CVE-2025-68180 drm/amd/display: Fix NULL deref in debugfs odm_combine_segments

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix NULL deref in debugfs odmcombinesegments When a connector is connected but inactive e.g., disabled by desktop environments, pipectx-streamres.tg will be destroyed. Then, reading odmcombinesegments causes kern...

CVE-2025-68167 gpiolib: fix invalid pointer access in debugfs

In the Linux kernel, the following vulnerability has been resolved: gpiolib: fix invalid pointer access in debugfs If the memory allocation in gpiolibseqstart fails, the s-private field remains uninitialized and is later dereferenced without checking in gpiolibseqstop. Initialize s-private to NUL...

CVE-2025-68167

CVE-2025-68167 affects the Linux kernel gpiolib in debugfs. The root cause is a failure path in gpiolib_seq_start() where s->private is left uninitialized if kzalloc() fails, and is later dereferenced in gpiolib_seq_stop() without a null check. The fix initializes s->private to NULL before ...

CVE-2025-68167 gpiolib: fix invalid pointer access in debugfs

In the Linux kernel, the following vulnerability has been resolved: gpiolib: fix invalid pointer access in debugfs If the memory allocation in gpiolibseqstart fails, the s-private field remains uninitialized and is later dereferenced without checking in gpiolibseqstop. Initialize s-private to NUL...

Linux Distros Unpatched Vulnerability : CVE-2025-68167

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - gpiolib: fix invalid pointer access in debugfs If the memory allocation in gpiolibseqstart fails, the s-private field remains uninitialized and is later...

PT-2025-51580

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's gpiolib component related to invalid pointer access within the debugfs interface. Specifically, if memory allocation within the gpiolib seq start...

CentOS 9 : kernel-5.14.0-648.el9

The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the kernel-5.14.0-648.el9 build changelog. - In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Fix buffer overflow in debugfs If the user tries to...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-50268)

usb: typec: fix potential out of bounds in ucsiccgupdatesetnewcamcmd. The cmd variable can be controlled by the user via debugfs. That means newcam can be as high as 255 while the size of the uc-updated array is UCSIMAXALTMODES 30. The call tree is: ucsicmd // val comes from simpleattrwritexsigne...

SUSE CVE-2025-40155

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: debugfs: Fix legacy mode page table dump logic In legacy mode, SSPTPTR is ignored if TT is not 00b or 01b. SSPTPTR maybe uninitialized or zero in that case and may cause oops like: Oops: general protection fault,...

EUVD-2025-124928

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: debugfs: Fix legacy mode page table dump logic In legacy mode, SSPTPTR is ignored if TT is not 00b or 01b. SSPTPTR maybe uninitialized or zero in that case and may cause oops like: Oops: general protection fault,...

CVE-2025-40155

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: debugfs: Fix legacy mode page table dump logic In legacy mode, SSPTPTR is ignored if TT is not 00b or 01b. SSPTPTR maybe uninitialized or zero in that case and may cause oops like: Oops: general protection fault,...

UBUNTU-CVE-2025-40155

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: debugfs: Fix legacy mode page table dump logic In legacy mode, SSPTPTR is ignored if TT is not 00b or 01b. SSPTPTR maybe uninitialized or zero in that case and may cause oops like: Oops: general protection fault,...

CVE-2025-40155 iommu/vt-d: debugfs: Fix legacy mode page table dump logic

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: debugfs: Fix legacy mode page table dump logic In legacy mode, SSPTPTR is ignored if TT is not 00b or 01b. SSPTPTR maybe uninitialized or zero in that case and may cause oops like: Oops: general protection fault,...

CVE-2025-40155

The CVE-2025-40155 issue is in the Linux kernel iommu/vt-d: debugfs legacy mode page table dump logic. In legacy mode, SSPTPTR may be ignored when TT is not 00b or 01b, leaving SSPTPTR uninitialized/zero and risking an OOPs like a general protection fault. The publicly provided fixes add a guard ...

CVE-2025-40155

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: debugfs: Fix legacy mode page table dump logic In legacy mode, SSPTPTR is ignored if TT is not 00b or 01b. SSPTPTR maybe uninitialized or zero in that case and may cause oops like: Oops: general protection fault,...

CVE-2025-40155 iommu/vt-d: debugfs: Fix legacy mode page table dump logic

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: debugfs: Fix legacy mode page table dump logic In legacy mode, SSPTPTR is ignored if TT is not 00b or 01b. SSPTPTR maybe uninitialized or zero in that case and may cause oops like: Oops: general protection fault,...

Linux Distros Unpatched Vulnerability : CVE-2025-40155

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - iommu/vt-d: debugfs: Fix legacy mode page table dump logic In legacy mode, SSPTPTR is ignored if TT is not 00b or 01b. SSPTPTR maybe uninitialized or zero in th...

kernel: wifi: mac80211: prohibit deactivating all links

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: prohibit deactivating all links In the internal API this calls this is a WARNON, but that should remain since internally we want to know about bugs that may cause this. Prevent deactivating all links in the debugf...

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-990148)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990148 advisory. In the Linux kernel, the following vulnerability has been resolved: regmap: set debugfsname to NULL after it is freed There is a upstream commit...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989961)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989961 advisory. In the Linux kernel, the following vulnerability has been resolved: gpio: mockup: fix NULL pointer dereference when removing debugfs We now remove the device's debug...