43 matches found
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: nullblk: The issue of kmemleak was fixed by releasing references to fault-configfs items. When CONFIGBLKDEVNULLBLKFAULTINJECTION is enabled, the null-blk driver sets up fault injection support by creating configfs items such as...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: block: nullblk: end timed out poll request When a poll request times out, it is removed from the poll list. However, since the request is not completed, it becomes exposed and never gets a chance to be processed. This issue is...
ROS-20260112-7322
A vulnerability in the nullbupdatenrhwqueues function of the drivers/block/nullblk/main.c module of the Linux kernel is related to pointer dereferencing. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
SUSE CVE-2023-54080
In the Linux kernel, the following vulnerability has been resolved: btrfs: zoned: skip splitting and logical rewriting on pre-alloc write When doing a relocation, there is a chance that at the time of btrfsrelocclonecsums, there is no checksum for the corresponding region. In this case,...
Linux Distros Unpatched Vulnerability : CVE-2023-53531
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: nullblk: fix poll request timeout handling When doing iouring benchmark on /dev/nullb0, it's...
UBUNTU-CVE-2023-53576
In the Linux kernel, the following vulnerability has been resolved: nullblk: Always check queue mode setting from configfs Make sure to check device queue mode in the nullvalidateconf and return error for NULLQRQ as we don't allow legacy I/O path, without this patch we get OOPs when queue mode is...
EUVD-2022-55147
Malicious code in bioql PyPI...
SUSE CVE-2023-53531
In the Linux kernel, the following vulnerability has been resolved: nullblk: fix poll request timeout handling When doing iouring benchmark on /dev/nullb0, it's easy to crash the kernel if poll requests timeout triggered, as reported by David. 1 BUG: kernel NULL pointer dereference, address:...
CVE-2023-53531
In the Linux kernel, the following vulnerability has been resolved: nullblk: fix poll request timeout handling When doing iouring benchmark on /dev/nullb0, it's easy to crash the kernel if poll requests timeout triggered, as reported by David. 1 BUG: kernel NULL pointer dereference, address:...
CVE-2023-53531 null_blk: fix poll request timeout handling
In the Linux kernel, the following vulnerability has been resolved: nullblk: fix poll request timeout handling When doing iouring benchmark on /dev/nullb0, it's easy to crash the kernel if poll requests timeout triggered, as reported by David. 1 BUG: kernel NULL pointer dereference, address:...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a race condition in the polling request timeout handling in the nullblk driver, which could lead to a null...
Linux Distros Unpatched Vulnerability : CVE-2022-49901
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - blk-mq: Fix kmemleak in blkmqinitallocatedqueue There is a kmemleak caused by modprobe nullblk.ko unreferenced object 0xffff8881acb1f000 size 1024: comm...
SUSE CVE-2025-38255
In the Linux kernel, the following vulnerability has been resolved: lib/groupcpus: fix NULL pointer dereference from groupcpusevenly While testing nullblk with configfs, echo 0 pollqueues will trigger following panic: BUG: kernel NULL pointer dereference, address: 0000000000000010 Oops: Oops: 000...
The vulnerability of the null_timeout_rq() function in the drivers/block/null_blk/main.c module of the Linux kernel allows a hacker to trigger a service failure.
The vulnerability of the nulltimeoutrq function in the drivers/block/nullblk/main.c module of the Linux kernel is related to a memory overflow issue. Exploiting this vulnerability could allow an attacker to cause a system failure...
SUSE CVE-2022-49901
In the Linux kernel, the following vulnerability has been resolved: blk-mq: Fix kmemleak in blkmqinitallocatedqueue There is a kmemleak caused by modprobe nullblk.ko unreferenced object 0xffff8881acb1f000 size 1024: comm "modprobe", pid 836, jiffies 4294971190 age 27.068s hex dump first 32 bytes:...
AZL-61715 CVE-2022-49901 affecting package kernel 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: blk-mq: Fix kmemleak in blkmqinitallocatedqueue There is a kmemleak caused by modprobe nullblk.ko unreferenced object 0xffff8881acb1f000 size 1024: comm "modprobe", pid 836, jiffies 4294971190 age 27.068s hex dump first 32 bytes:...
CVE-2022-49901
CVE-2022-49901 affects the Linux kernel’s block multi-queue (blk-mq) path. It’s tied to a kmemleak issue triggered by modprobe null_blk.ko during queue initialization when an error path does not properly release resources. The description notes that q->ma_ops is set to NULL before blk_release_...
The vulnerability of the nullb_update_nrHW_queues() function in the drivers/block/null_blk/main.c module of the Linux kernel allows a hacker to cause a service failure.
The vulnerability of the nullbupdatenrHWqueues function in the drivers/block/nullblk/main.c module of the Linux kernel relates to pointer dereferencing. Exploiting this vulnerability could allow an attacker to cause a service failure...
kernel: null_blk: fix validation of block size
In the Linux kernel, the following vulnerability has been resolved: nullblk: fix validation of block size Block size should be between 512 and PAGESIZE and be a power of 2. The current check does not validate this, so update the check. Without this patch, nullblk would Oops due to a null pointer...
null_blk: fix null-ptr-dereference while configuring 'power' and 'submit_queues'
...