19 matches found
CVE-2021-46939
CVE-2021-46939 affects the Linux kernel where tracing changes to trace_clock_global() could deadlock due to recursive locking during tracing; the fix uses a trylock and retry semantics to avoid blocking. Public details in connected advisories (MiracleLinux UTSA, Nessus plugin) describe the same i...
CVE-2021-46941
CVE-2021-46941 concerns the Linux kernel usb dwc3 core. The description states the issue arises in the DRD mode switch sequence for the controller: missing CoreSoftReset before switching modes and missing Host/DGPU resets (GCTL.CoreSoftReset and DCTL.CSftRst) caused lockups on HiKey960 and simila...
CVE-2021-46940
CVE-2021-46940 is a Linux kernel vulnerability in the perf/turbostat timer path. The bug stems from index conversion in tools/power turbostat where idx_to_offset() returns a 32-bit int while MSR_PKG_ENERGY_STAT is a 32-bit unsigned value, causing negative interpretation and triggering a guard in ...
CVE-2020-36777
CVE-2020-36777 is a Linux kernel issue where media: dvbdev had a memory leak in dvb_media_device_free(), documented as freeing dvbdev->adapter->conn before NULL-ing it. The connected MiracleLinux advisory (AXSA-2024-8481:17) lists this CVE among others and confirms a fix/vendor advisory. Th...
CVE-2020-36776
In the Linux kernel, CVE-2020-36776 concerns the slab OOB issue in thermal/cpufreq_cooling. The vulnerability is triggered in cpu_power_to_freq() when the EM table does not contain a suitable power entry (power below OPP0), leading to a negative index read. The documented fix returns the lowest a...
CVE-2021-46948
CVE-2021-46948 relates to the Linux kernel: the sfc: farch patch fixes TX queue lookup in TX event handling. The issue occurred because TXQ label was used as the basis for queue lookup, which could cause efx_channel_get_tx_queue() to return NULL and trigger panics. The vulnerability has been reso...
CVE-2021-46952
Summary (CVE-2021-46952): In the Linux kernel, NFS with UDP transport was vulnerable to a shift-out-of-bounds due to a garbage UDP retrans timeout being passed to xprt_calc_majortimeo. If retrans is >= 64, the mount fails with an error, preventing exploitation. The fix is a patch to validate U...
CVE-2021-46949
CVE-2021-46949 concerns the Linux kernel sfc (Solarflare) network driver path: farch TX queue lookup during TX flush done handling. The root cause is starting TXQ processing from a TXQ instance number (qid) rather than a TXQ type, which could cause efx_get_tx_queue() to return NULL and trigger pa...
CVE-2021-46945
CVE-2021-46945 concerns the Linux kernel ext4 filesystem. The vulnerability causes a kernel panic when the filesystem is mounted with errors=panic, prior to a specific commit. After the patch 014c9caa29d3, remounting a filesystem with abort no longer panics, and the behavior is restored to what i...
CVE-2021-46953
The CVE-2021-46953 issue affects the Linux kernel ACPI GTDT driver. If a probe fails due to invalid firmware properties, the driver may unmap an interrupt it mapped earlier without verifying that the mapping succeeded, and if the firmware reports an interrupt number overlapping the GIC SGI range,...
CVE-2021-46938
CVE-2021-46938 affects the Linux kernel in the device-mapper (dm-mq) path for request-based mapped devices. When loading a device-mapper table, if the allocation/initialization of blk_mq_tag_set for the device fails, a subsequent dev_remove can trigger a double free during cleanup because the poi...
CVE-2021-46954
CVE-2021-46954 affects the Linux kernel net/sched IPv4 path. When act_mirred attempts to fragment IPv4 packets that were previously reassembled by act_ct, sch_frag used a temporary dst_entry, which was later treated as an rtable pointer in the fragment/MTU flow. This caused a stack out-of-bounds ...
CVE-2021-46942
CVE-2021-46942 relates to the Linux kernel io_uring shared sqpoll cancellation hang. The root cause is an incorrect accounting of inflight requests when cancelling sqpoll contexts that share a sqpoll, caused by per-task counters that can count more requests than are present in the io_uring contex...
CVE-2021-46947
CVE-2021-46947 is a Linux kernel issue in the sfc (Solarflare) driver where efx->xdp_tx_queue_count can reflect too many uninitialized slots after probing, risking a NULL pointer dereference (e.g., when running ethtool -S). The root cause is that xdp_tx_queue_count starts at num_possible_cpus(...
CVE-2021-46923
CVE-2021-46923: Rejected reason; this CVE entry is not used.
CVE-2021-46943
CVE-2021-46943 : Linux kernel vulnerability in media: staging/intel-ipu3 where a faulty set_fmt error handling could cause mis-updated sizes, enabling a local exploit path that, without the fix, could trigger excessive RAM use (up to 4 GiB) and an OOPS. The issue stems from overwriting previous v...
CVE-2021-46951
CVE-2021-46951 (Linux kernel) concerns a local vulnerability in TPM support where tpm_read_log_efi could trigger integer underflow of efi_tpm_final_log_size when a TPM2 driver is loaded/unloaded repeatedly. The issue arises from subtracting final_events_preboot_size from a global final log size, ...
CVE-2021-46944
CVE-2021-46944 : Linux kernel vulnerability in media: staging/intel-ipu3 where a memory reference leak in imu_fmt occurs due to misordered checks; patch fixes memory leak by changing check order. Impact limited to memory leak; no exploitation details provided in the documents. Remediation: apply ...
CVE-2021-47142
CVE-2021-47142 concerns the Linux kernel’s DRM/AMDGPU stack. The vulnerability stems from a use-after-free in the AMDGPU TTM memory backend when cleaning up objects, specifically due to not clearing ttm->sg (the sg table) which can lead to a general protection fault during teardown. The connec...