6914 matches found
DEBIAN-CVE-2025-10824
A vulnerability was determined in axboe fio up to 3.41. This impacts the function parsejobsini of the file init.c. Executing manipulation can lead to use after free. The attack needs to be launched locally. The exploit has been publicly disclosed and may be utilized...
CVE-2025-10824
A vulnerability was determined in axboe fio up to 3.41. This impacts the function parsejobsini of the file init.c. Executing manipulation can lead to use after free. The attack needs to be launched locally. The exploit has been publicly disclosed and may be utilized...
UBUNTU-CVE-2025-10824
A vulnerability was determined in axboe fio up to 3.41. This impacts the function parsejobsini of the file init.c. Executing manipulation can lead to use after free. The attack needs to be launched locally. The exploit has been publicly disclosed and may be utilized...
Use After Free
Overview Affected versions of this package are vulnerable to Use After Free via the parsejobsini function. An attacker can cause memory corruption or potentially execute arbitrary code by providing specially crafted input to this process. Remediation There is no fixed version for axboe/fio...
CVE-2025-10824 axboe fio init.c __parse_jobs_ini use after free
A vulnerability was determined in axboe fio up to 3.41. This impacts the function parsejobsini of the file init.c. Executing manipulation can lead to use after free. The attack needs to be launched locally. The exploit has been publicly disclosed and may be utilized...
CVE-2025-10824
A vulnerability was determined in axboe fio up to 3.41. This impacts the function parsejobsini of the file init.c. Executing manipulation can lead to use after free. The attack needs to be launched locally. The exploit has been publicly disclosed and may be utilized...
CVE-2025-10824 axboe fio init.c __parse_jobs_ini use after free
A vulnerability was determined in axboe fio up to 3.41. This impacts the function parsejobsini of the file init.c. Executing manipulation can lead to use after free. The attack needs to be launched locally. The exploit has been publicly disclosed and may be utilized...
CVE-2025-10824
CVE-2025-10824 affects the axboe fio package up to version 3.41. The vulnerability targets the function __parse_jobs_ini in init.c and is caused by a use-after-free condition. Exploitation requires local access, and a public exploit has been disclosed. The information across multiple sources cons...
PT-2025-39092
Name of the Vulnerable Software and Affected Versions axboe fio versions up to 3.41 Description A flaw exists in axboe fio up to version 3.41. This issue is related to the parse jobs ini function within the init.c file, which can lead to a use after free condition. The attack requires local acces...
fio 资源管理错误漏洞
fio is a flexible I/O testing software by the individual developer Jens Axboe. A resource management error vulnerability exists in fio 3.41 and earlier versions, which stems from a post-release reuse issue in the parsejobsini function in the init.c file, which could lead to a local attack...
SUSE-SU-2025:03290-1 Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP7 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2024-46733: btrfs: fix qgroup reserve leaks in cowfilerange bsc1230708. - CVE-2024-49996: cifs: Fix buffer overflow when parsing NFS reparse points bsc1232089. -...
SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2025:03272-1)
The remote SUSE Linux SLES15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:03272-1 advisory. The SUSE Linux Enterprise 15 SP6 RT kernel was updated to receive various security bugfixes. The following security bugs were...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : net-tools (SUSE-SU-2025:03260-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:03260-1 advisory. Security issues fixed: - CVE-2025-46836: missing bounds check in getname may lead to a stack buffer...
SUSE CVE-2022-50392
In the Linux kernel, the following vulnerability has been resolved: ASoC: mediatek: mt8183: fix refcount leak in mt8183mt6358ts3a227max98357devprobe The node returned by ofparsephandle with refcount incremented, ofnodeput needs be called when finish using it. So add it in the error path in...
CVE-2022-50411
In the Linux kernel, the following vulnerability has been resolved: ACPICA: Fix error code path in acpidscallcontrolmethod A use-after-free in acpipsparseaml after a failing invocaion of acpidscallcontrolmethod is reported by KASAN 1 and code inspection reveals that nextwalkstate pushed to the...
CVE-2022-50411
In the Linux kernel, the following vulnerability has been resolved: ACPICA: Fix error code path in acpidscallcontrolmethod A use-after-free in acpipsparseaml after a failing invocaion of acpidscallcontrolmethod is reported by KASAN 1 and code inspection reveals that nextwalkstate pushed to the...
UBUNTU-CVE-2022-50411
In the Linux kernel, the following vulnerability has been resolved: ACPICA: Fix error code path in acpidscallcontrolmethod A use-after-free in acpipsparseaml after a failing invocaion of acpidscallcontrolmethod is reported by KASAN 1 and code inspection reveals that nextwalkstate pushed to the...
CVE-2022-50411 ACPICA: Fix error code path in acpi_ds_call_control_method()
In the Linux kernel, the following vulnerability has been resolved: ACPICA: Fix error code path in acpidscallcontrolmethod A use-after-free in acpipsparseaml after a failing invocaion of acpidscallcontrolmethod is reported by KASAN 1 and code inspection reveals that nextwalkstate pushed to the...
CVE-2022-50411 ACPICA: Fix error code path in acpi_ds_call_control_method()
In the Linux kernel, the following vulnerability has been resolved: ACPICA: Fix error code path in acpidscallcontrolmethod A use-after-free in acpipsparseaml after a failing invocaion of acpidscallcontrolmethod is reported by KASAN 1 and code inspection reveals that nextwalkstate pushed to the...
CVE-2023-53369 net: dcb: choose correct policy to parse DCB_ATTR_BCN
In the Linux kernel, the following vulnerability has been resolved: net: dcb: choose correct policy to parse DCBATTRBCN The dcbnlbcnsetcfg uses erroneous policy to parse tbDCBATTRBCN, which is introduced in commit 859ee3c43812 "DCB: Add support for DCB BCN". Please see the comment in below code...