PT-2026-43887

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 7.0.11-1.1 Description Privileged users can trigger an out-of-bounds memory access via DAMON SYSFS. The issue occurs because the node ID in damos quota goal-nid for node mem used bp and node mem free bp is used i...

The vulnerability of the sysfs component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the sysfs component in the Linux operating system is related to the lack of checks for division by zero. Exploiting this vulnerability can allow an attacker to cause a service failure...

CVE-2022-48996

In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs: fix wrong empty schemes assumption under online tuning in damonsysfssetschemes Commit da87878010e5 "mm/damon/sysfs: support online inputs update" made 'damonsysfssetschemes' to be called for running DAMON context,...

CVE-2022-48850

CVE-2022-48850 concerns the Linux kernel vulnerability in net-sysfs, where speed_show could panic when a netdevice is in the process of being shut down or already removed. The root cause described is a missing check for the netdevice’s presence, which could lead to a NULL pointer dereference in d...

The vulnerability of the interface_authorized_store() function in the Linux kernel USB driver allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the interfaceauthorizedstore function in the drivers/usb/core/sysfs.c file of the Linux USB driver kernel is related to an infinite wait loop for resources. Exploiting this vulnerability could allow a attacker to compromise the confidentiality, integrity, and accessibility of...

CVE-2021-47393 hwmon: (mlxreg-fan) Return non-zero value when fan current state is enforced from sysfs

In the Linux kernel, the following vulnerability has been resolved: hwmon: mlxreg-fan Return non-zero value when fan current state is enforced from sysfs Fan speed minimum can be enforced from sysfs. For example, setting current fan speed to 20 is used to enforce fan speed to be at 100% speed, 19...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that originates from the hwmon module returning a non-zero value when enforcing the current state of the fan from sysfs...

The vulnerability at the sysfs level of the Linux operating system allows a perpetrator to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability at the sysfs level of the Linux operating system is related to writing beyond the buffer boundaries. Exploiting this vulnerability allows an attacker to access confidential data, compromise its integrity, and cause service failures...

GSD-2021-1001725 hwmon: (mlxreg-fan) Return non-zero value when fan current state is enforced from sysfs

hwmon: mlxreg-fan Return non-zero value when fan current state is enforced from sysfs This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.14.10 b...

CVE-2017-18645

An issue was discovered on Samsung mobile devices with M6.x and N7.x Qualcomm chipsets software. There is a panellpm sysfs stack-based buffer overflow. The Samsung ID is SVE-2017-9414 December 2017...

kernel: md: NULL pointer deref when accessing suspend_* sysfs attributes

The md driver drivers/md/md.c in the Linux kernel before 2.6.30.2 might allow local users to cause a denial of service NULL pointer dereference via vectors related to "suspend sysfs attributes" and the 1 suspendlostore or 2 suspendhistore functions. NOTE: this is only a vulnerability when sysfs i...

CVE-2009-2849

The md driver drivers/md/md.c in the Linux kernel before 2.6.30.2 might allow local users to cause a denial of service NULL pointer dereference via vectors related to "suspend sysfs attributes" and the 1 suspendlostore or 2 suspendhistore functions. NOTE: this is only a vulnerability when sysfs i...