CVE-2022-50426 remoteproc: imx_dsp_rproc: Add mutex protection for workqueue

In the Linux kernel, the following vulnerability has been resolved: remoteproc: imxdsprproc: Add mutex protection for workqueue The workqueue may execute late even after remoteproc is stopped or stopping, some resources rpmsg device and endpoint have been released in rprocstopsubdevices, then...

UBUNTU-CVE-2022-50064

In the Linux kernel, the following vulnerability has been resolved: virtio-blk: Avoid use-after-free on suspend/resume hctx-userdata is set to vq in virtblkinithctx. However, vq is freed on suspend and reallocated on resume. So, hctx-userdata is invalid after resume, and it will cause...

DEBIAN-CVE-2025-38074

In the Linux kernel, the following vulnerability has been resolved: vhost-scsi: protect vq-logused with vq-mutex The vhost-scsi completion path may access vq-logbase when vq-logused is already set to false. vhost-thread QEMU-thread vhostscsicompletecmdwork - vhostaddused - vhostaddusedn if...

CVE-2024-53092

In the Linux kernel, the following vulnerability has been resolved: virtiopci: Fix admin vq cleanup by using correct info pointer vpmodernavqcleanup and vpdelvqs clean up admin vq resources by virtiopcivqinfo pointer. The info pointer of admin vq is stored in vpdev-adminvq.info instead of...

SUSE CVE-2024-53092

In the Linux kernel, the following vulnerability has been resolved: virtiopci: Fix admin vq cleanup by using correct info pointer vpmodernavqcleanup and vpdelvqs clean up admin vq resources by virtiopcivqinfo pointer. The info pointer of admin vq is stored in vpdev-adminvq.info instead of...

CVE-2024-53092

In the Linux kernel, the following vulnerability has been resolved: virtiopci: Fix admin vq cleanup by using correct info pointer vpmodernavqcleanup and vpdelvqs clean up admin vq resources by virtiopcivqinfo pointer. The info pointer of admin vq is stored in vpdev-adminvq.info instead of...

CVE-2024-53092

CVE-2024-53092 is described in connected documentation as a Linux kernel vulnerability affecting virtio_pci admin virtqueue cleanup. Root cause: admin vq information pointer was stored in vp_dev->admin_vq.info, but cleanup logic in vp_modern_avq_cleanup() and vp_del_vqs() used vp_dev->vqs[]...

CVE-2024-53092 virtio_pci: Fix admin vq cleanup by using correct info pointer

In the Linux kernel, the following vulnerability has been resolved: virtiopci: Fix admin vq cleanup by using correct info pointer vpmodernavqcleanup and vpdelvqs clean up admin vq resources by virtiopcivqinfo pointer. The info pointer of admin vq is stored in vpdev-adminvq.info instead of...

CVE-2024-53092

In the Linux kernel, the following vulnerability has been resolved: virtiopci: Fix admin vq cleanup by using correct info pointer vpmodernavqcleanup and vpdelvqs clean up admin vq resources by virtiopcivqinfo pointer. The info pointer of admin vq is stored in vpdev-adminvq.info instead of...

CVE-2024-53092 virtio_pci: Fix admin vq cleanup by using correct info pointer

In the Linux kernel, the following vulnerability has been resolved: virtiopci: Fix admin vq cleanup by using correct info pointer vpmodernavqcleanup and vpdelvqs clean up admin vq resources by virtiopcivqinfo pointer. The info pointer of admin vq is stored in vpdev-adminvq.info instead of...

PT-2024-34707 · Freebsd · Freebsd

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The virtio vq recordon function is subject to a time-of-check to time-of-use TOCTOU race condition. Recommendations: At the moment, there is no...

DEBIAN-CVE-2022-48864

In the Linux kernel, the following vulnerability has been resolved: vdpa/mlx5: add validation for VIRTIONETCTRLMQVQPAIRSSET command When control vq receives a VIRTIONETCTRLMQVQPAIRSSET command request from the driver, presently there is no validation against the number of queue pairs to configure...

CVE-2024-37353

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

CVE-2024-37353

CVE-2024-37353 is labeled as Rejected by its CNA in the initial document, but connected security feeds disclose a concrete Linux kernel issue in the virtio subsystem. The Nessus/NASL entry attributes the vulnerability to the virtio path: kernel: virtio: delete vq in vp_find_vqs_msix() when reques...

CVE-2024-27066 virtio: packed: fix unmap leak for indirect desc table

In the Linux kernel, the following vulnerability has been resolved: virtio: packed: fix unmap leak for indirect desc table When usedmaapi and premapped are true, then the dounmap is false. Because the dounmap is false, vringunmapextrapacked is not called by detachbufpacked. if unlikelyvq-dounmap...

PT-2023-12179 · Hyperkit · Hyperkit

Name of the Vulnerable Software and Affected Versions: HyperKit versions 0.20210107 and prior Description: HyperKit is a toolkit for embedding hypervisor capabilities in an application. The implementation of qnotify at pci vtrnd notify fails to check the return value of vq getchain, leading to...

SUSE CVE-2014-0055

The getrxbufs function in drivers/vhost/net.c in the vhost-net subsystem in the Linux kernel package before 2.6.32-431.11.2 on Red Hat Enterprise Linux RHEL 6 does not properly handle vhostgetvqdesc errors, which allows guest OS users to cause a denial of service host OS crash via unspecified...

Null pointer dereference

An issue was discovered in ACRN before 2.5. It allows a devicemodel/hw/pci/virtio/virtionet.c virtionetpingrxq NULL pointer dereference for vq-used...

The vulnerability of the Linux operating system, which allows a malicious individual to trigger a service failure

The getrxbufs function in the drivers/vhost/net.c file incorrectly handles the error pointer vhostgetvqdesc. As a result, users of the host operating system may cause failures in maintaining the host operating system...

qemu-kvm security and bug fix update

qemu-kvm-0.12.1.2-2.160.el61.2 - kvm-virtio-guard-against-negative-vq-notifies.patch bz717403 - Resolves: bz717403 qemu-kvm: OOB memory access caused by negative vq notifies rhel-6.1.z qemu-kvm-0.12.1.2-2.160.el61 - kvm-Fix-phys-memory-client-pass-guest-physical-address-n.patch bz701771 -...