3 matches found
CVE-2024-35880
Summary of CVE-2024-35880 (Linux kernel) : A local privilege escalation fix addressing io_uring kbuf handling during mmap. The issue stems from unsafe use of the io_uring lock while mmap’ing, requiring a reference to the io_buffer_list to prevent unregistering during use. The lookup now returns t...
CVE-2024-36003
CVE-2024-36003: Linux kernel ice driver deadlock in ice_reset_vf() due to lock order between VF config_lock and LAG mutex when ICE_VF_RESET_LOCK is involved. Connected advisories describe the issue as a possible circular locking dependency triggered on VF creation/removal, enabling a deadlock bet...
CVE-2024-41053
The CVE-2024-41053 issue affects the Linux kernel’s SCSI/ufs path. It concerns ufshcd_abort_one racing with the completion ISR, which can cause the request’s mq_hctx pointer to be NULL at ISR completion and may lead to a kernel NULL pointer dereference (as shown in the backtrace). The description...