Lucene search
K

67 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.8 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: scsi: mpt3sas: Page fault in reply Q processing A page fault was encountered in mpt3sas on a LUN reset error path: 145.763216 mpt3sascm1: Task abort tm failed: handle0x0002, timeout30 trmethod0x0 smid3 msixindex0 145.778932 sc...

5.5CVSS5.6AI score0.00239EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.7 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: scsi: target: tcmloop: The “Drain commands” step in the targetreset handler is not properly executed. The tcmlooptargetreset function violates the SCSI EH contract: it returns SUCCESS without draining any ongoing commands. The SC...

5.5CVSS6.4AI score0.00114EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: scsi: target: Fix multiple LUNRESET handling This fix addresses a bug where the initiator assumes that a LUNRESET has cleaned up running commands, when in fact it hasn’t. The bug was introduced in commit 51ec502a3266 “target:...

4.7CVSS6.3AI score0.00147EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/05/29 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-46149

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - scsi: target: configfs: Bound snprintf return in tgptgpmembersshow targettgptgpmembersshow formats LUN paths with snprintf into a 256-byte stack buffer, then wi...

7.1CVSS5.8AI score0.00139EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/05/06 1:40 a.m.8 views

SUSE CVE-2026-43054

In the Linux kernel, the following vulnerability has been resolved: scsi: target: tcmloop: Drain commands in targetreset handler tcmlooptargetreset violates the SCSI EH contract: it returns SUCCESS without draining any in-flight commands. The SCSI EH documentation scsieh.rst requires that when a...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References13
NVD
NVD
added 2026/05/01 3:16 p.m.7 views

CVE-2026-43054

In the Linux kernel, the following vulnerability has been resolved: scsi: target: tcmloop: Drain commands in targetreset handler tcmlooptargetreset violates the SCSI EH contract: it returns SUCCESS without draining any in-flight commands. The SCSI EH documentation scsieh.rst requires that when a...

5.5CVSS0.00114EPSS
Exploits0References7
Cvelist
Cvelist
added 2026/05/01 2:15 p.m.27 views

CVE-2026-43054 scsi: target: tcm_loop: Drain commands in target_reset handler

In the Linux kernel, the following vulnerability has been resolved: scsi: target: tcmloop: Drain commands in targetreset handler tcmlooptargetreset violates the SCSI EH contract: it returns SUCCESS without draining any in-flight commands. The SCSI EH documentation scsieh.rst requires that when a...

0.00114EPSS
Exploits0References7
CVE
CVE
added 2026/05/01 2:15 p.m.12 views

CVE-2026-43054

CVE-2026-43054 concerns the Linux kernel SCSI target core (tcm_loop). The vulnerability stems from tcm_loop_target_reset() not draining in-flight commands, which can cause SCSI EH to reuse in-flight scsi_cmnd structures and leak LUN references, potentially hanging configfs LUN unlink. The fix dra...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References7Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/01 2:15 p.m.4 views

CVE-2026-43054

In the Linux kernel, the following vulnerability has been resolved: scsi: target: tcmloop: Drain commands in targetreset handler tcmlooptargetreset violates the SCSI EH contract: it returns SUCCESS without draining any in-flight commands. The SCSI EH documentation scsieh.rst requires that when a...

5.8AI score0.00114EPSS
Exploits0References8Affected Software1
EUVD
EUVD
added 2026/05/01 2:15 p.m.7 views

EUVD-2026-26653

In the Linux kernel, the following vulnerability has been resolved: scsi: target: tcmloop: Drain commands in targetreset handler tcmlooptargetreset violates the SCSI EH contract: it returns SUCCESS without draining any in-flight commands. The SCSI EH documentation scsieh.rst requires that when a...

5.8AI score0.00114EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2026/01/23 12:0 a.m.2 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-004872)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004872 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: target: core: Add TMF to tmrlist handling An abort that is responded to by iSCSI itself is...

5.5CVSS7AI score0.00237EPSS
Exploits0References4
NVD
NVD
added 2025/12/24 11:16 a.m.7 views

CVE-2025-68371

In the Linux kernel, the following vulnerability has been resolved: scsi: smartpqi: Fix device resources accessed after device removal Correct possible race conditions during device removal. Previously, a scheduled work item to reset a LUN could still execute after the device was removed, leading...

0.00161EPSS
Exploits0References6
OSV
OSV
added 2025/12/24 11:16 a.m.3 views

UBUNTU-CVE-2025-68371

In the Linux kernel, the following vulnerability has been resolved: scsi: smartpqi: Fix device resources accessed after device removal Correct possible race conditions during device removal. Previously, a scheduled work item to reset a LUN could still execute after the device was removed, leading...

5.8AI score0.00161EPSS
Exploits0References26
OSV
OSV
added 2025/12/24 10:33 a.m.3 views

CVE-2025-68371 scsi: smartpqi: Fix device resources accessed after device removal

In the Linux kernel, the following vulnerability has been resolved: scsi: smartpqi: Fix device resources accessed after device removal Correct possible race conditions during device removal. Previously, a scheduled work item to reset a LUN could still execute after the device was removed, leading...

6.3AI score0.00161EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2025/12/24 12:0 a.m.5 views

PT-2025-52907

Name of the Vulnerable Software and Affected Versions Linux Kernel affected versions not specified Description A race condition exists in the SmartPQI SCSI driver within the Linux kernel during device removal. Specifically, a scheduled work item to reset a LUN could execute after the device was...

6.3AI score0.00161EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.2 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989413)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989413 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: mpt3sas: Page fault in reply q processing A page fault was encountered in mpt3sas on a LUN...

5.5CVSS5.9AI score0.00239EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/22 3:31 p.m.4 views

EUVD-2023-60022

In the Linux kernel, the following vulnerability has been resolved: mm/vmemmap/devdax: fix kernel crash when probing devdax devices commit 4917f55b4ef9 "mm/sparse-vmemmap: improve memory savings for compound devmaps" added support for using optimized vmmemap for devdax devices. But how vmemmap...

5AI score0.00181EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/10/08 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2023-53586

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - scsi: target: Fix multiple LUNRESET handling This fixes a bug where an initiator thinks a LUNRESET has cleaned up running commands when it hasn't. The bug was...

4.7CVSS6.7AI score0.00147EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/10/05 2:55 a.m.2 views

SUSE CVE-2023-53586

In the Linux kernel, the following vulnerability has been resolved: scsi: target: Fix multiple LUNRESET handling This fixes a bug where an initiator thinks a LUNRESET has cleaned up running commands when it hasn't. The bug was added in commit 51ec502a3266 "target: Delete tmr from list before...

6CVSS6.6AI score0.00147EPSS
Exploits0References3
NVD
NVD
added 2025/10/04 4:15 p.m.13 views

CVE-2023-53586

In the Linux kernel, the following vulnerability has been resolved: scsi: target: Fix multiple LUNRESET handling This fixes a bug where an initiator thinks a LUNRESET has cleaned up running commands when it hasn't. The bug was added in commit 51ec502a3266 "target: Delete tmr from list before...

4.7CVSS0.00147EPSS
Exploits0References6
Rows per page
Query Builder