Lucene search
K

26 matches found

Tenable Nessus
Tenable Nessus
added 2026/03/02 12:0 a.m.2 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-005508)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005508 advisory. In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix possible UAF for bfqq-bic with merge chain 1 initial state, three tasks: Process ...

5.5CVSS6.8AI score0.00236EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/10/27 12:0 a.m.11 views

Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices Use After Free (CVE-2024-47706)

In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix possible UAF for bfqq-bic with merge chain In this case, IO from Process 1 will get bfqq2 from BIC1 first, and then get bfqq3 through merge chain, and finially handle IO by bfqq3. Howerver, current code will think...

5.5CVSS6.4AI score0.00236EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2025/09/22 11:32 p.m.10 views

SUSE CVE-2024-47706

In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix possible UAF for bfqq-bic with merge chain 1 initial state, three tasks: Process 1 Process 2 Process 3 BIC1 BIC2 BIC3 | ^ | ^ | ^ | | | | | | V | V | V | bfqq1 bfqq2 bfqq3 process ref: 1 1 1 2 bfqq1 merged to bfqq...

7CVSS6.5AI score0.00236EPSS
Exploits0References48
OSV
OSV
added 2025/09/12 2:4 a.m.4 views

SUSE-SU-2025:03186-1 Security update for the Linux Kernel (Live Patch 19 for SLE 15 SP5)

This update for the Linux Kernel 5.14.21-1505005580 fixes several issues. The following security issues were fixed: - CVE-2025-21999: proc: fix UAF in procgetinode bsc1242579. - CVE-2022-49053: scsi: target: tcmu: Fix possible page UAF bsc1237930. - CVE-2025-38001: netsched: hfsc: Address reentra...

7.8CVSS7.4AI score0.00369EPSS
Exploits3References21
SUSE Linux
SUSE Linux
added 2025/09/11 3:47 p.m.8 views

Security update for kernel-livepatch-MICRO-6-0-RT_Update_2

This update for kernel-livepatch-MICRO-6-0-RTUpdate2 fixes the following issues: CVE-2025-38087: net/sched: fix use-after-free in tapriodevnotifier bsc1245505 CVE-2025-21999: proc: fix UAF in procgetinode bsc1242579 CVE-2025-38001: netsched: hfsc: Address reentrant enqueue adding class to eltree...

8.5CVSS7.2AI score0.00369EPSS
Exploits3References46
SUSE Linux
SUSE Linux
added 2025/09/11 3:47 p.m.8 views

Security update for kernel-livepatch-MICRO-6-0-RT_Update_2

This update for kernel-livepatch-MICRO-6-0-RTUpdate2 fixes the following issues: CVE-2025-38087: net/sched: fix use-after-free in tapriodevnotifier bsc1245505 CVE-2025-21999: proc: fix UAF in procgetinode bsc1242579 CVE-2025-38001: netsched: hfsc: Address reentrant enqueue adding class to eltree...

8.5CVSS7.3AI score0.00369EPSS
Exploits3References46
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.3 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: block, bfq: Fixed a potential UAF issue for bfqq-bic when using the merge chain. 1 Initial state: Three tasks: - Process 1 Process 2 Process 3 - BIC1 BIC2 BIC3 | Λ | Λ | Λ | | | | | V | V | V bfqq1 bfqq2 bfqq3 Process referenc...

5.5CVSS6.6AI score0.00236EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.2 views

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix uaf for accessing wakerbfqq after splitting After commit 42c306ed7233 "block, bfq: don't break merge chain in bfqsplitbfqq", if the current procress is the last holder of bfqq, the bfqq can be freed after...

7.8CVSS6.5AI score0.00217EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.7 views

Azure Linux 3.0 Security Update: kernel (CVE-2024-49854)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-49854 advisory. - In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix uaf for accessing...

7.8CVSS6AI score0.00217EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.5 views

Azure Linux 3.0 Security Update: kernel (CVE-2024-47706)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-47706 advisory. - In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix possible UAF for bfqq-bi...

5.5CVSS6.2AI score0.00236EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2024/11/09 8:0 a.m.14 views

block bfq: fix possible UAF for bfqq->bic with merge chain

...

5.5CVSS6.8AI score0.00236EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2024/10/21 4:9 p.m.15 views

CVE-2024-49854

In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix uaf for accessing wakerbfqq after splitting After commit 42c306ed7233 "block, bfq: don't break merge chain in bfqsplitbfqq", if the current procress is the last holder of bfqq, the bfqq can be freed after...

6.7CVSS6.9AI score0.00217EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2024/10/21 4:8 p.m.13 views

CVE-2024-47706

A flaw was found in the Budget Fair Queueing BFQ I/O scheduler in the Linux kernel. Handling merged chains of BFQ queues can cause a use-after-free condition and result in a denial of service. Mitigation Mitigation for this issue is either not available or the currently available options do not...

5.5CVSS5AI score0.00236EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2024/10/21 3:45 p.m.3 views

SUSE CVE-2024-49854

In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix uaf for accessing wakerbfqq after splitting After commit 42c306ed7233 "block, bfq: don't break merge chain in bfqsplitbfqq", if the current procress is the last holder of bfqq, the bfqq can be freed after...

7CVSS6.3AI score0.00217EPSS
Exploits0References16
OSV
OSV
added 2024/10/21 1:15 p.m.8 views

AZL-50829 CVE-2024-49854 affecting package kernel for versions less than 5.15.173.1-1

In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix uaf for accessing wakerbfqq after splitting After commit 42c306ed7233 "block, bfq: don't break merge chain in bfqsplitbfqq", if the current procress is the last holder of bfqq, the bfqq can be freed after...

7.8CVSS6.5AI score0.00217EPSS
Exploits0References1
OSV
OSV
added 2024/10/21 1:15 p.m.2 views

DEBIAN-CVE-2024-49854

In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix uaf for accessing wakerbfqq after splitting After commit 42c306ed7233 "block, bfq: don't break merge chain in bfqsplitbfqq", if the current procress is the last holder of bfqq, the bfqq can be freed after...

7.8CVSS5.8AI score0.00217EPSS
Exploits0References1
OSV
OSV
added 2024/10/21 1:15 p.m.2 views

UBUNTU-CVE-2024-49854

In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix uaf for accessing wakerbfqq after splitting After commit 42c306ed7233 "block, bfq: don't break merge chain in bfqsplitbfqq", if the current procress is the last holder of bfqq, the bfqq can be freed after...

7.8CVSS6.6AI score0.00217EPSS
Exploits0References9
Vulnrichment
Vulnrichment
added 2024/10/21 12:18 p.m.11 views

CVE-2024-49854 block, bfq: fix uaf for accessing waker_bfqq after splitting

In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix uaf for accessing wakerbfqq after splitting After commit 42c306ed7233 "block, bfq: don't break merge chain in bfqsplitbfqq", if the current procress is the last holder of bfqq, the bfqq can be freed after...

6.9AI score0.00217EPSS
Exploits0References6
NVD
NVD
added 2024/10/21 12:15 p.m.13 views

CVE-2024-47706

In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix possible UAF for bfqq-bic with merge chain 1 initial state, three tasks: Process 1 Process 2 Process 3 BIC1 BIC2 BIC3 | Λ | Λ | Λ | | | | | | V | V | V | bfqq1 bfqq2 bfqq3 process ref: 1 1 1 2 bfqq1 merged to bfqq...

5.5CVSS0.00236EPSS
Exploits0References13
OSV
OSV
added 2024/10/21 12:15 p.m.5 views

AZL-51234 CVE-2024-47706 affecting package kernel for versions less than 6.6.56.1-5

In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix possible UAF for bfqq-bic with merge chain 1 initial state, three tasks: Process 1 Process 2 Process 3 BIC1 BIC2 BIC3 | Λ | Λ | Λ | | | | | | V | V | V | bfqq1 bfqq2 bfqq3 process ref: 1 1 1 2 bfqq1 merged to bfqq...

5.5CVSS6.4AI score0.00236EPSS
Exploits0References1
Rows per page
Query Builder