Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerabilities have been resolved: - dm raid: fixed the address sanitizer warning in raidresume. There is a KASAN warning in raidresume when running the lvm test lvconvert-raid.sh. The reason for the warning is that mddev-raiddisks is greater than rs-raiddisks,...

Astra Linux - уязвимость в linux, linux-5.15, linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: - md/raid10: Fixed a leak of the value of ‘r10bio-remaining’ for recovery purposes. - raid10syncrequest: This function adds ‘r10bio-remaining’ for both rdev and replacement rdev. However, if the read I/O fails,...

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: md: The mdstopwrites function is called in mdstop. From the link 1, we can see that raid1d continued to run even after the path raiddtr - mdstop - mdstop. We should stop writing data first in the destructor, to align with the...

Astra Linux – Vulnerability in Linux 5.10, Linux

In the Linux kernel, the following vulnerability has been resolved: md: fixed a crash in mempoolfree There is a crash in mempoolfree when running the lvm test using shell/lvchange-rebuild-raid.sh. The reason for the crash is as follows: - superwritten calls atomicdecandtest&mddev-pendingwrites an...

Astra Linux - уязвимость в linux-5.10, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: md/raid5-cache: fixed null-ptr-deref in r5lFlushStripeToRaid The r5lFlushStripeToRaid function will check whether the list ‘flushingios’ is empty. It will then submit ‘flushbio’. However, r5llogFlushEndio clears the list first, a...

CVE-2024-21962

Improper Input Validation in the AMD RAID driver could allow an attacker to point to an arbitrary memory location potentially resulting in privilege escalation and arbitrary code execution...

CVE-2024-21962

Improper Input Validation in the AMD RAID driver could allow an attacker to point to an arbitrary memory location potentially resulting in privilege escalation and arbitrary code execution...

CVE-2024-21962

Improper Input Validation in the AMD RAID driver could allow an attacker to point to an arbitrary memory location potentially resulting in privilege escalation and arbitrary code execution...

CVE-2024-21962

The CVE-2024-21962 entry concerns the AMD RAID driver and is supported by multiple sources (NVD entry and AMD security bulletin AMD-SB-4016). It describes Improper Input Validation in the AMD RAID driver that could allow an attacker to point to an arbitrary memory location, potentially resulting ...

CVE-2024-21962

Improper Input Validation in the AMD RAID driver could allow an attacker to point to an arbitrary memory location potentially resulting in privilege escalation and arbitrary code execution...

PT-2026-41242

Improper Input Validation in the AMD RAID driver could allow an attacker to point to an arbitrary memory location potentially resulting in privilege escalation and arbitrary code execution...

AMD RAID Driver 安全漏洞

The AMD RAID Driver is a low-level hardware driver developed by American semiconductor company AMD. The AMD RAID Driver contains a security vulnerability, which stems from improper input validation. This vulnerability may allow attackers to target any memory location, potentially leading to...

AMD RAID Driver Vulnerability - Lenovo Support US

No description provided...

SUSE CVE-2026-43309

In the Linux kernel, the following vulnerability has been resolved: md raid: fix hang when stopping arrays with metadata through dm-raid When using device-mapper's dm-raid target, stopping a RAID array can cause the system to hang under specific conditions. This occurs when: - A dm-raid managed...

AMD RAID Driver Vulnerability

CVE Details Refer to Glossary for explanation of terms CVE| CVE Description| CVSS Score ---|---|--- CVE-2024-21962| Improper input validation in the AMD RAID driver could allow an attacker to point to an arbitrary memory location, potentially resulting in privilege escalation and arbitrary code...

CVE-2026-42864

FireFighter (incident management) is vulnerable to unauthenticated SSRF via POST /api/v2/firefighter/raid/jira_bot (CreateJiraBotView). Before version 0.0.54, the endpoint allows any caller to trigger server-side fetching of attachments with httpx.get() and no URL validation, uploading the respon...

FireFighter 访问控制错误漏洞

FireFighter is an event management tool developed by ManoMano Tech. Versions of FireFighter prior to 0.0.54 contained an access control vulnerability. This vulnerability stemmed from the POST /api/v2/firefighter/raid/jirabot endpoint, which allowed unauthorized access without authentication...

CVE-2026-43309

A flaw was found in the Linux kernel's md raid and device-mapper dm-raid components. When a local user or system operation attempts to stop a RAID array managed by dm-raid, the system can experience an indefinite hang. This occurs because the mdstop function tries to write to metadata sub-devices...

EUVD-2026-28579

In the Linux kernel, the following vulnerability has been resolved: md raid: fix hang when stopping arrays with metadata through dm-raid When using device-mapper's dm-raid target, stopping a RAID array can cause the system to hang under specific conditions. This occurs when: - A dm-raid managed...

CVE-2026-43309

In the Linux kernel, the following vulnerability has been resolved: md raid: fix hang when stopping arrays with metadata through dm-raid When using device-mapper's dm-raid target, stopping a RAID array can cause the system to hang under specific conditions. This occurs when: - A dm-raid managed...