3 matches found
CVE-2024-57951
CVE-2024-57951 affects the Linux kernel and describes a race/state handling issue in hrtimers during CPU hotplug/unplug cycles. The vulnerability arises when a CPU transitions from ONLINE toward HOTUNPLUG and back, causing hrtimers_prepare_cpu() not to run and leaving cpu_base.hres_active at 1. A...
CVE-2025-22054
CVE-2025-22054: Linux kernel vulnerability in arcnet handling (com20020pci_probe) where devm_kasprintf() can return NULL, leading to a NULL pointer dereference. The fix adds a NULL check after devm_kasprintf() and ensures no resources are leaked. Connected docs (Ubuntu Unity/Linux advisories) con...
CVE-2025-21816
CVE-2025-21816 affects the Linux kernel hrtimers subsystem. The issue arises when hrtimers queued on an offline CPU can wake up and arm the deadline timer after CPU hotplug stage CPUHP_AP_HRTIMERS_DYING, potentially impacting bandwidth timer handling (notably RCU-related wakeups). The documented ...