CVE-2024-40906 net/mlx5: Always stop health timer during driver removal

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Always stop health timer during driver removal Currently, if teardownhca fails to execute during driver removal, mlx5 does not stop the health timer. Afterwards, mlx5 continue with driver teardown. This may lead to a UA...

CVE-2024-40906 net/mlx5: Always stop health timer during driver removal

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Always stop health timer during driver removal Currently, if teardownhca fails to execute during driver removal, mlx5 does not stop the health timer. Afterwards, mlx5 continue with driver teardown. This may lead to a UA...

CVE-2024-40906

The CVE-2024-40906 entry describes a Linux kernel vulnerability in the mlx5 driver where the health timer could continue after a failed teardown_hca during driver removal, risking a use-after-free that could trigger a page fault. The fix is to always stop the health monitor during driver removal,...

CVE-2024-40906 net/mlx5: Always stop health timer during driver removal

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Always stop health timer during driver removal Currently, if teardownhca fails to execute during driver removal, mlx5 does not stop the health timer. Afterwards, mlx5 continue with driver teardown. This may lead to a UA...

CVE-2024-40906

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Always stop health timer during driver removal Currently, if teardownhca fails to execute during driver removal, mlx5 does not stop the health timer. Afterwards, mlx5 continue with driver teardown. This may lead to a UA...

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the net/mlx5 component failing to properly stop the health timer during driver removal...

CVE-2024-40417

A vulnerability was found in Tenda AX1806 1.0.0.1. Affected by this issue is the function formSetRebootTimer of the file /goform/SetIpMacBind. The manipulation of the argument list leads to stack-based buffer overflow...

PT-2024-7371

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the BPF timer functionality in the Linux kernel. When two or more timer callbacks are executed in parallel and attempt to cancel each other, it can lead to a...

PT-2024-29225

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to the bpf timer cancel and free function in the Linux kernel, where two timer callbacks trying to cancel each other can lead to a deadlock situation. This can be...

kernel: mISDN: fix possible use-after-free in HFC_cleanup()

A vulnerability was found in the Linux kernel's mISDN driver. This issue arises during the cleanup process, where a timer handler might still be running after the driver has been removed, which can lead to a use-after-free issue, potentially causing a system crash...

The vulnerability of the formSetRebootTimer function in the /goform/SetRebootTimer file of the Tenda AX1806 router’s microprogramming software allows a hacker to execute arbitrary code.

The vulnerability of the formSetRebootTimer function in the /goform/SetRebootTimer microprogramming system of the Tenda AX1806 router is related to a stack-based buffer overflow. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

PT-2024-7055

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to a memory leak in the Linux kernel, specifically in the sched/deadline module. The leak occurs when the start dl timer function increments the task struct referenc...

The vulnerability of the del_timer() function in the Linux operating system allows a hacker to trigger a service failure or cause other adverse effects.

The vulnerability of the deltimer function in the Linux operating system’s kernel is related to a memory reclamation error. Exploiting this vulnerability could allow an attacker to cause a service failure or have other adverse effects...

Astra Linux - уязвимость в linux-6.1

A use-after-free vulnerability was found in the cxgb4 driver in the Linux kernel. The bug occurs when the cxgb4 device is detaching due to a possible rearming of the flowerstatstimer from the work queue. This flaw allows a local user to crash the system, causing a denial of service condition...

SUSE CVE-2024-38630

In the Linux kernel, the following vulnerability has been resolved: watchdog: cpu5wdt.c: Fix use-after-free bug caused by cpu5wdttrigger When the cpu5wdt module is removing, the origin code uses deltimer to de-activate the timer. If the timer handler is running, deltimer could not stop it and wil...

SUSE CVE-2022-48765

In the Linux kernel, the following vulnerability has been resolved: KVM: LAPIC: Also cancel preemption timer during SETLAPIC The below warning is splatting during guest reboot. ------------ cut here ------------ WARNING: CPU: 0 PID: 1931 at arch/x86/kvm/x86.c:10322 kvmarchvcpuioctlrun+0x874/0x880...

SUSE CVE-2024-38618

In the Linux kernel, the following vulnerability has been resolved: ALSA: timer: Set lower bound of start tick time Currently ALSA timer doesn't have the lower limit of the start tick time, and it allows a very small size, e.g. 1 tick with 1ns resolution for hrtimer. Such a situation may lead to ...

DEBIAN-CVE-2024-38630

In the Linux kernel, the following vulnerability has been resolved: watchdog: cpu5wdt.c: Fix use-after-free bug caused by cpu5wdttrigger When the cpu5wdt module is removing, the origin code uses deltimer to de-activate the timer. If the timer handler is running, deltimer could not stop it and wil...

AZL-48939 CVE-2024-38630 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: watchdog: cpu5wdt.c: Fix use-after-free bug caused by cpu5wdttrigger When the cpu5wdt module is removing, the origin code uses deltimer to de-activate the timer. If the timer handler is running, deltimer could not stop it and wil...

UBUNTU-CVE-2024-38630

In the Linux kernel, the following vulnerability has been resolved: watchdog: cpu5wdt.c: Fix use-after-free bug caused by cpu5wdttrigger When the cpu5wdt module is removing, the origin code uses deltimer to de-activate the timer. If the timer handler is running, deltimer could not stop it and wil...