[CVE-2016-6480] Double-Fetch Vulnerability in Linux-4.5/drivers/scsi/aacraid/commctrl.c

I found this double-fetch vulnerability when I was doing my research on double-fetch issue analysis, and I’d like to make an announcement here. This was found in Linux kernel file Linux-4.5/drivers/scsi/aacraid/commctrl.c, and crafted user space data change under race condition will lead to

[CVE-2016-6136] Double-Fetch Vulnerability in Linux-4.6/kernel/auditsc.c

I found this double-fetch vulnerability when I was doing my research on double-fetch issue analysis, and I’d like to make an announcement here. This was found in Linux kernel file Linux-4.6/kernel/auditsc.c, and crafted user space data change under race condition will make control strings

[CVE-2016-5728] Double-Fetch Vulnerability in Linux-4.5/drivers/misc/mic/host/mic_virtio.c

I found this double-fetch vulnerability when I was doing my research on double-fetch issue analysis, and I’d like to make an anouncement here. This was found in Linux kernel file Linux-4.5/drivers/misc/mic/host/mic_virtio.c, and crafted user space data change under race condition will lead to

[CVE-2016-6130] Double-Fetch Vulnerability in Linux-4.5/drivers/s390/char/sclp_ctl.c

I found this double-fetch vulnerability when I was doing my research on double-fetch issue analysis, and I’d like to make an anouncement here. This was found in Linux kernel file Linux-4.5/drivers/s390/char/sclp_ctl.c, and crafted user space data change under race condition will lead to

[CVE-2016-6156] Double-Fetch Vulnerability in Linux-4.6/drivers/platform/chrome/cros_ec_dev.c

I found this double-fetch vulnerability when I was doing my research on double-fetch issue analysis, and I’d like to make an announcement here. This was found in Linux kernel file Linux-4.6/drivers/platform/chrome/cros_ec_dev.c, and crafted user space data change under race condition will

[CVE-2017-8831] Double-Fetch Vulnerability in Linux-4.10.1/drivers/media/pci/saa7164/saa7164-bus.c

Hi all, I found this double-fetch vulnerability when I was doing my research on double fetch issue analysis, and I’d like to make an announcement here. This was found in Linux kernel file Linux-4.10.1/drivers/media/pci/saa7164/saa7164-bus.c. The kernel (driver) use memcpy_fromio() to fetch

[CVE-2017-8831] Double-Fetch Vulnerability in Linux-4.10.1/drivers/media/pci/saa7164/saa7164-bus.c

Hi all, I found this double-fetch vulnerability when I was doing my research on double fetch issue analysis, and I’d like to make an announcement here. This was found in Linux kernel file Linux-4.10.1/drivers/media/pci/saa7164/saa7164-bus.c. The kernel (driver) use memcpy_fromio() to fetch

[CVE-2017-8813] Double-Fetch Vulnerability in Linux-4.10.1/drivers/media/pci/saa7164/saa7164-bus.c

Hi all, I found this double-fetch vulnerability when I was doing my research on double fetch issue analysis, and I’d like to make an announcement here. This was found in Linux kernel file Linux-4.10.1/drivers/media/pci/saa7164/saa7164-bus.c. The kernel (driver) use memcpy_fromio() to fetch