151 matches found
kernel: jbd2: fix assertion 'jh->b_frozen_data == NULL' failure when journal aborted
A flaw was found in the jbd2 module in the Linux kernel. An assertion failure can be triggered when a specific sequence of transactions and operations is performed due to incorrect synchronization, potentially resulting in a denial of service...
kernel: Bluetooth: use hdev->workqueue when queuing hdev->{cmd,ncmd}_timer works
n the Linux kernel’s Bluetooth subsystem there is a flaw in the way Bluetooth HCI work items are queued. Under certain conditions, work associated with command timeouts hdev-cmd,ncmdtimer could be scheduled on the wrong workqueue while the intended workqueue is being drained. This occurs because...
PT-2023-36408 · Gnu +1 · Linux +1
Уязвимость сетевого интерфейса B.A.T.M.A.N. Better Approach To Mobile Adhoc Networking ядра операционной системы Linux связана с некорректной синхронизации процесса удаления сетевого устройства и выполнения отложенных задач в функции batadv dat start timer в модуле distributed-arp-table.c...
PT-2023-33242 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.82 Description: The issue is related to the synchronization of EFI page table's kernel mappings before switching. The actual impact and attack plausibility have not yet been proven. Recommendations: For...
PT-2023-33149 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.12 Description: The issue is related to the synchronization of EFI page table's kernel mappings before switching. The actual impact and attack plausibility have not yet been proven. Recommendations: For Lin...
PT-2025-13328 · Linux +3 · Linux Kernel +3
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.1.0-rc6+ Description: A synchronization issue exists in the Linux kernel's fscache module. The freeing of a relinquished volume wakes up pending volume acquisition using wake up bit, but this is mismatched wit...
PT-2025-13355
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue concerns data corruption on vram allocated by svm if initialization is not complete and an application is writing to the memory. To resolve this, a sync has been added after...
The vulnerability of the Windows Error Reporting error reporting service on Windows operating systems allows a perpetrator to escalate their privileges.
The vulnerability of the Windows Error Reporting registration service in Windows operating systems is related to synchronization errors when using a shared resource “Race Conditions”. Exploiting this vulnerability can allow an attacker to increase their privileges...
The vulnerability affects Unix extensions such as SMB1 and NFS, which are components of network communication software like Samba. This vulnerability allows attackers to compromise data integrity.
The vulnerability of Unix extensions like SMB1 and NFS network communication software such as Samba is related to the simultaneous execution using a shared resource with incorrect synchronization. Exploiting this vulnerability allows an attacker to compromise data integrity...
The vulnerability of Intel SSD microprogramming software lies in the simultaneous execution using a shared resource with improper synchronization, which allows a hacker to cause service failure.
The vulnerability of Intel SSD microprogramming software is related to the simultaneous execution using a shared resource with incorrect synchronization. Exploiting this vulnerability can allow an attacker to cause service failures...
The vulnerability of the SSL socket layer of the Asterisk IP telephony management system, which implements the SIP protocol PJSIP, allows attackers to induce a service failure.
The vulnerability of the SSL socket layer of the Asterisk IP telephony management system, where the SIP protocol PJSIP is implemented, is related to the simultaneous execution using a shared resource with incorrect synchronization. Exploiting this vulnerability allows an attacker who operates...
The vulnerability of the Tablet Windows User Interface Application component of the Microsoft Windows operating system, which allows a perpetrator to increase their privileges
The vulnerability of the Tablet Windows User Interface Application component of the Microsoft Windows operating system is related to the use of a common resource with incorrect synchronization. Exploiting this vulnerability can allow an attacker to increase their privileges...
PT-2022-7490 · Linux +3 · Linux Kernel +3
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The vulnerability is related to a race condition in the configfs component of the Linux kernel. When configfs register subsystem or configfs unregister subsystem is executing link grou...
PT-2021-7323 · Linux +9 · Linux Kernel Overlayfs Subsystem +9
Name of the Vulnerable Software and Affected Versions: Linux kernel OverlayFS subsystem affected versions not specified Description: A race condition accessing file object in the Linux kernel OverlayFS subsystem was found in the way users do rename in specific ways with OverlayFS. This issue coul...
CVE-2020-25668
A flaw was found in Linux Kernel because access to the global variable fgconsole is not properly synchronized leading to a use after free in confontop...
CVE-2018-25008
In the standard library in Rust before 1.29.0, there is weak synchronization in the Arc::getmut method. This synchronization issue can be lead to memory safety issues through race conditions...
CVE-2020-3471
A vulnerability in Cisco Webex Meetings and Cisco Webex Meetings Server could allow an unauthenticated, remote attacker to maintain bidirectional audio despite being expelled from an active Webex session. The vulnerability is due to a synchronization issue between meeting and media services on a...
Design/Logic Flaw
A vulnerability in Cisco Webex Meetings and Cisco Webex Meetings Server could allow an unauthenticated, remote attacker to maintain bidirectional audio despite being expelled from an active Webex session. The vulnerability is due to a synchronization issue between meeting and media services on a...
Citrix WEM Agents not Synchronizing Error “No Connection Could be Made Because The Target Machine Actively Refused it”
Citrix Virtual Delivery Agents running Workspace Environment Management WEM Agents are not synchronizing with two or more WEM Broker servers load balanced via Citrix Gateway. Policies delivered through WEM are not applying to agents Event Viewer shows the following error:“No connection could be...
Description of the SharePoint Workspace 2010 update: November 13, 2012
Description of the SharePoint Workspace 2010 update: November 13, 2012 INTRODUCTION Microsoft has released an update for Microsoft SharePoint Workspace 2010. This update provides the latest fixes for the 32-bit and 64-bit editions of SharePoint Workspace 2010. Issue that this update fixes When yo...