4 matches found
CVE-2025-38131 coresight: prevent deactivate active config while enabling the config
In the Linux kernel, the following vulnerability has been resolved: coresight: prevent deactivate active config while enabling the config While enable active config via cscfgcsdevenableactiveconfig, active config could be deactivated via configfs' sysfs interface. This could make UAF issue in bel...
CVE-2025-38131 coresight: prevent deactivate active config while enabling the config
In the Linux kernel, the following vulnerability has been resolved: coresight: prevent deactivate active config while enabling the config While enable active config via cscfgcsdevenableactiveconfig, active config could be deactivated via configfs' sysfs interface. This could make UAF issue in bel...
CVE-2025-21631
In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix wakerbfqq UAF after bfqsplitbfqq Our syzkaller report a following UAF for v6.6: BUG: KASAN: slab-use-after-free in bfqinitrq+0x175d/0x17a0 block/bfq-iosched.c:6958 Read of size 8 at addr ffff8881b57147d8 by task...
CVE-2024-53232
CVE-2024-53232 refers to a Linux kernel vulnerability in the IOMMU code for s390, where during surprise hot-unplug of a PCI device, attaching the default domain could fail and lead to a NULL domain pointer and a use-after-free. The fix introduces a blocking domain to handle devices that were alre...