[1day-1line] CVE-2026-21241: Use-After-Free LPE Vulnerability Caused by I/O Mini-Completion Packet Lifetime Management Error in Windows afd.sys Hello, this is Libera. Today's 1day-1line is about a Use-After-Free Privilege Escalation (LPE) vulnerability occurring in afd.sys, a WinSock kernel driver for Windows. This vulnerability occurs during the socket state notification process; while AfdNotifyPostEvents briefly releases the spinlock, socket cleanup (AfdNotifyDestroyContext) releases mini-completion packets without cancellation, causing the remaining released packets in the queue to be dequeued. Please refer to the blog post for more details! hackyboiz.github.io/2026/06/…

Our course "Windows Legacy & PnP Driver Programming" Get started into writing windows drivers and dive into kernel development. Develop production grade software driver that handles pnp and power management. Course Contents: 🛠️ Windows VM setup and Hello World Driver 🛠️ Exploring DRIVER_OBJECT 🛠️ Creating Devices & Symbolic Links 🛠️ Dispatch Routines 🛠️ IO Request Packet 🛠️ METHOD IO 🛠️ Upper Filter Drivers 🛠️ Creating IRPs 🛠️ Interrupts and IRQL 🛠️ Synchronization Primitives like Spinlock, mutex, semaphore, events etc 🛠️ StartIO 🛠️ Deferred Procedure Call (DPC) 🛠️ Workitem and IRP Queue Draining 🛠️ Cancel Safe Queues 🛠️ Registry Operations 🛠️ Plug n Play Theory 🛠️ AddDevice() 🛠️ Handling PnP IRPs like IRP_MN_START_DEVICE, IRP_MN_STOP_DEVICE, IRP_MN_REMOVE_DEVICE etc. 🛠️ Usermode Asynchronous IOCTL 🛠️ Installing PnP driver with devcon 🛠️ Auto updating PnP driver 🛠️ PnPutil 🛠️ CSQ in PnP driver 🛠️ RemoveLocks 🛠️ Raw & Translated Resources 🛠️ Filter Resource requirements 🛠️ Device Usage Notifications 🛠️ DO_POWER_PAGABLE 🛠️ Power Basics 🛠️ Handling IRP_MN_QUERY_CAPABILITIES 🛠️ Handling IRP_MN_QUERY_POWER, IRP_MN_SET_POWER Price: $99 only Bonus contents: Full code snippets Exclusive access to high quality onenote diagrams in pdf format. Get it at $99 only: udemy.com/course/windows-leg… #infosec #cybersecurity #windowsinternals #driverprogramming #hackthebox #tryhackme

Học cách các kiến trúc CPU đa nhân tối ưu luồng dữ liệu thông qua cơ chế khóa vòng lập (Spinlock) để thiết kế hàng đợi; giữ cho các tiến trình quipnetwork chạy ngầm mượt mà và không chiếm dụng tài nguyên tính toán lõi.

CPU at 90%. Wait stats look clean. Queries are fast. Nothing obvious in the execution plans. You might be looking at spinlock contention. Spinlocks are in-memory primitives protecting SQL Server's internal structures. Unlike regular locks, they don't yield to the OS — a thread burns CPU in a tight loop waiting to acquire one. Query them directly: SELECT name, collisions, spins, spins_per_collision, backoffs FROM sys.dm_os_spinlock_stats WHERE collisions > 0 ORDER BY spins DESC; High spins_per_collision: threads waiting a long time. High backoffs: spinlock had to back off and retry. Key types to know: - LOGCACHE_ACCESS: log cache, high-volume inserts - LOCK_HASH: lock manager hash bucket contention - SOS_SCHEDULER: scheduler queue contention - BUFFERPOOL: buffer pool access Contention usually means too many cores hammering the same structure. Look at NUMA awareness, workload distribution, or newer SQL Server versions with improved spinlock partitioning. #SQLServer #Spinlocks #Performance #Internals

CMU Intro to Database Systemsの第10回を見た。 ラッチの概要とその実装手段 (SpinlockやMutex等) を説明した上で、Hash TableやB Treeといったデータ構造をスレッドセーフにする方法を解説している。 特にツリー構造のスレッドセーフ化に関しては、初めて学べて良かった。 youtu.be/YgOvfXl6pss

CVE-2026-47334 Ubuntu Linux 6.8, 6.17 and 7.0 contain AppArmor SAUCE patches which incorrectly sleep while holding a spinlock in notification handling code. The bug can be triggered… cve.org/CVERecord?id=CVE-202…

Timer割り込みは両方のコアに入って、各コアが自分へのアラーム設定の有無をチェックし、あったらアラームハンドラの呼び出しを行う。 この処理中のspinlockのせいで、Core0より先にCore1にlockを取られると処理が終わるまで待たされてしまい、そこでキャッシュを外すと応答が遅れてしまうと。

Ours is the only course in the cybersecurity market that teaches windows software driver development with PnP and power management. "Windows Legacy & PnP Driver Programming" is now on UDEMY. Get started into writing windows drivers and dive into kernel development. Develop production grade software driver that handles pnp and power management. Course Contents: 🛠️ Windows VM setup and Hello World Driver 🛠️ Exploring DRIVER_OBJECT 🛠️ Creating Devices & Symbolic Links 🛠️ Dispatch Routines 🛠️ IO Request Packet 🛠️ METHOD IO 🛠️ Upper Filter Drivers 🛠️ Creating IRPs 🛠️ Interrupts and IRQL 🛠️ Synchronization Primitives like Spinlock, mutex, semaphore, events etc 🛠️ StartIO 🛠️ Deferred Procedure Call (DPC) 🛠️ Workitem and IRP Queue Draining 🛠️ Cancel Safe Queues 🛠️ Registry Operations 🛠️ Plug n Play Theory 🛠️ AddDevice() 🛠️ Handling PnP IRPs like IRP_MN_START_DEVICE, IRP_MN_STOP_DEVICE, IRP_MN_REMOVE_DEVICE etc. 🛠️ Usermode Asynchronous IOCTL 🛠️ Installing PnP driver with devcon 🛠️ Auto updating PnP driver 🛠️ PnPutil 🛠️ CSQ in PnP driver 🛠️ RemoveLocks 🛠️ Raw & Translated Resources 🛠️ Filter Resource requirements 🛠️ Device Usage Notifications 🛠️ DO_POWER_PAGABLE 🛠️ Power Basics 🛠️ Handling IRP_MN_QUERY_CAPABILITIES 🛠️ Handling IRP_MN_QUERY_POWER, IRP_MN_SET_POWER Price: $99 only Bonus contents: Full code snippets Exclusive access to high quality onenote diagrams in pdf format. Get it at $99 only: udemy.com/course/windows-leg… #infosec #cybersecurity #windowsinternals #driverprogramming #hackthebox #tryhackme

Our course "Windows Legacy & PnP Driver Programming" is now on UDEMY. Get started into writing windows drivers and dive into kernel development Course Contents: 🛠️ Windows VM setup and Hello World Driver 🛠️ Exploring DRIVER_OBJECT 🛠️ Creating Devices & Symbolic Links 🛠️ Dispatch Routines 🛠️ IO Request Packet 🛠️ METHOD IO 🛠️ Upper Filter Drivers 🛠️ Creating IRPs 🛠️ Interrupts and IRQL 🛠️ Synchronization Primitives like Spinlock, mutex, semaphore, events etc 🛠️ StartIO 🛠️ Deferred Procedure Call (DPC) 🛠️ Workitem and IRP Queue Draining 🛠️ Cancel Safe Queues 🛠️ Registry Operations 🛠️ Plug n Play Theory 🛠️ AddDevice() 🛠️ Handling PnP IRPs like IRP_MN_START_DEVICE, IRP_MN_STOP_DEVICE, IRP_MN_REMOVE_DEVICE etc. 🛠️ Usermode Asynchronous IOCTL 🛠️ Installing PnP driver with devcon 🛠️ Auto updating PnP driver 🛠️ PnPutil 🛠️ CSQ in PnP driver 🛠️ RemoveLocks 🛠️ Raw & Translated Resources 🛠️ Filter Resource requirements 🛠️ Device Usage Notifications 🛠️ DO_POWER_PAGABLE Price: $99 only Bonus contents: Full code snippets Exclusive access to high quality onenote diagrams in pdf format. Get it at $99 only: udemy.com/course/windows-leg… #infosec #cybersecurity #windowsinternals #driverprogramming #hackthebox #tryhackme

Cleetus versus Spinlock is simple Cleetus earned his way leveraging his fame Spinlock leveraged her skin color

NEW COURSE LAUNCH! Windows Legacy & PnP Driver Programming Course Contents: 🛠️ Windows VM setup and Hello World Driver 🛠️ Exploring DRIVER_OBJECT 🛠️ Creating Devices & Symbolic Links 🛠️ Dispatch Routines 🛠️ IO Request Packet 🛠️ METHOD IO 🛠️ Upper Filter Drivers 🛠️ Creating IRPs 🛠️ Interrupts and IRQL 🛠️ Synchronization Primitives like Spinlock, mutex, semaphore, events etc 🛠️ StartIO 🛠️ Deferred Procedure Call (DPC) 🛠️ Workitem and IRP Queue Draining 🛠️ Cancel Safe Queues 🛠️ Registry Operations 🛠️ Plug n Play Theory 🛠️ AddDevice() 🛠️ Handling PnP IRPs like IRP_MN_START_DEVICE, IRP_MN_STOP_DEVICE, IRP_MN_REMOVE_DEVICE etc. 🛠️ Usermode Asynchronous IOCTL 🛠️ Installing PnP driver with devcon 🛠️ Auto updating PnP driver 🛠️ PnPutil 🛠️ CSQ in PnP driver 🛠️ RemoveLocks 🛠️ Raw & Translated Resources 🛠️ Filter Resource requirements 🛠️ Device Usage Notifications 🛠️ DO_POWER_PAGABLE Price: $99 only Bonus contents: Full code snippets Exclusive access to high quality onenote diagrams in pdf format. Get it at $99 only: courses.pointersec.com/p/win… #infosec #cybersecurity #windowsinternals #driverprogramming #hackthebox #tryhackme

Last week in Linux: CVE-2026-43485: nouveau/gsp: drop WARN_ON in ACPI probes 2026-05-13 15:08 UTC CVE-2026-43484: mmc: core: Avoid bitfield RMW for claim/retune flags 2026-05-13 15:08 UTC CVE-2026-43483: KVM: SVM: Set/clear CR8 write interception when AVIC is (de)activated 2026-05-13 15:08 UTC CVE-2026-43482: sched_ext: Disable preemption between scx_claim_exit() and kicking helper work 2026-05-13 15:08 UTC CVE-2026-43481: net-shapers: don't free reply skb after genlmsg_reply() 2026-05-13 15:08 UTC CVE-2026-43480: ASoC: amd: acp3x-rt5682-max9836: Add missing error check for clock acquisition 2026-05-13 15:08 UTC CVE-2026-43479: net: usb: lan78xx: fix WARN in __netif_napi_del_locked on disconnect 2026-05-13 15:08 UTC CVE-2026-43478: ASoC: codecs: rt1011: Use component to get the dapm context in spk_mode_put 2026-05-13 15:08 UTC CVE-2026-43489: liveupdate: luo_file: remember retrieve() status 2026-05-13 15:08 UTC CVE-2026-43488: usb: xhci: Prevent interrupt storm on host controller error (HCE) 2026-05-13 15:08 UTC CVE-2026-43487: ata: libata-core: Disable LPM on ST1000DM010-2EP102 2026-05-13 15:08 UTC CVE-2026-43486: arm64: contpte: fix set_access_flags() no-op check for SMMU/ATS faults 2026-05-13 15:08 UTC CVE-2026-43476: iio: chemical: sps30_i2c: fix buffer size in sps30_i2c_read_meas() 2026-05-13 15:08 UTC CVE-2026-43477: drm/i915/vrr: Configure VRR timings after enabling TRANS_DDI_FUNC_CTL 2026-05-13 15:08 UTC CVE-2026-43500: rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present 2026-05-11 6:26 UTC CVE-2026-43452: netfilter: x_tables: guard option walkers against 1-byte tail reads 2026-05-08 14:23 UTC CVE-2026-43461: spi: amlogic: spifc-a4: Fix DMA mapping error handling 2026-05-08 14:23 UTC CVE-2026-43460: spi: rockchip-sfc: Fix double-free in remove() callback 2026-05-08 14:23 UTC CVE-2026-43459: ASoC: soc-core: flush delayed work before removing DAIs and widgets 2026-05-08 14:23 UTC CVE-2026-43458: serial: caif: hold tty->link reference in ldisc_open and ser_release 2026-05-08 14:23 UTC CVE-2026-43457: mctp: i2c: fix skb memory leak in receive path 2026-05-08 14:23 UTC CVE-2026-43456: bonding: fix type confusion in bond_setup_by_slave() 2026-05-08 14:23 UTC CVE-2026-43455: mctp: route: hold key->lock in mctp_flow_prepare_output() 2026-05-08 14:23 UTC CVE-2026-43475: scsi: storvsc: Fix scheduling while atomic on PREEMPT_RT 2026-05-08 14:23 UTC CVE-2026-43474: fs: init flags_valid before calling vfs_fileattr_get 2026-05-08 14:23 UTC CVE-2026-43473: scsi: mpi3mr: Add NULL checks when resetting request and reply queues 2026-05-08 14:23 UTC CVE-2026-43472: unshare: fix unshare_fs() handling 2026-05-08 14:23 UTC CVE-2026-43454: netfilter: nf_tables: Fix for duplicate device in netdev hooks 2026-05-08 14:23 UTC CVE-2026-43471: scsi: ufs: core: Fix possible NULL pointer dereference in ufshcd_add_command_trace() 2026-05-08 14:23 UTC CVE-2026-43470: nfs: return EISDIR on nfs3_proc_create if d_alias is a dir 2026-05-08 14:23 UTC CVE-2026-43469: xprtrdma: Decrement re_receiving on the early exit paths 2026-05-08 14:23 UTC CVE-2026-43468: net/mlx5: Fix deadlock between devlink lock and esw->wq 2026-05-08 14:23 UTC CVE-2026-43467: net/mlx5: Fix crash when moving to switchdev mode 2026-05-08 14:23 UTC CVE-2026-43466: net/mlx5e: Fix DMA FIFO desync on error CQE SQ recovery 2026-05-08 14:23 UTC CVE-2026-43465: net/mlx5e: RX, Fix XDP multi-buf frag counting for striding RQ 2026-05-08 14:23 UTC CVE-2026-43464: net/mlx5e: RX, Fix XDP multi-buf frag counting for legacy RQ 2026-05-08 14:23 UTC CVE-2026-43463: rxrpc, afs: Fix missing error pointer check after rxrpc_kernel_lookup_peer() 2026-05-08 14:23 UTC CVE-2026-43462: net: spacemit: Fix error handling in emac_tx_mem_map() 2026-05-08 14:23 UTC CVE-2026-43453: netfilter: nft_set_pipapo: fix stack out-of-bounds read in pipapo_drop() 2026-05-08 14:23 UTC CVE-2026-43417: sched/mmcid: Handle vfork()/CLONE_VM correctly 2026-05-08 14:22 UTC CVE-2026-43426: usb: renesas_usbhs: fix use-after-free in ISR during device removal 2026-05-08 14:22 UTC CVE-2026-43425: usb: image: mdc800: kill download URB on timeout 2026-05-08 14:22 UTC CVE-2026-43424: usb: gadget: f_tcm: Fix NULL pointer dereferences in nexus handling 2026-05-08 14:22 UTC CVE-2026-43423: usb: gadget: f_ncm: Fix atomic context locking issue 2026-05-08 14:22 UTC CVE-2026-43422: usb: legacy: ncm: Fix NPE in gncm_bind 2026-05-08 14:22 UTC CVE-2026-43421: usb: gadget: f_ncm: Fix net_device lifecycle with device_move 2026-05-08 14:22 UTC CVE-2026-43451: netfilter: nfnetlink_queue: fix entry leak in bridge verdict error path 2026-05-08 14:23 UTC CVE-2026-43450: netfilter: nfnetlink_cthelper: fix OOB read in nfnl_cthelper_dump_table() 2026-05-08 14:22 UTC CVE-2026-43449: nvme-pci: Fix slab-out-of-bounds in nvme_dbbuf_set 2026-05-08 14:22 UTC CVE-2026-43448: nvme-pci: Fix race bug in nvme_poll_irqdisable() 2026-05-08 14:22 UTC CVE-2026-43447: iavf: fix PTP use-after-free during reset 2026-05-08 14:22 UTC CVE-2026-43420: ceph: fix i_nlink underrun during async unlink 2026-05-08 14:22 UTC CVE-2026-43446: accel/amdxdna: Fix runtime suspend deadlock when there is pending job 2026-05-08 14:22 UTC CVE-2026-43445: e1000/e1000e: Fix leak in DMA error cleanup 2026-05-08 14:22 UTC CVE-2026-43444: drm/amdkfd: Unreserve bo if queue update failed 2026-05-08 14:22 UTC CVE-2026-43443: ASoC: amd: acp-mach-common: Add missing error check for clock acquisition 2026-05-08 14:22 UTC CVE-2026-43442: io_uring: fix physical SQE bounds check for SQE_MIXED 128-byte ops 2026-05-08 14:22 UTC CVE-2026-43441: net: bonding: Fix nd_tbl NULL dereference when IPv6 is disabled 2026-05-08 14:22 UTC CVE-2026-43440: net/mana: Null service_wq on setup error to prevent double destroy 2026-05-08 14:22 UTC CVE-2026-43439: cgroup: fix race between task migration and iteration 2026-05-08 14:22 UTC CVE-2026-43438: sched_ext: Remove redundant css_put() in scx_cgroup_init() 2026-05-08 14:22 UTC CVE-2026-43437: ALSA: pcm: fix use-after-free on linked stream runtime in snd_pcm_drain() 2026-05-08 14:22 UTC CVE-2026-43419: ceph: fix memory leaks in ceph_mdsc_build_path() 2026-05-08 14:22 UTC CVE-2026-43436: ALSA: usb-audio: Check endpoint numbers at parsing Scarlett2 mixer interfaces 2026-05-08 14:22 UTC CVE-2026-43435: rust_binder: fix oneway spam detection 2026-05-08 14:22 UTC CVE-2026-43434: rust_binder: check ownership before using vma 2026-05-08 14:22 UTC CVE-2026-43433: rust_binder: avoid reading the written value in offsets array 2026-05-08 14:22 UTC CVE-2026-43432: usb: xhci: Fix memory leak in xhci_disable_slot() 2026-05-08 14:22 UTC CVE-2026-43431: xhci: Fix NULL pointer dereference when reading portli debugfs files 2026-05-08 14:22 UTC CVE-2026-43430: usb: yurex: fix race in probe 2026-05-08 14:22 UTC CVE-2026-43429: USB: usbtmc: Use usb_bulk_msg_killable() with user-specified timeouts 2026-05-08 14:22 UTC CVE-2026-43428: USB: core: Limit the length of unkillable synchronous timeouts 2026-05-08 14:22 UTC CVE-2026-43427: usb: class: cdc-wdm: fix reordering issue in read code path 2026-05-08 14:22 UTC CVE-2026-43418: sched/mmcid: Prevent CID stalls due to concurrent forks 2026-05-08 14:22 UTC CVE-2026-43383: net/tcp-md5: Fix MAC comparison to be constant-time 2026-05-08 14:21 UTC CVE-2026-43392: sched_ext: Fix starvation of scx_enable() under fair-class saturation 2026-05-08 14:22 UTC CVE-2026-43391: nsfs: tighten permission checks for handle opening 2026-05-08 14:22 UTC CVE-2026-43390: nstree: tighten permission checks for listing 2026-05-08 14:21 UTC CVE-2026-43389: mm: memfd_luo: always dirty all folios 2026-05-08 14:21 UTC CVE-2026-43388: mm/damon/core: clear walk_control on inactive context in damos_walk() 2026-05-08 14:21 UTC CVE-2026-43387: staging: rtl8723bs: properly validate the data in rtw_get_ie_ex() 2026-05-08 14:21 UTC CVE-2026-43416: powerpc, perf: Check that current->mm is alive before getting user callchain 2026-05-08 14:22 UTC CVE-2026-43415: scsi: ufs: core: Fix SError in ufshcd_rtc_work() during UFS suspend 2026-05-08 14:22 UTC CVE-2026-43414: scsi: qla2xxx: Completely fix fcport double free 2026-05-08 14:22 UTC CVE-2026-43413: scsi: hisi_sas: Fix NULL pointer exception during user_scan() 2026-05-08 14:22 UTC CVE-2026-43386: staging: rtl8723bs: fix potential out-of-bounds read in rtw_restruct_wmm_ie 2026-05-08 14:21 UTC CVE-2026-43412: ASoC: qcom: qdsp6: Fix q6apm remove ordering during ADSP stop and start 2026-05-08 14:22 UTC CVE-2026-43411: tipc: fix divide-by-zero in tipc_sk_filter_connect() 2026-05-08 14:22 UTC CVE-2026-43410: firmware: stratix10-rsu: Fix NULL pointer dereference when RSU is disabled 2026-05-08 14:22 UTC CVE-2026-43409: kprobes: avoid crash when rmmod/insmod after ftrace killed 2026-05-08 14:22 UTC CVE-2026-43408: ceph: add a bunch of missing ceph_path_info initializers 2026-05-08 14:22 UTC CVE-2026-43407: libceph: Fix potential out-of-bounds access in ceph_handle_auth_reply() 2026-05-08 14:22 UTC CVE-2026-43406: libceph: prevent potential out-of-bounds reads in process_message_header() 2026-05-08 14:22 UTC CVE-2026-43405: libceph: Use u32 for non-negative values in ceph_monmap_decode() 2026-05-08 14:22 UTC CVE-2026-43404: mm: Fix a hmm_range_fault() livelock / starvation problem 2026-05-08 14:22 UTC CVE-2026-43403: nsfs: tighten permission checks for ns iteration ioctls 2026-05-08 14:22 UTC CVE-2026-43385: net: Fix rcu_tasks stall in threaded busypoll 2026-05-08 14:21 UTC CVE-2026-43402: kthread: consolidate kthread exit paths to prevent use-after-free 2026-05-08 14:22 UTC CVE-2026-43401: cpufreq: intel_pstate: Fix NULL pointer dereference in update_cpu_qos_request() 2026-05-08 14:22 UTC CVE-2026-43400: drm/amdgpu: add upper bound check on user inputs in signal ioctl 2026-05-08 14:22 UTC CVE-2026-43399: drm/amdgpu/userq: Fix reference leak in amdgpu_userq_wait_ioctl 2026-05-08 14:22 UTC CVE-2026-43398: drm/amdgpu: add upper bound check on user inputs in wait ioctl 2026-05-08 14:22 UTC CVE-2026-43397: drm/bridge: samsung-dsim: Fix memory leak in error path 2026-05-08 14:22 UTC CVE-2026-43396: drm/xe/sync: Fix user fence leak on alloc failure 2026-05-08 14:22 UTC CVE-2026-43395: drm/xe/sync: Cleanup partially initialized sync on parse failure 2026-05-08 14:22 UTC CVE-2026-43394: nfsd: Fix cred ref leak in nfsd_nl_listener_set_doit() 2026-05-08 14:22 UTC CVE-2026-43393: btrfs: fix chunk map leak in btrfs_map_block() after btrfs_chunk_map_num_copies() 2026-05-08 14:22 UTC CVE-2026-43384: net/tcp-ao: Fix MAC comparison to be constant-time 2026-05-08 14:21 UTC CVE-2026-43360: btrfs: fix transaction abort on file creation due to name hash collision 2026-05-08 14:21 UTC CVE-2026-43359: btrfs: fix transaction abort on set received ioctl due to item overflow 2026-05-08 14:21 UTC CVE-2026-43358: btrfs: add missing RCU unlock in error path in try_release_subpage_extent_buffer() 2026-05-08 14:21 UTC CVE-2026-43357: iio: gyro: mpu3050-core: fix pm_runtime error handling 2026-05-08 14:21 UTC CVE-2026-43356: iio: imu: adis: Fix NULL pointer dereference in adis_init 2026-05-08 14:21 UTC CVE-2026-43355: iio: light: bh1780: fix PM runtime leak on error path 2026-05-08 14:21 UTC CVE-2026-43382: batman-adv: Avoid double-rtnl_lock ELP metric worker 2026-05-08 14:21 UTC CVE-2026-43381: nouveau/dpcd: return EBUSY for aux xfer if the device is asleep 2026-05-08 14:21 UTC CVE-2026-43354: iio: proximity: hx9023s: Protect against division by zero in set_samp_freq 2026-05-08 14:21 UTC CVE-2026-43380: hwmon: (pmbus/q54sj108a2) fix stack overflow in debugfs read 2026-05-08 14:21 UTC CVE-2026-43379: ksmbd: fix use-after-free in smb_lazy_parent_lease_break_close() 2026-05-08 14:21 UTC CVE-2026-43378: smb: server: fix use-after-free in smb2_open() 2026-05-08 14:21 UTC CVE-2026-43377: ksmbd: Don't log keys in SMB3 signing and encryption key generation 2026-05-08 14:21 UTC CVE-2026-43376: ksmbd: fix use-after-free by using call_rcu() for oplock_info 2026-05-08 14:21 UTC CVE-2026-43375: net: mctp: fix device leak on probe failure 2026-05-08 14:21 UTC CVE-2026-43374: net: nexthop: fix percpu use-after-free in remove_nh_grp_entry 2026-05-08 14:21 UTC CVE-2026-43373: net: ncsi: fix skb leak in error paths 2026-05-08 14:21 UTC CVE-2026-43372: net: dsa: microchip: Fix error path in PTP IRQ setup 2026-05-08 14:21 UTC CVE-2026-43371: net: macb: Shuffle the tx ring before enabling tx 2026-05-08 14:21 UTC CVE-2026-43353: i3c: mipi-i3c-hci: Fix race in DMA ring dequeue 2026-05-08 14:21 UTC CVE-2026-43370: drm/amdgpu: Fix use-after-free race in VM acquire 2026-05-08 14:21 UTC CVE-2026-43369: drm/amd: Fix NULL pointer dereference in device cleanup 2026-05-08 14:21 UTC CVE-2026-43368: drm/i915: Fix potential overflow of shmem scatterlist length 2026-05-08 14:21 UTC CVE-2026-43367: drm/amd: Fix a few more NULL pointer dereference in device cleanup 2026-05-08 14:21 UTC CVE-2026-43366: io_uring/kbuf: check if target buffer list is still legacy on recycle 2026-05-08 14:21 UTC CVE-2026-43365: xfs: fix undersized l_iclog_roundoff values 2026-05-08 14:21 UTC CVE-2026-43364: ublk: fix NULL pointer dereference in ublk_ctrl_set_size() 2026-05-08 14:21 UTC CVE-2026-43363: x86/apic: Disable x2apic on resume if the kernel expects so 2026-05-08 14:21 UTC CVE-2026-43362: smb: client: fix in-place encryption corruption in SMB2_write() 2026-05-08 14:21 UTC CVE-2026-43361: btrfs: fix transaction abort when snapshotting received subvolumes 2026-05-08 14:21 UTC CVE-2026-43351: KVM: arm64: Eagerly init vgic dist/redist on vgic creation 2026-05-08 14:21 UTC CVE-2026-43352: i3c: mipi-i3c-hci: Correct RING_CTRL_ABORT handling in DMA dequeue 2026-05-08 14:21 UTC CVE-2026-43350: smb: client: require a full NFS mode SID before reading mode bits 2026-05-08 13:41 UTC CVE-2026-43348: mshv_vtl: Fix vmemmap_shift exceeding MAX_FOLIO_ORDER 2026-05-08 13:41 UTC CVE-2026-43349: f2fs: fix to avoid uninit-value access in f2fs_sanity_check_node_footer 2026-05-08 13:41 UTC CVE-2026-43347: arm64: dts: qcom: monaco: Reserve full Gunyah metadata region 2026-05-08 13:39 UTC CVE-2026-43346: ice: ptp: don't WARN when controlling PF is unavailable 2026-05-08 13:39 UTC CVE-2026-43344: perf/x86/intel/uncore: Fix die ID init and look up bugs 2026-05-08 13:39 UTC CVE-2026-43345: net: ipa: fix event ring index not programmed for IPA v5.0 2026-05-08 13:39 UTC CVE-2026-43343: usb: gadget: f_subset: Fix unbalanced refcnt in geth_free 2026-05-08 13:37 UTC CVE-2026-43342: usb: gadget: f_rndis: Protect RNDIS options with mutex 2026-05-08 13:37 UTC CVE-2026-43340: comedi: Reinit dev->spinlock between attachments to low-level drivers 2026-05-08 13:37 UTC CVE-2026-43341: net/ipv6: ioam6: prevent schema length wraparound in trace fill 2026-05-08 13:37 UTC CVE-2026-43321: bpf: Properly mark live registers for indirect jumps 2026-05-08 13:26 UTC CVE-2026-43320: drm/amd/display: Fix dsc eDP issue 2026-05-08 13:26 UTC CVE-2026-43319: spi: spidev: fix lock inversion between spi_lock and buf_lock 2026-05-08 13:26 UTC CVE-2026-43318: drm/amdgpu: fix sync handling in amdgpu_dma_buf_move_notify 2026-05-08 13:26 UTC CVE-2026-43317: most: core: fix leak on early registration failure 2026-05-08 13:26 UTC CVE-2025-71302: drm/panthor: fix for dma-fence safe access rules 2026-05-08 13:26 UTC CVE-2026-43316: media: solo6x10: Check for out of bounds chip_id 2026-05-08 13:26 UTC CVE-2025-71300: Revert "arm64: zynqmp: Add an OP-TEE node to the device tree" 2026-05-08 13:15 UTC CVE-2025-71301: drm/tests: shmem: Hold reservation lock around vmap/vunmap 2026-05-08 13:15 UTC CVE-2026-43314: dm: remove fake timeout to avoid leak request 2026-05-08 13:12 UTC CVE-2026-43315: KVM: nSVM: Remove a user-triggerable WARN on nested_svm_load_cr3() succeeding 2026-05-08 13:12 UTC CVE-2026-43290: media: uvcvideo: Return queued buffers on start_streaming() failure 2026-05-08 13:11 UTC CVE-2026-43289: kexec: derive purgatory entry from symbol 2026-05-08 13:11 UTC CVE-2026-43288: ext4: move ext4_percpu_param_init() before ext4_mb_init() 2026-05-08 13:11 UTC CVE-2026-43287: drm: Account property blob allocations to memcg 2026-05-08 13:11 UTC CVE-2026-43286: mm/hugetlb: restore failed global reservations to subpool 2026-05-08 13:11 UTC CVE-2026-43285: mm/slab: do not access current->mems_allowed_seq if !allow_spin 2026-05-08 13:11 UTC CVE-2026-43313: ACPI: processor: Fix NULL-pointer dereference in acpi_processor_errata_piix4() 2026-05-08 13:12 UTC CVE-2026-43312: media: i2c: ov5647: Initialize subdev before controls 2026-05-08 13:12 UTC CVE-2026-43311: soc/tegra: pmc: Fix unsafe generic_handle_irq() call 2026-05-08 13:12 UTC CVE-2025-71299: spi: cadence-quadspi: Parse DT for flashes with the rest of the DT parsing 2026-05-08 13:11 UTC CVE-2026-43310: media: verisilicon: Avoid G2 bus error while decoding H.264 and HEVC 2026-05-08 13:12 UTC CVE-2026-43309: md raid: fix hang when stopping arrays with metadata through dm-raid 2026-05-08 13:12 UTC CVE-2026-43308: btrfs: don't BUG() on unexpected delayed ref type in run_one_delayed_ref() 2026-05-08 13:12 UTC CVE-2026-43307: iio: accel: adxl380: Avoid reading more entries than present in FIFO 2026-05-08 13:12 UTC CVE-2026-43306: bpf: crypto: Use the correct destructor kfunc type 2026-05-08 13:12 UTC CVE-2026-43305: drm/amd/display: Fix mismatched unlock for DMUB HW lock in HWSS fast path 2026-05-08 13:12 UTC CVE-2026-43304: libceph: define and enforce CEPH_MAX_KEY_LEN 2026-05-08 13:12 UTC CVE-2026-43303: mm/page_alloc: clear page->private in free_pages_prepare() 2026-05-08 13:12 UTC CVE-2026-43302: drm/v3d: Set DMA segment size to avoid debug warnings 2026-05-08 13:12 UTC CVE-2026-43301: media: chips-media: wave5: Fix PM runtime usage count underflow 2026-05-08 13:12 UTC CVE-2025-71298: drm/tests: shmem: Hold reservation lock around madvise 2026-05-08 13:11 UTC CVE-2026-43300: drm/panel: Fix a possible null-pointer dereference in jdi_panel_dsi_remove() 2026-05-08 13:12 UTC CVE-2026-43299: btrfs: do not ASSERT() when the fs flips RO inside btrfs_repair_io_failure() 2026-05-08 13:12 UTC CVE-2026-43298: drm/amdgpu: Skip vcn poison irq release on VF 2026-05-08 13:12 UTC CVE-2026-43297: media: rockchip: rga: Fix possible ERR_PTR dereference in rga_buf_init() 2026-05-08 13:12 UTC CVE-2026-43296: octeontx2-af: Workaround SQM/PSE stalls by disabling sticky 2026-05-08 13:12 UTC CVE-2026-43295: rapidio: replace rio_free_net() with kfree() in rio_scan_alloc_net() 2026-05-08 13:12 UTC CVE-2026-43294: drm: renesas: rz-du: mipi_dsi: fix kernel panic when rebooting for some panels 2026-05-08 13:11 UTC CVE-2026-43293: media: chips-media: wave5: Fix kthread worker destruction in polling mode 2026-05-08 13:11 UTC CVE-2026-43292: mm/vmalloc: prevent RCU stalls in kasan_release_vmalloc_node 2026-05-08 13:11 UTC CVE-2026-43291: net: nfc: nci: Fix parameter validation for packet data 2026-05-08 13:11 UTC CVE-2025-71296: drm/tests: shmem: Hold reservation lock around purge 2026-05-08 13:11 UTC CVE-2025-71297: wifi: rtw88: 8822b: Avoid WARNING in rtw8822b_config_trx_mode() 2026-05-08 13:11 UTC CVE-2026-43284: xfrm: esp: avoid in-place decrypt on shared skb frags 2026-05-08 7:21 UTC CVE-2025-71285: net: qrtr: Drop the MHI auto_queue feature for IPCR DL channels 2026-05-06 11:32 UTC CVE-2025-71294: drm/amdgpu: fix NULL pointer issue buffer funcs 2026-05-06 11:32 UTC CVE-2025-71293: drm/amdgpu/ras: Move ras data alloc before bad page check 2026-05-06 11:32 UTC CVE-2025-71292: jfs: nlink overflow in jfs_rename 2026-05-06 11:32 UTC

hehe agent spinlock

🐧 Linux 7.0 broke PostgreSQL Great deep dive into preemption, page faults and TLBs • A tiny scheduler change spinlocks 4KB pages 120GB shared_buffers = 50% throughput drop • 55% of CPU was burning in one PostgreSQL spinlock read.thecoder.cafe/p/linux-b… #linux #postgresql

NEW COURSE LAUNCH! Windows Legacy & PnP Driver Programming Course Contents: 🛠️ Windows VM setup and Hello World Driver 🛠️ Exploring DRIVER_OBJECT 🛠️ Creating Devices & Symbolic Links 🛠️ Dispatch Routines 🛠️ IO Request Packet 🛠️ METHOD IO 🛠️ Upper Filter Drivers 🛠️ Creating IRPs 🛠️ Interrupts and IRQL 🛠️ Synchronization Primitives like Spinlock, mutex, semaphore, events etc 🛠️ StartIO 🛠️ Deferred Procedure Call (DPC) 🛠️ Workitem and IRP Queue Draining 🛠️ Cancel Safe Queues 🛠️ Registry Operations 🛠️ Plug n Play Theory 🛠️ AddDevice() 🛠️ Handling PnP IRPs like IRP_MN_START_DEVICE, IRP_MN_STOP_DEVICE, IRP_MN_REMOVE_DEVICE etc. 🛠️ Usermode Asynchronous IOCTL 🛠️ Installing PnP driver with devcon 🛠️ Auto updating PnP driver 🛠️ PnPutil 🛠️ CSQ in PnP driver 🛠️ RemoveLocks 🛠️ Raw & Translated Resources 🛠️ Filter Resource requirements 🛠️ Device Usage Notifications 🛠️ DO_POWER_PAGABLE Price: $99 only Bonus contents: Full code snippets Exclusive access to high quality onenote diagrams in pdf format. Get it at $99 only: redteamsorcery.teachable.com… #infosec #cybersecurity #windowsinternals #driverprogramming #hackthebox #tryhackme

我觉得这类问题值得一说。虽然自动化的部分没了，但是流程本身是不会没的。其次这类工具的出现本身也是在弥补模型和工具的缺陷，工程问题都是会得到解决的。所以不要觉得白做。这就像过去用intrinsic写了自己的spinlock，后面C 出了atomic类型一样，工具该升级就升级，以前的代码也完成了历史使命🤪

Top System design concepts for interview in 2026 : BASIC ____________ - Application, Process and Thread - How to Create a Thread - How to Join a Thread - How to Interrupt a Thread - Threads Synchronization - Happens-before Relationship - Locks Granularity - Volatile Variables - Atomic Variables - Wait/Notify and the Producer-Consumer Pattern - ThreadLocal Variables - Race Condition - Deadlock - Starvation - Livelock ADVANCED _____________ - Lock and ReentrantLock - Read-Write Lock - Condition Variables - Semaphore - CyclicBarrier and Parallel Sum -CountDownLatch and Merge-Sort Algorithm - Exchanger - Phaser -CopyOnWrite Collections - NonBlocking Queues - Blocking_Queues - ConcurrentMap - Map-Reduce Algorithm - Executors - Scheduled Tasks - ThreadPoolExecutor and ThreadsFactory - Fork-Join Pool - CompletableFuture - Parallel Streams - Spinlock and Busy Wait - Lockfree and Waitfree Algorithms - Throughput and Latency in Concurrent Applications - Profiling - Microbenchmarks with JMH