4 matches found
CVE-2026-52933 io_uring/poll: fix signed comparison in io_poll_get_ownership()
In the Linux kernel, the following vulnerability has been resolved: iouring/poll: fix signed comparison in iopollgetownership iopollgetownership uses a signed comparison to check whether pollrefs has reached the threshold for the slowpath: if unlikelyatomicread&req-pollrefs = IOPOLLREFBIAS...
AZL-13169 CVE-2023-0468 affecting package kernel for versions less than 5.15.92.1-1
A use-after-free flaw was found in iouring/poll.c in iopollcheckevents in the iouring subcomponent in the Linux Kernel due to a race condition of pollrefs. This flaw may cause a NULL pointer dereference...
PT-2022-6197 · Linux +3 · Linux Kernel +3
Name of the Vulnerable Software and Affected Versions: Linux Kernel affected versions not specified Description: A use-after-free flaw was found in the io uring subcomponent of the Linux Kernel due to a race condition in the poll refs function. This issue may cause a NULL pointer dereference,...
GSD-2022-1001102 io_uring: bump poll refs to full 31-bits
iouring: bump poll refs to full 31-bits This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.2 by commit...