context. This situation should be addressed by dropping all currently held locks an...

0.00143EPSS
Exploits0References3
NVD
NVD
added 2025/10/01 8:15 a.m.4 views

CVE-2025-39908

In the Linux kernel, the following vulnerability has been resolved: net: devioctl: take ops lock in hwtstamp lower paths ndo hwtstamp callbacks are expected to run under the per-device ops lock. Make the lower get/set paths consistent with the rest of ndo invocations. Kernel log: WARNING: CPU: 13...

5.5CVSS0.00119EPSS
Exploits0References2
OSV
OSV
added 2025/10/01 8:15 a.m.2 views

UBUNTU-CVE-2025-39915

In the Linux kernel, the following vulnerability has been resolved: net: phy: transfer phyconfiginband locking responsibility to phylink Problem description =================== Lockdep reports a possible circular locking dependency AB/BA between &pl-statemutex and &phy-lock, as follows...

5.5CVSS5.7AI score0.00093EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2025/10/01 7:44 a.m.1 views

CVE-2025-39915 net: phy: transfer phy_config_inband() locking responsibility to phylink

In the Linux kernel, the following vulnerability has been resolved: net: phy: transfer phyconfiginband locking responsibility to phylink Problem description =================== Lockdep reports a possible circular locking dependency AB/BA between &pl-statemutex and &phy-lock, as follows...

5.9AI score0.00093EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/10/01 7:44 a.m.6 views

CVE-2025-39915 net: phy: transfer phy_config_inband() locking responsibility to phylink

In the Linux kernel, the following vulnerability has been resolved: net: phy: transfer phyconfiginband locking responsibility to phylink Problem description =================== Lockdep reports a possible circular locking dependency AB/BA between &pl-statemutex and &phy-lock, as follows...

0.00093EPSS
Exploits0References2
CVE
CVE
added 2025/10/01 7:44 a.m.13 views

CVE-2025-39915

Summary: CVE-2025-39915 concerns the Linux kernel: a locking order issue where phy_config_inband() would acquire &pl->phydev->lock while phylink_major_config() had already acquired &pl->state_mutex, creating a potential deadlock when combined with phy_link_up/phy_link_down in the phylink...

5.5CVSS5.9AI score0.00093EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2025/10/01 7:44 a.m.4 views

CVE-2025-39915

In the Linux kernel, the following vulnerability has been resolved: net: phy: transfer phyconfiginband locking responsibility to phylink Problem description =================== Lockdep reports a possible circular locking dependency AB/BA between &pl-statemutex and &phy-lock, as follows...

5.5CVSS5.4AI score0.00093EPSS
Exploits0
OSV
OSV
added 2025/10/01 7:44 a.m.4 views

CVE-2025-39915 net: phy: transfer phy_config_inband() locking responsibility to phylink

In the Linux kernel, the following vulnerability has been resolved: net: phy: transfer phyconfiginband locking responsibility to phylink Problem description =================== Lockdep reports a possible circular locking dependency AB/BA between &pl-statemutex and &phy-lock, as follows...

5.5CVSS6AI score0.00093EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/10/01 12:0 a.m.5 views

PT-2025-40162

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.1.0-rc6-01399-g941aae326315 Description The Linux kernel contains a flaw within the DRM/VC4 subsystem related to deadlock handling. Specifically, if vc4 hdmi reset link returns -EDEADLK, indicating a deadlock i...

6.4AI score0.00143EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/10/01 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from not holding cpuhotpluglock before freezermutex, which could lead to a circular locking dependency...

6AI score0.00141EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/10/01 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an improper locking order that could lead to a deadlock...

5.5CVSS6.1AI score0.00093EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/10/01 12:0 a.m.3 views

PT-2025-40229

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a circular locking dependency between cpu hotplug lock and freezer mutex within the cgroup freezer subsystem. Specifically, the issue arises from the order in...

6.4AI score0.00141EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/09/25 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2023-53440

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - nilfs2: fix sysfs interface lifetime The current nilfs2 sysfs support has issues with the timing of creation and deletion of sysfs entries, potentially leading ...

5.5CVSS6AI score0.00132EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/09/25 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2025-39877

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mm/damon/sysfs: fix use-after-free in stateshow stateshow reads kdamond-damonctx without holding damonsysfslock. This allows a use-after-free race: CPU 0 CPU 1...

7.8CVSS7.1AI score0.0014EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/09/23 6:0 a.m.7 views

CVE-2025-39886 bpf: Tell memcg to use allow_spinning=false path in bpf_timer_init()

In the Linux kernel, the following vulnerability has been resolved: bpf: Tell memcg to use allowspinning=false path in bpftimerinit Currently, calling bpfmapkmallocnode from bpfasyncinit can cause various locking issues; see the following stack trace edited for style as one example: ... 10.011566...

0.00139EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/09/23 6:0 a.m.7 views

CVE-2025-39877 mm/damon/sysfs: fix use-after-free in state_show()

In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs: fix use-after-free in stateshow stateshow reads kdamond-damonctx without holding damonsysfslock. This allows a use-after-free race: CPU 0 CPU 1 ----- ----- stateshow damonsysfsturndamonon ctx = kdamond-damonctx;...

0.0014EPSS
Exploits0References5
Rows per page
Query Builder