Lucene search
K

131 matches found

CVE
CVE
added 2024/04/03 5:0 p.m.80 views

CVE-2024-26732

CVE-2024-26732 affects the Linux kernel where SO_PEEK_OFF for sockets could cause a lockdep violation in af_unix, due to per-socket uio lock usage. The vulnerability arises because SO_PEEK_OFF was previously protected by kernel locks; a patch implemented lockless behavior for setsockopt(SO_PEEK_O...

5.5CVSS6.6AI score0.00158EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2024/04/03 5:0 p.m.8 views

CVE-2024-26732 net: implement lockless setsockopt(SO_PEEK_OFF)

In the Linux kernel, the following vulnerability has been resolved: net: implement lockless setsockoptSOPEEKOFF syzbot reported a lockdep violation 1 involving afunix support of SOPEEKOFF. Since SOPEEKOFF is inherently not thread safe it uses a per-socket skpeekoff field, there is really no point...

5.5CVSS5.1AI score0.00158EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/04/03 5:0 p.m.27 views

CVE-2024-26732 net: implement lockless setsockopt(SO_PEEK_OFF)

In the Linux kernel, the following vulnerability has been resolved: net: implement lockless setsockoptSOPEEKOFF syzbot reported a lockdep violation 1 involving afunix support of SOPEEKOFF. Since SOPEEKOFF is inherently not thread safe it uses a per-socket skpeekoff field, there is really no point...

6.7AI score0.00158EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2024/04/03 5:0 p.m.38 views

CVE-2024-26732

In the Linux kernel, the following vulnerability has been resolved: net: implement lockless setsockoptSOPEEKOFF syzbot reported a lockdep violation 1 involving afunix support of SOPEEKOFF. Since SOPEEKOFF is inherently not thread safe it uses a per-socket skpeekoff field, there is really no point...

5.5CVSS5.4AI score0.00158EPSS
Exploits0
OSV
OSV
added 2024/04/03 3:15 p.m.5 views

UBUNTU-CVE-2024-26686

In the Linux kernel, the following vulnerability has been resolved: fs/proc: dotaskstat: use sig-statslock to gather the threads/children stats locktasksighand can trigger a hard lockup. If NRCPUS threads call dotaskstat at the same time and the process has NRTHREADS, it will spin with irqs...

5.5CVSS6.2AI score0.00213EPSS
Exploits0References16
Positive Technologies
Positive Technologies
added 2024/01/23 12:0 a.m.14 views

PT-2024-21464

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved. The issue is related to the do task stat function, which can trigger a hard lockup if NR CPUS threads call it at the same time and...

5.5CVSS5.5AI score0.00213EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2023/11/14 3:46 p.m.3 views

kernel: net/mlx5e: Fix deadlock in tc route query code

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix deadlock in tc route query code Cited commit causes ABBA deadlock0 when peer flows are created while holding the devcom rw semaphore. Due to peer flows offload implementation the lock is taken much higher up the ca...

5.5CVSS6.8AI score0.0012EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/11/07 9:3 a.m.3 views

kernel: af_unix: Fix a data-race in unix_dgram_peer_wake_me().

In the Linux kernel, the following vulnerability has been resolved: afunix: Fix a data-race in unixdgrampeerwakeme. unixdgrampoll calls unixdgrampeerwakeme without other's lock held and check if its receive queue is full. Here we need to use unixrecvqfulllockless instead of unixrecvqfull, otherwi...

4.7CVSS6.3AI score0.00186EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/11/07 12:0 a.m.12 views

PT-2025-8278 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A data-race issue in the Linux kernel has been identified, specifically in the unix dgram peer wake me function. The unix dgram poll function calls unix dgram peer wake me without...

8.2CVSS6.6AI score0.93838EPSS
Exploits27References681
Positive Technologies
Positive Technologies
added 2021/06/10 12:0 a.m.4 views

PT-2024-11232 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.12.13 Description: The issue is related to a null pointer dereference in the Linux kernel's bridge tunnel due to lockless access in the tunnel egress path. When a VLAN tunnel is deleted, the tunnel dst pointer...

7.8CVSS7AI score0.03558EPSS
Exploits0References136
Oracle linux
Oracle linux
added 2020/09/03 12:0 a.m.125 views

Unbreakable Enterprise kernel security update

4.1.12-124.42.3 - can: peakusb: pcanusbfd: Fix info-leaks to USB devices Tomas Bortoli Orabug: 31351221 CVE-2019-19535 - media: hdpvr: Fix an error handling path in hdpvrprobe Arvind Yadav Orabug: 31352053 CVE-2017-16644 - fs/binfmtmisc.c: do not allow offset overflow Thadeu Lima de Souza Cascard...

7.8CVSS0.3AI score0.03551EPSS
Exploits0
Rows per page
Query Builder