Astra Linux - уязвимость в linux, linux-5.10, linux-5.15

A use-after-free flaw was discovered in xen9pfsfrontremovet in net/9p/transxen.c within the Xen transport for 9pfs in the Linux kernel. This flaw could allow a local attacker to cause the system to crash due to a race condition, potentially leading to a kernel information leak...

Linux Distros Unpatched Vulnerability : CVE-2026-43249

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - 9p/xen: protect xen9pfsfrontfree against concurrent calls The xenwatch thread can race with other back- end change notifications and call xen9pfsfrontfree twice...

PT-2025-42748

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A buffer overflow issue exists in the USB 9pfs transport layer. Inconsistent size validation between packet header parsing and actual data copying allows a malicious USB host to overflow...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from inconsistent size validation between packet header parsing and actual data replication in the USB 9pfs...

Linux Distros Unpatched Vulnerability : CVE-2021-20181

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A race condition flaw was found in the 9pfs server implementation of QEMU up to and including 5.2.0. This flaw allows a malicious 9p client to cause a...

DEBIAN-CVE-2023-1859

A use-after-free flaw was found in xen9pfsfrontremovet in net/9p/transxen.c in Xen transport for 9pfs in the Linux Kernel. This flaw could allow a local attacker to crash the system due to a race problem, possibly leading to a kernel information leak...

OESA-2023-1216 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: A use-after-free flaw was found in btrfssearchslot in fs/btrfs/ctree.c in btrfs in the Linux Kernel.This flaw allows an attacker to crash the system and possibly cause a kernel information leaCVE-2023-1611 A flaw use after free i...

UBUNTU-CVE-2023-1859

A use-after-free flaw was found in xen9pfsfrontremovet in net/9p/transxen.c in Xen transport for 9pfs in the Linux Kernel. This flaw could allow a local attacker to crash the system due to a race problem, possibly leading to a kernel information leak...

SUSE CVE-2023-1859

A use-after-free flaw was found in xen9pfsfrontremovet in net/9p/transxen.c in Xen transport for 9pfs in the Linux Kernel. This flaw could allow a local attacker to crash the system due to a race problem, possibly leading to a kernel information leak...

SUSE CVE-2017-7471

Quick Emulator Qemu built with the VirtFS, host directory sharing via Plan 9 File System 9pfs support, is vulnerable to an improper access control issue. It could occur while accessing files on a shared host directory. A privileged user inside guest could use this flaw to access host file system...

SUSE CVE-2021-20181

A race condition flaw was found in the 9pfs server implementation of QEMU up to and including 5.2.0. This flaw allows a malicious 9p client to cause a use-after-free error, potentially escalating their privileges on the system. The highest threat from this vulnerability is to confidentiality,...

A race condition flaw was found in the 9pfs server implementation of QEMU up to and including 5.2.0. This flaw allows a malicious 9p client to cause a use-after-free error potentially escalating their privileges on the system. The highest threat from this vulnerability is to confidentiality integrity as well as system availability.

...

PT-2021-4579

Name of the Vulnerable Software and Affected Versions QEMU versions up to and including 5.2.0 Description A race condition flaw was found in the 9pfs server implementation, allowing a malicious 9p client to cause a use-after-free error. This could potentially escalate privileges on the system, wi...

The vulnerability of the v9fs_xattrwalk function (hw/9pfs/9p.c) in the Qemu hardware emulation software allows a hacker to obtain confidential information from the memory of the host operating system.

The vulnerability of the v9fsxattrwalk function hw/9pfs/9p.c in the Qemu hardware emulation software exists due to an error in reading extended attributes race condition. Exploiting this vulnerability can allow a malicious attacker on the host operating system to obtain confidential information...