Jens Axboe

7 exploits Active since Sep 2008
CVE-2018-11506 WRITEUP HIGH WRITEUP
Linux Kernel < 4.14.45 - Out-of-Bounds Write
The sr_do_ioctl function in drivers/scsi/sr_ioctl.c in the Linux kernel through 4.16.12 allows local users to cause a denial of service (stack-based buffer overflow) or possibly have unspecified other impact because sense buffers have different sizes at the CDROM layer and the SCSI layer, as demonstrated by a CDROMREADMODE2 ioctl call.
CVSS 7.8
CVE-2018-5344 WRITEUP HIGH WRITEUP
Linux kernel <4.14.13 - DoS
In the Linux kernel through 4.14.13, drivers/block/loop.c mishandles lo_release serialization, which allows attackers to cause a denial of service (__lock_acquire use-after-free) or possibly have unspecified other impact.
CVSS 7.8
CVE-2020-12657 WRITEUP HIGH WRITEUP
Linux kernel <5.6.5 - Use After Free
An issue was discovered in the Linux kernel before 5.6.5. There is a use-after-free in block/bfq-iosched.c related to bfq_idle_slice_timer_body.
CVSS 7.8
CVE-2022-4127 WRITEUP MEDIUM WRITEUP
Linux Kernel - NULL Pointer Dereference
A NULL pointer dereference issue was discovered in the Linux kernel in io_files_update_with_index_alloc. A local user could use this flaw to potentially crash the system causing a denial of service.
CVSS 5.5
CVE-2023-0240 WRITEUP HIGH WRITEUP
io_uring - Use After Free
There is a logic error in io_uring's implementation which can be used to trigger a use-after-free vulnerability leading to privilege escalation. In the io_prep_async_work function the assumption that the last io_grab_identity call cannot return false is not true, and in this case the function will use the init_cred or the previous linked requests identity to do operations instead of using the current identity. This can lead to reference counting issues causing use-after-free. We recommend upgrading past version 5.10.161.
CVSS 7.8
CVE-2023-46862 WRITEUP MEDIUM WRITEUP
Linux kernel <6.5.9 - Info Disclosure
An issue was discovered in the Linux kernel through 6.5.9. During a race with SQ thread exit, an io_uring/fdinfo.c io_uring_show_fdinfo NULL pointer dereference can occur.
CVSS 4.7
CVE-2008-4302 EXPLOITDB MEDIUM text WORKING POC
Linux Kernel < 2.6.22.2 - Improper Locking
fs/splice.c in the splice subsystem in the Linux kernel before 2.6.22.2 does not properly handle a failure of the add_to_page_cache_lru function, and subsequently attempts to unlock a page that was not locked, which allows local users to cause a denial of service (kernel BUG and system crash), as demonstrated by the fio I/O tool.
CVSS 5.5