Lucene search
K

40 matches found

RedhatCVE
RedhatCVE
added 2026/06/25 11:23 p.m.7 views

CVE-2026-53117

A flaw was found in the Linux kernel, specifically within the s390/cio component. When a driver is being probed, a race condition can occur where the driveroverride field is accessed without proper locking. This can lead to a Use-After-Free UAF vulnerability, which may result in system instabilit...

5.5CVSS6.2AI score0.00171EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/06/25 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2026-53117

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - s390/cio: use generic driveroverride infrastructure When a driver is probed through driverattach, the bus' match callback is called without the device lock held...

5.8AI score0.00171EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/24 4:30 p.m.4 views

EUVD-2026-38985

In the Linux kernel, the following vulnerability has been resolved: s390/cio: use generic driveroverride infrastructure When a driver is probed through driverattach, the bus' match callback is called without the device lock held, thus accessing the driveroverride field without a lock, which can...

5.7AI score0.00171EPSS
Exploits0References5
CVE
CVE
added 2026/06/24 4:30 p.m.10 views

CVE-2026-53117

The CVE-2026-53117 issue affects the Linux kernel (s390/cio). During driver probing in __driver_attach(), the bus match() callback can access the driver_override field without the required device lock, creating a potential use-after-free. The fix switches to the driver-core driver_override infras...

5.7AI score0.00171EPSS
Exploits0References5
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability found in Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: s390/cio: Ensure that the copied buf is terminated with NUL characters. Currently, we allocate a kernel buffer of size lbuf and copy lbuf from userspace to that buffer. Later, we use the scanf function on this buffer, but we do n...

7.1CVSS5.9AI score0.00233EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/05/27 12:0 a.m.11 views

CVE-2026-45981

s390/cio: Fix device lifecycle handling in cssallocsubchannel...

5.8AI score0.00126EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.4 views

Azure Linux 3.0 Security Update: hyperv-daemons (CVE-2024-27009)

The version of hyperv-daemons installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-27009 advisory. - In the Linux kernel, the following vulnerability has been resolved: s390/cio: fix race condition...

4.7CVSS6.8AI score0.00175EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/09/15 11:29 p.m.3 views

SUSE CVE-2022-50307

In the Linux kernel, the following vulnerability has been resolved: s390/cio: fix out-of-bounds access on cioignore free The channel-subsystem-driver scans for newly available devices whenever device-IDs are removed from the cioignore list using a command such as: echo free /proc/cioignore Since ...

7.1CVSS6.5AI score0.00147EPSS
Exploits0References3
OSV
OSV
added 2025/09/15 3:15 p.m.4 views

UBUNTU-CVE-2022-50307

In the Linux kernel, the following vulnerability has been resolved: s390/cio: fix out-of-bounds access on cioignore free The channel-subsystem-driver scans for newly available devices whenever device-IDs are removed from the cioignore list using a command such as: echo free /proc/cioignore Since ...

7.1CVSS5.7AI score0.00147EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/09/15 2:46 p.m.10 views

CVE-2022-50307 s390/cio: fix out-of-bounds access on cio_ignore free

In the Linux kernel, the following vulnerability has been resolved: s390/cio: fix out-of-bounds access on cioignore free The channel-subsystem-driver scans for newly available devices whenever device-IDs are removed from the cioignore list using a command such as: echo free /proc/cioignore Since ...

0.00147EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/09/15 12:0 a.m.7 views

PT-2025-37609

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The channel-subsystem-driver incorrectly assumes that an I/O-subchannel's drvdata points to a struct io subchannel private for devices bound to a non-default I/O subchannel driver, suc...

6.2AI score0.00147EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/07/17 4:19 a.m.2 views

SUSE CVE-2022-48798

In the Linux kernel, the following vulnerability has been resolved: s390/cio: verify the driver availability for pathevent call If no driver is attached to a device or the driver does not provide the pathevent function, an FCES path-event on this device could end up in a kernel-panic. Verify the...

5.5CVSS7.7AI score0.00239EPSS
Exploits0References10
RedhatCVE
RedhatCVE
added 2024/07/16 11:24 p.m.18 views

CVE-2022-48798

In the Linux kernel, the following vulnerability has been resolved: s390/cio: verify the driver availability for pathevent call If no driver is attached to a device or the driver does not provide the pathevent function, an FCES path-event on this device could end up in a kernel-panic. Verify the...

5.5CVSS8AI score0.00239EPSS
Exploits0References4
NVD
NVD
added 2024/07/16 12:15 p.m.25 views

CVE-2022-48798

In the Linux kernel, the following vulnerability has been resolved: s390/cio: verify the driver availability for pathevent call If no driver is attached to a device or the driver does not provide the pathevent function, an FCES path-event on this device could end up in a kernel-panic. Verify the...

5.5CVSS0.00239EPSS
Exploits0References3
OSV
OSV
added 2024/07/16 12:15 p.m.3 views

UBUNTU-CVE-2022-48798

In the Linux kernel, the following vulnerability has been resolved: s390/cio: verify the driver availability for pathevent call If no driver is attached to a device or the driver does not provide the pathevent function, an FCES path-event on this device could end up in a kernel-panic. Verify the...

5.5CVSS5.7AI score0.00239EPSS
Exploits0References6
Cvelist
Cvelist
added 2024/07/16 11:43 a.m.27 views

CVE-2022-48798 s390/cio: verify the driver availability for path_event call

In the Linux kernel, the following vulnerability has been resolved: s390/cio: verify the driver availability for pathevent call If no driver is attached to a device or the driver does not provide the pathevent function, an FCES path-event on this device could end up in a kernel-panic. Verify the...

0.00239EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2024/07/16 11:43 a.m.17 views

CVE-2022-48798

In the Linux kernel, the following vulnerability has been resolved: s390/cio: verify the driver availability for pathevent call If no driver is attached to a device or the driver does not provide the pathevent function, an FCES path-event on this device could end up in a kernel-panic. Verify the...

5.5CVSS5.3AI score0.00239EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2024/07/16 11:43 a.m.16 views

CVE-2022-48798 s390/cio: verify the driver availability for path_event call

In the Linux kernel, the following vulnerability has been resolved: s390/cio: verify the driver availability for pathevent call If no driver is attached to a device or the driver does not provide the pathevent function, an FCES path-event on this device could end up in a kernel-panic. Verify the...

6.7AI score0.00239EPSS
Exploits0References3
CVE
CVE
added 2024/07/16 11:43 a.m.75 views

CVE-2022-48798

CVE-2022-48798 affects the Linux kernel (s390/cio): if a device has no attached driver or the driver lacks path_event, an FCES path-event could cause a kernel panic. The fix verifies the driver availability before the path_event call, preventing a nil-function path. The vulnerability is localized...

5.5CVSS6.5AI score0.00239EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2024/05/30 4:15 p.m.13 views

CVE-2024-36931

In the Linux kernel, the following vulnerability has been resolved: s390/cio: Ensure the copied buf is NUL terminated Currently, we allocate a lbuf-sized kernel buffer and copy lbuf from userspace to that buffer. Later, we use scanf on this buffer but we don't ensure that the string is terminated...

7.1CVSS6.5AI score0.00233EPSS
Exploits0References5
Rows per page
Query Builder