Lucene search
K

107 matches found

Microsoft CVE
Microsoft CVE
added 2025/07/11 7:0 a.m.5 views

scsi: ufs: mcq: Add NULL check in ufshcd_mcq_abort()

...

5.5CVSS7.6AI score0.00149EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2025/07/10 11:23 p.m.2 views

SUSE CVE-2025-38289

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Avoid potential ndlp use-after-free in devlosstmocallbk Smatch detected a potential use-after-free of an ndlp oject in devlosstmocallbk during driver unload or fatal error handling. Fix by reordering code to avoid...

6.7CVSS6.7AI score0.00159EPSS
Exploits0References26
OSV
OSV
added 2025/07/03 9:15 a.m.8 views

DEBIAN-CVE-2025-38119

In the Linux kernel, the following vulnerability has been resolved: scsi: core: ufs: Fix a hang in the error handler ufshcderrhandlingprepare calls ufshcdrpmgetsync. The latter function can only succeed if UFSHCDEHINPROGRESS is not set because resuming involves submitting a SCSI command and...

5.5CVSS5.7AI score0.00157EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/07/03 12:0 a.m.7 views

The vulnerability of the drivers/scsi/lpfc component in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the drivers/scsi/lpfc component in Linux operating systems is related to the simultaneous execution using shared resources with incorrect synchronization. Exploiting this vulnerability can allow an attacker to cause service failures...

4.7CVSS6.7AI score0.0016EPSS
Exploits0References7Affected Software4
RedHat Linux
RedHat Linux
added 2025/07/01 1:11 a.m.7 views

kernel: scsi: libfc: Fix use after free in fc_exch_abts_resp()

A vulnerability was found in the Linux kernel's SCSI libfc library in the fcexchabtsresp function, which can lead to a use-after-free scenario. This issue can occur because the function calls fcexchrelease, which decrements a reference count stored in the ep object and then frees the object once...

7.8CVSS6.9AI score0.00277EPSS
Exploits0References5
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.2 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Fixed a possible crash that occurred when setting up bsg failed. If bsgsetupqueue fails, the bsgqueue is assigned a non-NULL value. Consequently, in mpi3mrbsgexit, the condition “if!mrioc-bsgqueue” will not be...

5.5CVSS6.4AI score0.00208EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.4 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: scsi: st: Fixed an array overflow issue in stsetup. The array size is now adjusted to match the parameter size, rather than using a fixed value...

5.5CVSS6.2AI score0.00244EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2025/05/09 12:0 a.m.4 views

The vulnerability of the SCSI component in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the SCSI component in the Linux operating system is related to the operation of data out of the buffer in memory. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

8CVSS6.7AI score0.00166EPSS
Exploits0References8Affected Software4
BDU FSTEC
BDU FSTEC
added 2025/04/14 12:0 a.m.7 views

The vulnerability of the SCSI component in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the SCSI component in the Linux operating system is related to incorrect blocking of resources in the cqthreadv3hw function. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00231EPSS
Exploits0References14Affected Software8
BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.6 views

The vulnerability of the SCSI component in the Linux operating system allows a hacker to gain elevated privileges within the system.

The vulnerability of the SCSI component in the Linux operating system is related to errors that occur after deallocation. Exploiting this vulnerability can allow an attacker to increase their privileges within the system...

5.5CVSS6.7AI score0.00257EPSS
Exploits0References11Affected Software4
OSV
OSV
added 2025/02/27 3:15 a.m.1 views

DEBIAN-CVE-2025-21738

In the Linux kernel, the following vulnerability has been resolved: ata: libata-sff: Ensure that we cannot write outside the allocated buffer reveliofuzzing reported that a SCSIIOCTLSENDCOMMAND ioctl with outlen set to 0xd42, SCSI command set to ATA16 PASS-THROUGH, ATA command set to ATANOP, and...

5.5CVSS5.8AI score0.00192EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/02/27 3:11 a.m.5 views

SUSE CVE-2022-49157

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix premature hw access after PCI error After a recoverable PCI error has been detected and recovered, qla driver needs to check to see if the error condition still persist and/or wait for the OS to give the resume...

3.3CVSS7.6AI score0.00246EPSS
Exploits0References10
SUSE CVE
SUSE CVE
added 2025/02/27 3:5 a.m.3 views

SUSE CVE-2022-49504

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Inhibit aborts if external loopback plug is inserted After running a short external loopback test, when the external loopback is removed and a normal cable inserted that is directly connected to a target device, the...

5.5CVSS7.8AI score0.00211EPSS
Exploits0References10
OSV
OSV
added 2025/02/26 7:1 a.m.2 views

DEBIAN-CVE-2022-49536

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix SCSI I/O completion and abort handler deadlock During stress I/O tests with 500+ vports, hard LOCKUP call traces are observed. CPU A: nativequeuedspinlockslowpath+0x192 rawspinlockirqsave+0x32 lpfchandlefcperr+0x4...

5.5CVSS5.2AI score0.00184EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/02/12 12:0 a.m.5 views

The vulnerability of the SCSI component in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the SCSI component in the Linux operating system is related to the assignment of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.5AI score0.00236EPSS
Exploits0References43Affected Software6
BDU FSTEC
BDU FSTEC
added 2025/02/12 12:0 a.m.4 views

The vulnerability of the SCSI component in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the SCSI component in the Linux operating system is related to the assignment of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...

4.7CVSS6.4AI score0.00231EPSS
Exploits0References41Affected Software6
BDU FSTEC
BDU FSTEC
added 2025/02/12 12:0 a.m.4 views

The vulnerability of the SCSI component in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the SCSI component in the Linux operating system is related to the assignment of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.5AI score0.00242EPSS
Exploits0References43Affected Software6
BDU FSTEC
BDU FSTEC
added 2025/02/03 12:0 a.m.8 views

The vulnerability of the SCSI component in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the SCSI component in the Linux operating system is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause service failures...

4.4CVSS5.7AI score0.00268EPSS
Exploits0References15Affected Software9
BDU FSTEC
BDU FSTEC
added 2025/02/03 12:0 a.m.4 views

The vulnerability of the SCSI component in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the SCSI component in the Linux operating system is related to incorrect validation of input data. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00253EPSS
Exploits0References14Affected Software5
Positive Technologies
Positive Technologies
added 2024/12/18 12:0 a.m.9 views

PT-2025-8820

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A potential use-after-free UAF access issue has been identified in the Linux kernel, specifically in the scsi: ufs: bsg component. The issue arises from not setting bsg queue to NULL aft...

7.8CVSS5.4AI score0.00209EPSS
Exploits0
Rows per page
Query Builder