CVE-2022-49698

CVE-2022-49698 detailed context : In the Linux kernel, a bug in netfilter involves updating per-CPU rnd_state from user context in the local_out path, potentially allowing a local attacker to influence randomness. The recommended fix replaces uses of prandom with get_random_u32, and shifts random...

CVE-2022-49537 scsi: lpfc: Fix call trace observed during I/O with CMF enabled

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix call trace observed during I/O with CMF enabled The following was seen with CMF enabled: BUG: using smpprocessorid in preemptible code: systemd-udevd/31711 kernel: caller is lpfcupdatecmfcmd+0x214/0x420 lpfc kerne...

CVE-2022-49155 scsi: qla2xxx: Suppress a kernel complaint in qla_create_qpair()

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Suppress a kernel complaint in qlacreateqpair 12.323788 BUG: using smpprocessorid in preemptible 00000000 code: systemd-udevd/1020 12.332297 caller is qla2xxxcreateqpair+0x32a/0x5d0 qla2xxx 12.338417 CPU: 7 PID: 10...

Azure Linux 3.0 Security Update: kernel (CVE-2024-42071)

"The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42071 advisory. - In the Linux kernel, the following vulnerability has been resolved: ionic: use devconsumeskbany outside of...

kernel: scsi: qedf: Make qedf_execute_tmf() non-preemptible

A vulnerability was found in the Linux kernel's qedf driver function qedfexecutetmf, where the function call smpprocessorid is done from preemptible code before acquiring a lock which can result in BUGON when running an RT kernel. This can result in system inconsistencies...

DEBIAN-CVE-2024-50178

In the Linux kernel, the following vulnerability has been resolved: cpufreq: loongson3: Use rawsmpprocessorid in doservicerequest Use rawsmpprocessorid instead of plain smpprocessorid in doservicerequest, otherwise we may get some errors with the driver enabled: BUG: using smpprocessorid in...

AZL-53549 CVE-2024-50178 affecting package kernel 6.6.126.1-1

In the Linux kernel, the following vulnerability has been resolved: cpufreq: loongson3: Use rawsmpprocessorid in doservicerequest Use rawsmpprocessorid instead of plain smpprocessorid in doservicerequest, otherwise we may get some errors with the driver enabled: BUG: using smpprocessorid in...

kernel: scsi: qedf: Make qedf_execute_tmf() non-preemptible

A vulnerability was found in the Linux kernel's qedf driver function qedfexecutetmf, where the function call smpprocessorid is done from preemptible code before acquiring a lock which can result in BUGON when running an RT kernel. This can result in system inconsistencies...

DEBIAN-CVE-2024-44968

In the Linux kernel, the following vulnerability has been resolved: tick/broadcast: Move per CPU pointer access into the atomic section The recent fix for making the take over of the broadcast timer more reliable retrieves a per CPU pointer in preemptible context. This went unnoticed as compilers...

PT-2024-34011

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue concerns the use of smp processor id in preemptible code, which can lead to errors when the driver is enabled. The problem arises from the loongson3 cpufreq probe function...

SUSE CVE-2024-42124

In the Linux kernel, the following vulnerability has been resolved: scsi: qedf: Make qedfexecutetmf non-preemptible Stop calling smpprocessorid from preemptible code in qedfexecutetmf90. This results in BUGON when running an RT kernel. 659.343280 BUG: using smpprocessorid in preemptible 00000000...

CVE-2024-42124

In the Linux kernel, the following vulnerability has been resolved: scsi: qedf: Make qedfexecutetmf non-preemptible Stop calling smpprocessorid from preemptible code in qedfexecutetmf90. This results in BUGON when running an RT kernel. 659.343280 BUG: using smpprocessorid in preemptible 00000000...

DEBIAN-CVE-2024-42124

In the Linux kernel, the following vulnerability has been resolved: scsi: qedf: Make qedfexecutetmf non-preemptible Stop calling smpprocessorid from preemptible code in qedfexecutetmf90. This results in BUGON when running an RT kernel. 659.343280 BUG: using smpprocessorid in preemptible 00000000...

CVE-2024-42124

In the Linux kernel, the following vulnerability has been resolved: scsi: qedf: Make qedfexecutetmf non-preemptible Stop calling smpprocessorid from preemptible code in qedfexecutetmf90. This results in BUGON when running an RT kernel. 659.343280 BUG: using smpprocessorid in preemptible 00000000...

CVE-2024-42124

In the Linux kernel, the following vulnerability has been resolved: scsi: qedf: Make qedfexecutetmf non-preemptible Stop calling smpprocessorid from preemptible code in qedfexecutetmf90. This results in BUGON when running an RT kernel. 659.343280 BUG: using smpprocessorid in preemptible 00000000...

CVE-2024-42124 scsi: qedf: Make qedf_execute_tmf() non-preemptible

In the Linux kernel, the following vulnerability has been resolved: scsi: qedf: Make qedfexecutetmf non-preemptible Stop calling smpprocessorid from preemptible code in qedfexecutetmf90. This results in BUGON when running an RT kernel. 659.343280 BUG: using smpprocessorid in preemptible 00000000...

DEBIAN-CVE-2024-42071

In the Linux kernel, the following vulnerability has been resolved: ionic: use devconsumeskbany outside of napi If we're not in a NAPI softirq context, we need to be careful about how we call napiconsumeskb, specifically we need to call it with budget==0 to signal to it that we're not in a safe...

CVE-2024-42071 ionic: use dev_consume_skb_any outside of napi

In the Linux kernel, the following vulnerability has been resolved: ionic: use devconsumeskbany outside of napi If we're not in a NAPI softirq context, we need to be careful about how we call napiconsumeskb, specifically we need to call it with budget==0 to signal to it that we're not in a safe...

kernel: scsi: qla2xxx: Use raw_smp_processor_id() instead of smp_processor_id()

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Use rawsmpprocessorid instead of smpprocessorid The following call trace was observed: localhost kernel: nvme nvme0: NVME-FC0: controller connect complete localhost kernel: BUG: using smpprocessorid in preemptible...

kernel: scsi: qla2xxx: Use raw_smp_processor_id() instead of smp_processor_id()

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Use rawsmpprocessorid instead of smpprocessorid The following call trace was observed: localhost kernel: nvme nvme0: NVME-FC0: controller connect complete localhost kernel: BUG: using smpprocessorid in preemptible...