Kent Overstreet

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** The issue is related to a rare race condition in the ` genradix ptr alloc()` function in `lib/generic-radix-tree.c`. This condition can lead to a preallocated node being used later, potentially causing a pointer to an old root to remain instead of being zeroed. The vulnerability may allow an attacker to cause a denial of service. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** The issue is related to a null pointer dereference in the `aio complete()` function. Specifically, `list del init careful()` needs to be the last access to the wait queue entry, as it effectively unlocks access. Previously, `finish wait()` would see the empty list head and skip taking the lock, and then return, but the completion path would still attempt to do the wakeup after the `task struct` pointer had been overwritten. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** The issue is related to integer overflows in the radix tree code, specifically in the `peek()` function in `lib/generic-radix-tree.c`. This occurred when new inode numbers were spread throughout most of the 64-bit inode space, triggering corner case bugs. The problem is associated with the handling of inode numbers in the Linux kernel. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.