64 matches found
DEBIAN-CVE-2025-21901
In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxtre: Add sanity checks on rdev validity There is a possibility that ulpirqstop and ulpirqstart callbacks will be called when the device is in detached state. This can cause a crash due to NULL pointer dereference as the...
UBUNTU-CVE-2025-21901
In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxtre: Add sanity checks on rdev validity There is a possibility that ulpirqstop and ulpirqstart callbacks will be called when the device is in detached state. This can cause a crash due to NULL pointer dereference as the...
CVE-2025-21901
In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxtre: Add sanity checks on rdev validity There is a possibility that ulpirqstop and ulpirqstart callbacks will be called when the device is in detached state. This can cause a crash due to NULL pointer dereference as the...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a lack of soundness checking for rdev validity in bnxtre...
kernel: md: fix kmemleak of rdev->serial
A memory leak flaw was found in rdev-serial in the Linux kernel. This issue may lead to a crash...
SUSE CVE-2024-45023
In the Linux kernel, the following vulnerability has been resolved: md/raid1: Fix data corruption for degraded array with slow disk readbalance will avoid reading from slow disks as much as possible, however, if valid data only lands in slow disks, and a new normal disk is still in recovery,...
DEBIAN-CVE-2024-40911
In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: Lock wiphy in cfg80211getstation Wiphy should be locked before calling rdevgetstation see lockdep assert in ieee80211getstation. This fixes the following kernel NULL dereference: Unable to handle kernel NULL point...
UBUNTU-CVE-2024-40911
In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: Lock wiphy in cfg80211getstation Wiphy should be locked before calling rdevgetstation see lockdep assert in ieee80211getstation. This fixes the following kernel NULL dereference: Unable to handle kernel NULL point...
CVE-2021-47494
In the Linux kernel, the following vulnerability has been resolved: cfg80211: fix management registrations locking The management registrations locking was broken, the list was locked for each wdev, but cfg80211mgmtregistrationsupdate iterated it without holding all the correct spinlocks, causing...
CVE-2021-47494 cfg80211: fix management registrations locking
In the Linux kernel, the following vulnerability has been resolved: cfg80211: fix management registrations locking The management registrations locking was broken, the list was locked for each wdev, but cfg80211mgmtregistrationsupdate iterated it without holding all the correct spinlocks, causing...
CVE-2024-35979
In the Linux kernel, the following vulnerability has been resolved: raid1: fix use-after-free for original bio in raid1writerequest r1bio-bios is used to record new bios that will be issued to underlying disks, however, in raid1writerequest, r1bio-bios will set to the original bio temporarily...
kernel: md: fix warning for holder mismatch from export_rdev()
A logic inconsistency was identified in the Linux kernel md multiple device driver involving the exportrdev function and associated block device holder bookkeeping. Under certain sequences where mddev-external is toggled, the code would use one holder claimrdev to get a block device but a differe...
SUSE CVE-2024-26900
In the Linux kernel, the following vulnerability has been resolved: md: fix kmemleak of rdev-serial If kobjectadd is fail in bindrdevtoarray, 'rdev-serial' will be alloc not be freed, and kmemleak occurs. unreferenced object 0xffff88815a350000 size 49152: comm "mdadm", pid 789, jiffies 4294716910...
CVE-2024-26900
In the Linux kernel, the following vulnerability has been resolved: md: fix kmemleak of rdev-serial If kobjectadd is fail in bindrdevtoarray, 'rdev-serial' will be alloc not be freed, and kmemleak occurs. unreferenced object 0xffff88815a350000 size 49152: comm "mdadm", pid 789, jiffies 4294716910...
AZL-40162 CVE-2024-26900 affecting package kernel for versions less than 5.15.159.1-1
In the Linux kernel, the following vulnerability has been resolved: md: fix kmemleak of rdev-serial If kobjectadd is fail in bindrdevtoarray, 'rdev-serial' will be alloc not be freed, and kmemleak occurs. unreferenced object 0xffff88815a350000 size 49152: comm "mdadm", pid 789, jiffies 4294716910...
DEBIAN-CVE-2024-26900
In the Linux kernel, the following vulnerability has been resolved: md: fix kmemleak of rdev-serial If kobjectadd is fail in bindrdevtoarray, 'rdev-serial' will be alloc not be freed, and kmemleak occurs. unreferenced object 0xffff88815a350000 size 49152: comm "mdadm", pid 789, jiffies 4294716910...
CVE-2024-26900
In the Linux kernel, the following vulnerability has been resolved: md: fix kmemleak of rdev-serial If kobjectadd is fail in bindrdevtoarray, 'rdev-serial' will be alloc not be freed, and kmemleak occurs. unreferenced object 0xffff88815a350000 size 49152: comm "mdadm", pid 789, jiffies 4294716910...
CVE-2024-26900 md: fix kmemleak of rdev->serial
In the Linux kernel, the following vulnerability has been resolved: md: fix kmemleak of rdev-serial If kobjectadd is fail in bindrdevtoarray, 'rdev-serial' will be alloc not be freed, and kmemleak occurs. unreferenced object 0xffff88815a350000 size 49152: comm "mdadm", pid 789, jiffies 4294716910...
CVE-2024-26900
CVE-2024-26900: Linux kernel md subsystem vulnerability fixed; kmemleak occurs when rdev->serial is not freed if kobject_add() fails in bind_rdev_to_array(). Root cause: missing free of rdev->serial during serial pool init; impact: local kmemleak exposure (no remote code execution). CVSS v3...
CVE-2024-26900 md: fix kmemleak of rdev->serial
In the Linux kernel, the following vulnerability has been resolved: md: fix kmemleak of rdev-serial If kobjectadd is fail in bindrdevtoarray, 'rdev-serial' will be alloc not be freed, and kmemleak occurs. unreferenced object 0xffff88815a350000 size 49152: comm "mdadm", pid 789, jiffies 4294716910...