14 matches found
Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15
A use-after-free flaw was discovered in xen9pfsfrontremovet in net/9p/transxen.c within the Xen transport for 9pfs in the Linux kernel. This flaw could allow a local attacker to cause the system to crash due to a race condition, potentially leading to a kernel information leak...
Linux Distros Unpatched Vulnerability : CVE-2026-43249
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - 9p/xen: protect xen9pfsfrontfree against concurrent calls The xenwatch thread can race with other back- end change notifications and call xen9pfsfrontfree twice...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from inconsistent size validation between packet header parsing and actual data replication in the USB 9pfs...
PT-2025-42748
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A buffer overflow issue exists in the USB 9pfs transport layer. Inconsistent size validation between packet header parsing and actual data copying allows a malicious USB host to overflow...
Linux Distros Unpatched Vulnerability : CVE-2021-20181
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A race condition flaw was found in the 9pfs server implementation of QEMU up to and including 5.2.0. This flaw allows a malicious 9p client to cause a...
DEBIAN-CVE-2023-1859
A use-after-free flaw was found in xen9pfsfrontremovet in net/9p/transxen.c in Xen transport for 9pfs in the Linux Kernel. This flaw could allow a local attacker to crash the system due to a race problem, possibly leading to a kernel information leak...
OESA-2023-1216 kernel security update
The Linux Kernel, the operating system core itself. Security Fixes: A use-after-free flaw was found in btrfssearchslot in fs/btrfs/ctree.c in btrfs in the Linux Kernel.This flaw allows an attacker to crash the system and possibly cause a kernel information leaCVE-2023-1611 A flaw use after free i...
UBUNTU-CVE-2023-1859
A use-after-free flaw was found in xen9pfsfrontremovet in net/9p/transxen.c in Xen transport for 9pfs in the Linux Kernel. This flaw could allow a local attacker to crash the system due to a race problem, possibly leading to a kernel information leak...
SUSE CVE-2023-1859
A use-after-free flaw was found in xen9pfsfrontremovet in net/9p/transxen.c in Xen transport for 9pfs in the Linux Kernel. This flaw could allow a local attacker to crash the system due to a race problem, possibly leading to a kernel information leak...
SUSE CVE-2017-7471
Quick Emulator Qemu built with the VirtFS, host directory sharing via Plan 9 File System 9pfs support, is vulnerable to an improper access control issue. It could occur while accessing files on a shared host directory. A privileged user inside guest could use this flaw to access host file system...
SUSE CVE-2021-20181
A race condition flaw was found in the 9pfs server implementation of QEMU up to and including 5.2.0. This flaw allows a malicious 9p client to cause a use-after-free error, potentially escalating their privileges on the system. The highest threat from this vulnerability is to confidentiality,...
A race condition flaw was found in the 9pfs server implementation of QEMU up to and including 5.2.0. This flaw allows a malicious 9p client to cause a use-after-free error potentially escalating their privileges on the system. The highest threat from this vulnerability is to confidentiality integrity as well as system availability.
...
PT-2021-4579
Name of the Vulnerable Software and Affected Versions QEMU versions up to and including 5.2.0 Description A race condition flaw was found in the 9pfs server implementation, allowing a malicious 9p client to cause a use-after-free error. This could potentially escalate privileges on the system, wi...
The vulnerability of the v9fs_xattrwalk function (hw/9pfs/9p.c) in the Qemu hardware emulation software allows a hacker to obtain confidential information from the memory of the host operating system.
The vulnerability of the v9fsxattrwalk function hw/9pfs/9p.c in the Qemu hardware emulation software exists due to an error in reading extended attributes race condition. Exploiting this vulnerability can allow a malicious attacker on the host operating system to obtain confidential information...