Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates in the initialization of sysfs entries on non-ACPI platforms, which may result in a kernel warning...

The vulnerability of the ACPI component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the ACPI component in the Linux operating system’s kernel is related to memory corruption. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the ACPI component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the ACPI component in the Linux operating system’s kernel is related to improper locking of resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

SUSE CVE-2022-49145

In the Linux kernel, the following vulnerability has been resolved: ACPI: CPPC: Avoid out of bounds access when parsing CPC data If the NumEntries field in the CPC return package is less than 2, do not attempt to access the "Revision" element of that package, because it may not be present then...

CVE-2024-50141

...

kernel: Linux kernel: Denial of Service via null pointer dereference in ACPI

A flaw was found in the Linux kernel's Advanced Configuration and Power Interface ACPI component. This vulnerability occurs when a memory allocation function fails, leading to a null pointer dereference. A local attacker with low privileges could exploit this to cause the system to crash, resulti...

CVE-2024-49860

...

CVE-2024-49858

...

DEBIAN-CVE-2024-50117

In the Linux kernel, the following vulnerability has been resolved: drm/amd: Guard against bad data for ATIF ACPI method If a BIOS provides bad data in response to an ATIF method call this causes a NULL pointer dereference in the caller. ? showregs arch/x86/kernel/dumpstack.c:478 discriminator 1 ...

SUSE CVE-2024-50011

In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: soc-acpi-intel-rpl-match: add missing empty item There is no linksnum in struct sndsocacpimach , and we test !link-numadr as a condition to end the loop in hdasdwmachineselect. So an empty item in struct...

UBUNTU-CVE-2024-49860

In the Linux kernel, the following vulnerability has been resolved: ACPI: sysfs: validate return type of STR method Only buffer objects are valid return values of STR. If something else is returned descriptionshow will access invalid memory...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a return value validation issue with the STR method in the ACPI sysfs...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a failure to perform proper checks when obtaining the CPU corresponding to an ACPI ID...

kernel: ACPI: fix NULL pointer dereference

A vulnerability was found in the Linux kernel’s ACPI subsystem, where the acpidevput function could attempt to operate on a NULL pointer, leads to a system crash due to a NULL pointer dereference, causing instability when managing ACPI devices...

kernel: Linux kernel: Denial of Service via null pointer dereference in ACPI

A flaw was found in the Linux kernel's Advanced Configuration and Power Interface ACPI component. This vulnerability occurs when a memory allocation function fails, leading to a null pointer dereference. A local attacker with low privileges could exploit this to cause the system to crash, resulti...

DEBIAN-CVE-2023-52683

In the Linux kernel, the following vulnerability has been resolved: ACPI: LPIT: Avoid u32 multiplication overflow In lpitupdateresidency there is a possibility of overflow in multiplication, if tsckhz is large enough UINTMAX/1000. Change multiplication to mulu32u32. Found by Linux Verification...

Apache NiFi 跨站脚本漏洞

Apache NiFi is a data processing and distribution system from the Apache USA Foundation. The system is primarily used for data routing, transformation and system intermediary logic. Apache NiFi suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and...

kernel: Linux kernel: Information disclosure and denial of service via use-after-free in ACPI subsystem

A flaw was found in the Linux kernel. This use-after-free vulnerability exists within the Advanced Configuration and Power Interface ACPI subsystem. A local attacker with low privileges could exploit this flaw, leading to memory corruption. This could result in information disclosure or a denial ...

kernel: wifi: mt76: mt7921: fix error code of return in mt7921_acpi_read

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921: fix error code of return in mt7921acpiread Kernel NULL pointer dereference when ACPI SAR table isn't implemented well. Fix the error code of return to mark the ACPI SAR table as invalid. 5.077128 mt7921e...

PT-2025-40190

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw in the ACPI processor component related to the devm kzalloc function. A failure in devm kzalloc can lead to a NULL pointer dereference because clk...