23 matches found
Astra Linux - уязвимость в linux-5.15
In the Linux kernel, the following vulnerability has been resolved: interconnect: Do not access reqlist while it’s being manipulated. The icclock mutex was split into separate icclock and iccbwlock mutexes in 1 to avoid lockdep splats. However, this did not adequately protect access to...
EUVD-2025-20797
Malicious code in bioql PyPI...
nvme-tcp: sanitize request list handling
...
aoe: clean device rq_list in aoedev_downdev()
...
kernel: nvme-tcp: sanitize request list handling
In the Linux kernel, the following vulnerability has been resolved: nvme-tcp: sanitize request list handling Validate the request in nvmetcphandler2t to ensure it's not part of any list, otherwise a malicious R2T PDU might inject a loop in request list processing...
SUSE CVE-2025-38326
In the Linux kernel, the following vulnerability has been resolved: aoe: clean device rqlist in aoedevdowndev An aoe device's rqlist contains accepted block requests that are waiting to be transmitted to the aoe target. This queue was added as part of the conversion to blkmq. However, the queue w...
CVE-2025-38264
In the Linux kernel, the following vulnerability has been resolved: nvme-tcp: sanitize request list handling Validate the request in nvmetcphandler2t to ensure it's not part of any list, otherwise a malicious R2T PDU might inject a loop in request list processing...
DEBIAN-CVE-2025-38264
In the Linux kernel, the following vulnerability has been resolved: nvme-tcp: sanitize request list handling Validate the request in nvmetcphandler2t to ensure it's not part of any list, otherwise a malicious R2T PDU might inject a loop in request list processing...
AZL-70433 CVE-2025-38264 affecting package kernel 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: nvme-tcp: sanitize request list handling Validate the request in nvmetcphandler2t to ensure it's not part of any list, otherwise a malicious R2T PDU might inject a loop in request list processing...
AZL-64832 CVE-2025-38264 affecting package kernel 6.6.126.1-1
In the Linux kernel, the following vulnerability has been resolved: nvme-tcp: sanitize request list handling Validate the request in nvmetcphandler2t to ensure it's not part of any list, otherwise a malicious R2T PDU might inject a loop in request list processing...
UBUNTU-CVE-2025-38264
In the Linux kernel, the following vulnerability has been resolved: nvme-tcp: sanitize request list handling Validate the request in nvmetcphandler2t to ensure it's not part of any list, otherwise a malicious R2T PDU might inject a loop in request list processing...
CVE-2025-38264 nvme-tcp: sanitize request list handling
In the Linux kernel, the following vulnerability has been resolved: nvme-tcp: sanitize request list handling Validate the request in nvmetcphandler2t to ensure it's not part of any list, otherwise a malicious R2T PDU might inject a loop in request list processing...
PT-2025-28892
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains an issue in the nvme-tcp component related to request list handling. Insufficient validation of requests within the nvme tcp handle r2t function could allow a...
interconnect: Don't access req_list while it's being manipulated
...
DEBIAN-CVE-2024-27005
In the Linux kernel, the following vulnerability has been resolved: interconnect: Don't access reqlist while it's being manipulated The icclock mutex was split into separate icclock and iccbwlock mutexes in 1 to avoid lockdep splats. However, this didn't adequately protect access to...
AZL-59644 CVE-2024-27005 affecting package kernel 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: interconnect: Don't access reqlist while it's being manipulated The icclock mutex was split into separate icclock and iccbwlock mutexes in 1 to avoid lockdep splats. However, this didn't adequately protect access to...
CVE-2021-47133
In the Linux kernel, the following vulnerability has been resolved: HID: amdsfh: Fix memory leak in amdsfhwork Kmemleak tool detected a memory leak in the amdsfh driver. ==================== unreferenced object 0xffff88810228ada0 size 32: comm "insmod", pid 3968, jiffies 4295056001 age 775.792s h...
UBUNTU-CVE-2021-47133
In the Linux kernel, the following vulnerability has been resolved: HID: amdsfh: Fix memory leak in amdsfhwork Kmemleak tool detected a memory leak in the amdsfh driver. ==================== unreferenced object 0xffff88810228ada0 size 32: comm "insmod", pid 3968, jiffies 4295056001 age 775.792s h...
PT-2024-21611
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to the interconnect component in the Linux kernel, where the icc lock mutex was split into separate icc lock and icc bw lock mutexes to avoid lockdep splats. However...
VulnCheck KEV: CVE-2021-24285
The requestlistrequest AJAX call of the Car Seller - Auto Classifieds Script WordPress plugin through 2.1.0, available to both authenticated and unauthenticated users, does not sanitise, validate or escape the orderid POST parameter before using it in a SQL statement, leading to a SQL...