Lucene search
K

31 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: Networks: DSA: Avoid suspicious RCU usage for synced VLAN-aware MAC addresses When using the felix driver the only one that supports UC filtering and MC filtering as a DSA master for a randomly selected DSA switch, the following...

5.3AI score0.00166EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/05 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2024-40920

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: net: bridge: mst: fix suspicious rcu usage in brmstsetstate I converted brmstsetstate to RCU...

7.8CVSS5.8AI score0.00291EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/07/25 12:53 p.m.8 views

CVE-2025-38397 nvme-multipath: fix suspicious RCU usage warning

In the Linux kernel, the following vulnerability has been resolved: nvme-multipath: fix suspicious RCU usage warning When I run the NVME over TCP test in virtme-ng, I get the following "suspicious RCU usage" warning in nvmempathaddsysfslink: ''' 5.024557 T44 nvmet: Created nvm controller 1 for...

0.00129EPSS
Exploits0References2
NVD
NVD
added 2025/03/27 3:15 p.m.10 views

CVE-2025-21876

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Fix suspicious RCU usage Commit "iommu/vt-d: Allocate DMAR fault interrupts locally" moved the call to enabledrhdfaulthandling to a code path that does not hold any lock while traversing the drhd list. Fix it by...

5.5CVSS0.00187EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2024-53042

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ipv4: iptunnel: Fix suspicious RCU usage warning in iptunnelinitflow There are code paths fr...

5.5CVSS6AI score0.00265EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.7 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: netfilter: nfnetlinkqueue: acquire rcureadlock in instanceDestroyrcu syzbot reported that nfreinject could be called without rcureadlock: WARNING: suspicious RCU usage 6.9.0-rc7-syzkaller-02060-g5c1672705a1a 0 Not tainted...

5.5CVSS6.5AI score0.00265EPSS
Exploits0References3
OSV
OSV
added 2024/11/19 6:15 p.m.6 views

AZL-53900 CVE-2024-53042 affecting package kernel for versions less than 6.6.64.2-1

In the Linux kernel, the following vulnerability has been resolved: ipv4: iptunnel: Fix suspicious RCU usage warning in iptunnelinitflow There are code paths from which the function is called without holding the RCU read lock, resulting in a suspicious RCU usage warning 1. Fix by using...

5.5CVSS6.8AI score0.00265EPSS
Exploits0References1
OSV
OSV
added 2024/11/19 6:15 p.m.1 views

DEBIAN-CVE-2024-53042

In the Linux kernel, the following vulnerability has been resolved: ipv4: iptunnel: Fix suspicious RCU usage warning in iptunnelinitflow There are code paths from which the function is called without holding the RCU read lock, resulting in a suspicious RCU usage warning 1. Fix by using...

5.5CVSS5.8AI score0.00265EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/19 5:19 p.m.62 views

CVE-2024-53047 mptcp: init: protect sched with rcu_read_lock

In the Linux kernel, the following vulnerability has been resolved: mptcp: init: protect sched with rcureadlock Enabling CONFIGPROVERCULIST with its dependence CONFIGRCUEXPERT creates this splat when an MPTCP socket is created: ============================= WARNING: suspicious RCU usage 6.12.0-rc...

0.00176EPSS
Exploits0References3
CVE
CVE
added 2024/11/19 5:19 p.m.191 views

CVE-2024-50304

The CVE-2024-50304 entry concerns the Linux kernel IPv4 ip_tunnel subsystem. A suspicious RCU usage warning in ip_tunnel_find() was addressed by adding a lockdep check to hlist_for_each_entry_rcu(), validating that the RTNL mutex is held. The per-netns IP tunnel hash table is protected by the RTN...

5.5CVSS6.5AI score0.00237EPSS
Exploits0References8Affected Software1
CVE
CVE
added 2024/09/27 12:39 p.m.120 views

CVE-2024-46830

CVE-2024-46830 affects the Linux kernel KVM for x86. The vulnerability arises when acquiring kvm->srcu while handling KVM_SET_VCPU_EVENTS, because KVM will forcibly leave nested VMX/SVM during SMM toggling and leaving nested VMX can read guest memory. The described fix: grab SRCU unconditional...

7.8CVSS7.2AI score0.00247EPSS
Exploits0References6Affected Software2
Vulnrichment
Vulnrichment
added 2024/09/27 12:39 p.m.12 views

CVE-2024-46830 KVM: x86: Acquire kvm->srcu when handling KVM_SET_VCPU_EVENTS

In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Acquire kvm-srcu when handling KVMSETVCPUEVENTS Grab kvm-srcu when processing KVMSETVCPUEVENTS, as KVM will forcibly leave nested VMX/SVM if SMM mode is being toggled, and leaving nested VMX reads guest memory. Note,...

6.9AI score0.00247EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2024/07/12 1:15 p.m.24 views

CVE-2024-40920

In the Linux kernel, the following vulnerability has been resolved: net: bridge: mst: fix suspicious rcu usage in brmstsetstate I converted brmstsetstate to RCU to avoid a vlan use-after-free but forgot to change the vlan group dereference helper. Switch to vlan group RCU deref helper to fix the...

7.8CVSS6.4AI score0.00291EPSS
Exploits0References13
Cvelist
Cvelist
added 2024/07/12 12:25 p.m.23 views

CVE-2024-40920 net: bridge: mst: fix suspicious rcu usage in br_mst_set_state

In the Linux kernel, the following vulnerability has been resolved: net: bridge: mst: fix suspicious rcu usage in brmstsetstate I converted brmstsetstate to RCU to avoid a vlan use-after-free but forgot to change the vlan group dereference helper. Switch to vlan group RCU deref helper to fix the...

0.00291EPSS
Exploits0References4
OSV
OSV
added 2024/07/12 12:25 p.m.16 views

CVE-2024-40920 net: bridge: mst: fix suspicious rcu usage in br_mst_set_state

In the Linux kernel, the following vulnerability has been resolved: net: bridge: mst: fix suspicious rcu usage in brmstsetstate I converted brmstsetstate to RCU to avoid a vlan use-after-free but forgot to change the vlan group dereference helper. Switch to vlan group RCU deref helper to fix the...

7.8CVSS6AI score0.00291EPSS
Exploits0References8
CVE
CVE
added 2024/07/12 12:25 p.m.105 views

CVE-2024-40920

CVE-2024-40920 affects the Linux kernel net: bridge: mst component. Root cause: br_mst_set_state was converted to RCU to avoid a VLAN use-after-free, but the vlan group dereference helper was not updated, triggering suspicious RCU usage. The fix switches to the vlan group RCU deref helper to addr...

7.8CVSS6.5AI score0.00291EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2024/06/21 10:18 a.m.32 views

CVE-2024-36286 netfilter: nfnetlink_queue: acquire rcu_read_lock() in instance_destroy_rcu()

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkqueue: acquire rcureadlock in instancedestroyrcu syzbot reported that nfreinject could be called without rcureadlock : WARNING: suspicious RCU usage 6.9.0-rc7-syzkaller-02060-g5c1672705a1a 0 Not tainted...

0.00265EPSS
Exploits0References8
CVE
CVE
added 2024/06/21 10:18 a.m.185 views

CVE-2024-36286

CVE-2024-36286 (Linux kernel) : Affects netfilter nfnetlink_queue logic where nf_reinject() could be called without proper rcu_read_lock, triggering suspicious RCU usage in instance_destroy_rcu. The Astra Linux security bulletin (connected doc) mirrors the Linux kernel fix and notes the vulnerabi...

5.5CVSS6.5AI score0.00265EPSS
Exploits0References12Affected Software1
Vulnrichment
Vulnrichment
added 2024/06/21 10:18 a.m.22 views

CVE-2024-36286 netfilter: nfnetlink_queue: acquire rcu_read_lock() in instance_destroy_rcu()

In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkqueue: acquire rcureadlock in instancedestroyrcu syzbot reported that nfreinject could be called without rcureadlock : WARNING: suspicious RCU usage 6.9.0-rc7-syzkaller-02060-g5c1672705a1a 0 Not tainted...

6.7AI score0.00265EPSS
Exploits0References8
NVD
NVD
added 2024/06/19 2:15 p.m.23 views

CVE-2024-36979

In the Linux kernel, the following vulnerability has been resolved: net: bridge: mst: fix vlan use-after-free syzbot reported a suspicious rcu usage1 in bridge's mst code. While fixing it I noticed that nothing prevents a vlan to be freed while walking the list from the same path br forward delay...

7.8CVSS0.00257EPSS
Exploits0References5
Rows per page
Query Builder