CVE-2023-54244

CVE-2023-54244 affects the Linux kernel ACPI EC subsystem. The issue occurs when removing custom ACPI query handlers, as the handler could still be used in the EC query workqueue after the module owning the callback was unloaded, leading to a kernel oops. The mitigation is to flush the EC query w...

CVE-2024-56780

In the Linux kernel, the following vulnerability has been resolved: quota: flush quotareleasework upon quota writeback One of the paths quota writeback is called from is: freezesuper syncfilesystem ext4syncfs dquotwritebackdquots Since we currently don't always flush the quotareleasework queue in...

kernel: nvme-fc: do not wait in vain when unloading module

In the Linux kernel, the following vulnerability has been resolved: nvme-fc: do not wait in vain when unloading module The module exit path has race between deleting all controllers and freeing 'left over IDs'. To prevent double free a synchronization between nvmedeletectrl and idadestroy has bee...

kernel: KVM: Always flush async #PF workqueue when vCPU is being destroyed

In the Linux kernel, the following vulnerability has been resolved: KVM: Always flush async PF workqueue when vCPU is being destroyed Always flush the per-vCPU async PF workqueue when a vCPU is clearing its completion queue, e.g. when a VM and all its vCPUs is being destroyed. KVM must ensure tha...