Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: nullblk: The issue of kmemleak was fixed by releasing the references to fault-configfs items. When CONFIGBLKDEVNULLBLKFAULTINJECTION is enabled, the null-blk driver sets up fault injection support by creating configfs items such ...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: block: nullblk: end timed out poll request When poll request is timed out, it is removed from the poll list, but not completed, so the request is leaked, and never get chance to complete. Fix the issue by ending it in timeout...

ROS-20260112-7322

A vulnerability in the nullbupdatenrhwqueues function of the drivers/block/nullblk/main.c module of the Linux kernel is related to pointer dereferencing. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

SUSE CVE-2023-54080

In the Linux kernel, the following vulnerability has been resolved: btrfs: zoned: skip splitting and logical rewriting on pre-alloc write When doing a relocation, there is a chance that at the time of btrfsrelocclonecsums, there is no checksum for the corresponding region. In this case,...

Linux Distros Unpatched Vulnerability : CVE-2023-53531

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: nullblk: fix poll request timeout handling When doing iouring benchmark on /dev/nullb0, it's...

UBUNTU-CVE-2023-53576

In the Linux kernel, the following vulnerability has been resolved: nullblk: Always check queue mode setting from configfs Make sure to check device queue mode in the nullvalidateconf and return error for NULLQRQ as we don't allow legacy I/O path, without this patch we get OOPs when queue mode is...

EUVD-2022-55147

Malicious code in bioql PyPI...

SUSE CVE-2023-53531

In the Linux kernel, the following vulnerability has been resolved: nullblk: fix poll request timeout handling When doing iouring benchmark on /dev/nullb0, it's easy to crash the kernel if poll requests timeout triggered, as reported by David. 1 BUG: kernel NULL pointer dereference, address:...

CVE-2023-53531

In the Linux kernel, the following vulnerability has been resolved: nullblk: fix poll request timeout handling When doing iouring benchmark on /dev/nullb0, it's easy to crash the kernel if poll requests timeout triggered, as reported by David. 1 BUG: kernel NULL pointer dereference, address:...

CVE-2023-53531 null_blk: fix poll request timeout handling

In the Linux kernel, the following vulnerability has been resolved: nullblk: fix poll request timeout handling When doing iouring benchmark on /dev/nullb0, it's easy to crash the kernel if poll requests timeout triggered, as reported by David. 1 BUG: kernel NULL pointer dereference, address:...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a race condition in the polling request timeout handling in the nullblk driver, which could lead to a null...

Linux Distros Unpatched Vulnerability : CVE-2022-49901

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - blk-mq: Fix kmemleak in blkmqinitallocatedqueue There is a kmemleak caused by modprobe nullblk.ko unreferenced object 0xffff8881acb1f000 size 1024: comm...

SUSE CVE-2025-38255

In the Linux kernel, the following vulnerability has been resolved: lib/groupcpus: fix NULL pointer dereference from groupcpusevenly While testing nullblk with configfs, echo 0 pollqueues will trigger following panic: BUG: kernel NULL pointer dereference, address: 0000000000000010 Oops: Oops: 000...

SUSE CVE-2022-49901

In the Linux kernel, the following vulnerability has been resolved: blk-mq: Fix kmemleak in blkmqinitallocatedqueue There is a kmemleak caused by modprobe nullblk.ko unreferenced object 0xffff8881acb1f000 size 1024: comm "modprobe", pid 836, jiffies 4294971190 age 27.068s hex dump first 32 bytes:...

AZL-61715 CVE-2022-49901 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: blk-mq: Fix kmemleak in blkmqinitallocatedqueue There is a kmemleak caused by modprobe nullblk.ko unreferenced object 0xffff8881acb1f000 size 1024: comm "modprobe", pid 836, jiffies 4294971190 age 27.068s hex dump first 32 bytes:...

CVE-2022-49901

CVE-2022-49901 affects the Linux kernel’s block multi-queue (blk-mq) path. It’s tied to a kmemleak issue triggered by modprobe null_blk.ko during queue initialization when an error path does not properly release resources. The description notes that q->ma_ops is set to NULL before blk_release_...

kernel: null_blk: fix validation of block size

In the Linux kernel, the following vulnerability has been resolved: nullblk: fix validation of block size Block size should be between 512 and PAGESIZE and be a power of 2. The current check does not validate this, so update the check. Without this patch, nullblk would Oops due to a null pointer...

null_blk: fix null-ptr-dereference while configuring 'power' and 'submit_queues'

...

CVE-2024-47680

In the Linux kernel, the following vulnerability has been resolved: f2fs: check discard support for conventional zones As the helper function f2fsbdevsupportdiscard shows, f2fs checks if the target block devices support discard by calling bdevmaxdiscardsectors and bdeviszoned. This check works we...

CVE-2024-47680

CVE-2024-47680 affects the Linux kernel’s f2fs discard handling for conventional zones on zoned block devices. The root cause is that f2fs relied on a discard capability check performed by bdev_max_discard_sectors() and bdev_is_zoned(), which bypasses to discard even when a device doesn’t support...