5 matches found
CVE-2024-26886
CVE-2024-26886 (Linux kernel): The vulnerability affects Bluetooth af_bluetooth in the Linux kernel, where attempting to lock a socket during .recvmsg could deadlock. The fix switches from using sock_sock to using the bt path with sk_receive_queue.lock in bt_sock_ioctl, preventing a use-after-fre...
CVE-2024-36031
CVE-2024-36031 is a Linux kernel vulnerability where, during key instantiation, the expiry time of a key is unconditionally overwritten to TIME64_MAX, effectively making it permanent and breaking DNS updates. The root cause is the unconditional key_set_expiry call during instantiation; the fix re...
CVE-2024-39486
Summary (CVE-2024-39486): Linux kernel vulnerability in drm_file: Fix pid refcounting race. The race occurs in drm_file_update_pid() when filp->pid is updated under filelist_mutex, allowing a possible use-after-free of a pid structure under PREEMPT_RCU. Affected component: drm_file in the Linu...
CVE-2024-41036
CVE-2024-41036 - Linux kernel ks8851 deadlock fix (SPI variant). The issue arises when SMP is enabled and spinlocks are functional, causing a deadlock between ks8851_start_xmit_spi and ks8851_irq via the statelock. Affected: ks8851 TX path in the Linux kernel net driver. Impact: potential soft lo...
CVE-2025-71086
Technical details for CVE-2025-71086 are not publicly available in the provided documents. Monitor for updates from official advisories; the initial description mentions a Linux kernel fix in net rose_kill_by_device but no product/version specifics are provided here.