4 matches found
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988962)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988962 advisory. In the Linux kernel, the following vulnerability has been resolved: nbd: fix io hung while disconnecting device In our tests, qemu-nbd triggers a io hung: INFO: task...
Vulnerability of the nbd_disconnect_and_put() function in the drivers/block/nbd.c module – This driver for Linux kernel-based block devices allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.
Vulnerability of the nbddisconnectandput function in the drivers/block/nbd.c module – The Linux kernel’s block device support driver is vulnerable due to the repeated reuse of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...
Linux Distros Unpatched Vulnerability : CVE-2025-21731
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - nbd: don't allow reconnect after disconnect Following process can cause nbdconfig UAF: 1 grab nbdconfig temporarily; 2 nbdgenldisconnect flush all recvwork and...
Null pointer dereference
In the Linux kernel, the following vulnerability has been resolved: nbd: Fix NULL pointer in flushworkqueue Open /dev/nbdX first, the configrefs will be 1 and the pointers in nbddevice are still null. Disconnect /dev/nbdX, then reference a null recvworkq. The protection by configrefs in...