3 matches found
CVE-2024-26676
CVE-2024-26676 concerns the Linux kernel’s af_unix garbage collection. The issue arose when a socketpair self-send creates a self-referential GC candidate cycle that is not untangled due to missing MSG_OOB handling, causing a memory leak. The root cause was exposed after removing io_uring GC dead...
CVE-2023-53118
CVE-2023-53118 affects the Linux kernel SCSI subsystem: a regression in host procfs directory removal in the core SCSI layer. The vulnerable code path centers on scsi_proc_hostdir_rm(), which decreases a reference counter and must be invoked only once per host removal. The issue is resolved by th...
CVE-2023-53626
CVE-2023-53626 : In the Linux kernel, the vulnerability is in the ext4 code and is caused by a possible double unlock when moving a directory. Affected component is ext4 within the kernel, with fixes committed in the upstream kernel (see references to stable kernel patches). The EulerOS/OSS advis...