Количество 8
Количество 8
BDU:2025-03943
Уязвимость компонента NFSD ядра операционной системы Linux, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании
CVE-2023-53025
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
CVE-2023-53025
An expired pointer dereference flaw was found in the NFSv4 implementation in the Linux kernel, which may negatively affect system availability when the kernel thread is signaled during a mount/unmount operation. If signal_pending() returns true, schedule_timeout() will not be executed, causing the waiting task to remain in the wait queue, which may lead to a use after free later on. This can impact system stability, leading to memory corruption and possibly arbitrary code execution.
CVE-2023-53025
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
ROS-20250602-01
Множественные уязвимости kernel-lt
GHSA-37xv-f578-fgq6
In the Linux kernel, the following vulnerability has been resolved: NFSD: fix use-after-free in nfsd4_ssc_setup_dul() If signal_pending() returns true, schedule_timeout() will not be executed, causing the waiting task to remain in the wait queue. Fixed by adding a call to finish_wait(), which ensures that the waiting task will always be removed from the wait queue.
SUSE-SU-2025:1195-1
Security update for the Linux Kernel
SUSE-SU-2025:1241-1
Security update for the Linux Kernel
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2025-03943 Уязвимость компонента NFSD ядра операционной системы Linux, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании | CVSS3: 7.8 | 10 месяцев назад | |
 | CVE-2023-53025 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | 10 месяцев назад | ||
 | CVE-2023-53025 An expired pointer dereference flaw was found in the NFSv4 implementation in the Linux kernel, which may negatively affect system availability when the kernel thread is signaled during a mount/unmount operation. If signal_pending() returns true, schedule_timeout() will not be executed, causing the waiting task to remain in the wait queue, which may lead to a use after free later on. This can impact system stability, leading to memory corruption and possibly arbitrary code execution. | CVSS3: 7 | 10 месяцев назад | |
 | CVE-2023-53025 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | 10 месяцев назад | ||
 | ROS-20250602-01 Множественные уязвимости kernel-lt | CVSS3: 7.8 | 8 месяцев назад | |
| GHSA-37xv-f578-fgq6 In the Linux kernel, the following vulnerability has been resolved: NFSD: fix use-after-free in nfsd4_ssc_setup_dul() If signal_pending() returns true, schedule_timeout() will not be executed, causing the waiting task to remain in the wait queue. Fixed by adding a call to finish_wait(), which ensures that the waiting task will always be removed from the wait queue. | CVSS3: 7.8 | 10 месяцев назад | |
 | SUSE-SU-2025:1195-1 Security update for the Linux Kernel | 10 месяцев назад | ||
| SUSE-SU-2025:1241-1 Security update for the Linux Kernel | 10 месяцев назад |
Уязвимостей на страницу