CVE-2022-49003

In the Linux kernel, the following vulnerability has been resolved: nvme: fix SRCU protection of nvmenshead list Walking the nvmenshead siblings list is protected by the head's srcu in nvmensheadsubmitbio but not nvmempathrevalidatepaths. Removing namespaces from the list also fails to synchroniz...

CVE-2022-49003 nvme: fix SRCU protection of nvme_ns_head list

In the Linux kernel, the following vulnerability has been resolved: nvme: fix SRCU protection of nvmenshead list Walking the nvmenshead siblings list is protected by the head's srcu in nvmensheadsubmitbio but not nvmempathrevalidatepaths. Removing namespaces from the list also fails to synchroniz...

CVE-2023-52913 drm/i915: Fix potential context UAFs

In the Linux kernel, the following vulnerability has been resolved: drm/i915: Fix potential context UAFs gemcontextregister makes the context visible to userspace, and which point a separate thread can trigger the I915GEMCONTEXTDESTROY ioctl. So we need to ensure that nothing uses the ctx ptr aft...

Debian: Security Advisory (DLA-800-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

GSD-2023-1001729 drm/i915: Fix potential context UAFs

drm/i915: Fix potential context UAFs This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.7 by commit b696c627b3f56e173f7f70b8487d66da8ff22506, ...

CVE-2022-46871

An out of date library libusrsctp contained vulnerabilities that could potentially be exploited. This vulnerability affects Firefox 108...

Security update for the Linux Kernel (important)

SUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2022:0131-1 Rating: important References: 1139944 1151927 1152489 1153275 1154353 1154355 1161907 1164565 1166780 1169514 1176242 1176447 1176536 1176544 1176545 1176546 1176548 1176558 1176559 1176774 1176940...

EulerOS 2.0 SP10 : kernel (EulerOS-SA-2022-1661)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A vulnerability was found in Linux kernel, where a use-after-frees in nouveau's postclose handler could happen if removing device that is not...

Security update for the Linux Kernel (important)

openSUSE Security Update: Security update for the Linux Kernel Announcement ID: openSUSE-SU-2022:0056-1 Rating: important References: 1139944 1151927 1152489 1153275 1154353 1154355 1161907 1164565 1166780 1169514 1176242 1176447 1176536 1176544 1176545 1176546 1176548 1176558 1176559 1176774...

SUSE SLES15 Security Update : kernel (SUSE-SU-2022:0367-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0367-1 advisory. - The BPF subsystem in the Linux kernel before 4.17 mishandles situations with a long jump over an instruction sequence where inner...

SUSE SLES15 Security Update : kernel (SUSE-SU-2022:0079-1)

The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0079-1 advisory. - Uncontrolled resource consumption in some IntelR Ethernet E810 Adapter drivers for Linux before version 1.0.4 may allow an authenticated user...

SUSE SLES15 Security Update : kernel (SUSE-SU-2022:0056-1)

The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0056-1 advisory. - Uncontrolled resource consumption in some IntelR Ethernet E810 Adapter drivers for Linux before version 1.0.4 may allow an authenticated user...

SUSE SLES15 Security Update : the Linux RT Kernel (SUSE-SU-2021:3978-1)

The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:3978-1 advisory. - A vulnerability was found in Linux kernel, where a use-after-frees in nouveau's postclose handler could happen if removing device that is not...

Updated kernel packages fix security vulnerabilities

This kernel update is based on upstream 5.15.6 and fixes at least the following security issues: A vulnerability was found in Linux kernel, where a use-after-frees in nouveau's postclose handler could happen if removing device that is not common to remove video card physically without power-off,...

CVE-2020-27820

A vulnerability was found in Linux kernel, where a use-after-frees in nouveau's postclose handler could happen if removing device that is not common to remove video card physically without power-off, but same happens if "unbind" the driver...

CVE-2020-27820

A vulnerability was found in Linux kernel, where a use-after-frees in nouveau's postclose handler could happen if removing device that is not common to remove video card physically without power-off, but same happens if "unbind" the driver...

Design/Logic Flaw

A vulnerability was found in Linux kernel, where a use-after-frees in nouveau's postclose handler could happen if removing device that is not common to remove video card physically without power-off, but same happens if "unbind" the driver...

CVE-2020-27820

CVE-2020-27820: Linux kernel use-after-free in nouveau's postclose() during device removal (or unbind). Exploitation local; affects nouveau driver paths; impact: high availability risk, no confidentiality/integrity impact per CVSS. Documents indicate a fix exists in kernel patches (e.g., advisori...

CVE-2020-27820

A vulnerability was found in Linux kernel, where a use-after-frees in nouveau's postclose handler could happen if removing device that is not common to remove video card physically without power-off, but same happens if "unbind" the driver...

GHSA-WP34-MQW5-JJ85 Use after free in nano_arena

Affected versions of this crate assumed that Borrow was guaranteed to return the same value on .borrow. The borrowed index value was used to retrieve a mutable reference to a value. If the Borrow implementation returned a different index, the split arena would allow retrieving the index as a...