CVE-2023-54316 refscale: Fix uninitalized use of wait_queue_head_t

In the Linux kernel, the following vulnerability has been resolved: refscale: Fix uninitalized use of waitqueueheadt Running the refscale test occasionally crashes the kernel with the following error: 8569.952896 BUG: unable to handle page fault for address: ffffffffffffffe8 8569.952900 PF:...

SUSE CVE-2023-54134

In the Linux kernel, the following vulnerability has been resolved: autofs: fix memory leak of waitqueues in autofscatatonicmode Syzkaller reports a memory leak: BUG: memory leak unreferenced object 0xffff88810b279e00 size 96: comm "syz-executor399", pid 3631, jiffies 4294964921 age 23.870s hex...

CVE-2023-54134

In the Linux kernel, the following vulnerability has been resolved: autofs: fix memory leak of waitqueues in autofscatatonicmode Syzkaller reports a memory leak: BUG: memory leak unreferenced object 0xffff88810b279e00 size 96: comm "syz-executor399", pid 3631, jiffies 4294964921 age 23.870s hex...

CVE-2023-54019 sched/psi: use kernfs polling functions for PSI trigger polling

In the Linux kernel, the following vulnerability has been resolved: sched/psi: use kernfs polling functions for PSI trigger polling Destroying psi trigger in cgroupfilerelease causes UAF issues when a cgroup is removed from under a polling process. This is happening because cgroup removal causes ...

PT-2025-52976

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free UAF issue exists in the Linux kernel related to PSI Pressure Stall Information trigger polling within cgroups. The issue occurs when destroying a psi trigger during cgro...

SUSE CVE-2025-68168

In the Linux kernel, the following vulnerability has been resolved: jfs: fix uninitialized waitqueue in transaction manager The transaction manager initialization in txInit was not properly initializing TxBlock0.waitor waitqueue, causing a crash when txEnd0 is called on read-only filesystems. Whe...

EUVD-2025-203728

In the Linux kernel, the following vulnerability has been resolved: jfs: fix uninitialized waitqueue in transaction manager The transaction manager initialization in txInit was not properly initializing TxBlock0.waitor waitqueue, causing a crash when txEnd0 is called on read-only filesystems. Whe...

CVE-2025-68168

In the Linux kernel, the following vulnerability has been resolved: jfs: fix uninitialized waitqueue in transaction manager The transaction manager initialization in txInit was not properly initializing TxBlock0.waitor waitqueue, causing a crash when txEnd0 is called on read-only filesystems. Whe...

CVE-2025-68168

The CVE-2025-68168 issue affects the JFS transaction manager in the Linux kernel. TxInit() failed to initialize TxBlock[0].waitor/waitqueue, causing a crash when txEnd(0) is invoked on read-only filesystems, because tid_to_tblock(0) could dereference an uninitialized waitqueue. The vulnerability’...

CVE-2025-68168 jfs: fix uninitialized waitqueue in transaction manager

In the Linux kernel, the following vulnerability has been resolved: jfs: fix uninitialized waitqueue in transaction manager The transaction manager initialization in txInit was not properly initializing TxBlock0.waitor waitqueue, causing a crash when txEnd0 is called on read-only filesystems. Whe...

Linux Distros Unpatched Vulnerability : CVE-2025-68168

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - jfs: fix uninitialized waitqueue in transaction manager The transaction manager initialization in txInit was not properly initializing TxBlock0.waitor waitqueue...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989819)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989819 advisory. In the Linux kernel, the following vulnerability has been resolved: sched/psi: Fix use-after-free in epremovewaitqueue If a non-root cgroup gets removed when there i...

PT-2025-40771

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a use-after-free condition within the nilfs2 filesystem, specifically in the nilfs segctor thread function. The finalization process of nilfs segctor thread can...

PT-2025-51581

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's JFS Journaled File System transaction manager. The txInit function does not properly initialize the TxBlock0.waitor waitqueue, leading to a system cra...

DEBIAN-CVE-2023-53280

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Remove unused nvmelswaitq wait queue System crash when qla2x00startspsp returns error code EGAIN and wakeup gets called for uninitialized wait queue sp-nvmelswaitq. qla2xxx 0000:37:00.1-2121:5: Returning existing...

CVE-2023-53280

CVE-2023-53280 affects the Linux kernel’s scsi/qla2xxx path. The issue stems from removing the unused nvme_ls_waitq wait queue, which could lead to a NULL pointer dereference when qla2x00_start_sp returns an error and wake_up is invoked for an uninitialized sp->nvme_ls_waitq. The connected adv...

UBUNTU-CVE-2022-49979

In the Linux kernel, the following vulnerability has been resolved: net: fix refcount bug in skpsockget 2 Syzkaller reports refcount bug as follows: ------------ cut here ------------ refcountt: saturated; leaking memory. WARNING: CPU: 1 PID: 3605 at lib/refcount.c:19...

Linux Distros Unpatched Vulnerability : CVE-2022-48721

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net/smc: Forward wakeup to smc socket waitqueue after fallback When we replace TCP with SMC and a fallback occurs, there may be some socket waitqueue entries...

kernel: aio: fix use-after-free due to missing POLLFREE handling

In the Linux kernel, the following vulnerability has been resolved: aio: fix use-after-free due to missing POLLFREE handling signalfdpoll and binderpoll are special in that they use a waitqueue whose lifetime is the current task, rather than the struct file as is normally the case. This is okay f...

CVE-2024-50082

In the Linux kernel, the following vulnerability has been resolved: blk-rq-qos: fix crash on rqqoswait vs. rqqoswakefunction race We're seeing crashes from rqqoswakefunction that look like this: BUG: unable to handle page fault for address: ffffafe180a40084 PF: supervisor write access in kernel...