CVE-2025-68238 mtd: rawnand: cadence: fix DMA device NULL pointer dereference

In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: cadence: fix DMA device NULL pointer dereference The DMA device pointer dmadev was being dereferenced before ensuring that cdnsctrl-dmac is properly initialized. Move the assignment of dmadev after successfully...

CVE-2025-68238

CVE-2025-68238 affects the Linux kernel mtd: rawnand: cadence driver. Root cause: the DMA device pointer (dma_dev) was dereferenced before cdns_ctrl->dmac was initialized, risking NULL dereference. Fix: move the assignment of dma_dev to after successfully acquiring the DMA channel, ensuring th...

CVE-2025-40356 spi: rockchip-sfc: Fix DMA-API usage

In the Linux kernel, the following vulnerability has been resolved: spi: rockchip-sfc: Fix DMA-API usage Use DMA-API dmamapsingle call for getting the DMA address of the transfer buffer instead of hacking with virttophys. This fixes the following DMA-API debug warning: ------------ cut here...

CVE-2025-40356

In the Linux kernel, CVE-2025-40356 relates to the rockchip-sfc SPI driver. The vulnerability was addressed by replacing a DMA-API usage pattern that retrieved DMA addresses via virt_to_phys() with a proper dma_map_single() call, preventing the driver from syncing DMA memory it did not allocate. ...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from rockchip-sfc not using the DMA-API correctly, which could result in a DMA warning...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates from an uninitialized cadence NAND controller DMA device pointer, which could result in a null pointer...

PT-2025-51651

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to a null pointer dereference within the cadence rawnand module during Direct Memory Access DMA operations. Specifically, the DMA device pointer...

PT-2025-51572

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue within the SPI subsystem, specifically in the rockchip-sfc driver. The problem stems from the incorrect usage of DMA-API, where virt to phys was used t...

UBUNTU-CVE-2022-50671

In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix "kernel NULL pointer dereference" error When rxequeueinit in the function rxeqpinitreq fails, both qp-req.task.func and qp-req.task.arg are not initialized. Because of creation of qp fails, the function rxecreateqp...

CVE-2022-50666

In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Fix QP destroy to wait for all references dropped. Delay QP destroy completion until all siw references to QP are dropped. The calling RDMA core will free QP structure after successful return from siwqpdestroy call, so...

UBUNTU-CVE-2023-53801

In the Linux kernel, the following vulnerability has been resolved: iommu/sprd: Release dma buffer to avoid memory leak When attaching to a domain, the driver would alloc a DMA buffer which is used to store address mapping table, and it need to be released when the IOMMU domain is freed...

CVE-2023-53778

In the Linux kernel, the following vulnerability has been resolved: accel/qaic: Clean up integer overflow checking in mapuserpages The encodedma function has some validation on intrans-size but it would be more clear to move those checks to findandmapuserpages. The encodedma had two checks: if...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a DMA mapping leak in the i40e that could lead to memory exhaustion...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the sprd iommu driver not freeing DMA buffers, which could lead to a memory leak...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from siw RDMA QP destruction without waiting for a reference to be released, which could lead to reuse after...

PT-2025-49693

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak exists in the hns roce alloc mr function within the RDMA/hns module of the Linux kernel. Specifically, when the hns roce mr enable function fails, the mr key is not release...

PT-2025-49710

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contained a flaw related to DMA mappings within the i40e network driver. Specifically, a memory leak occurred during the reallocation of RX receive buffers. This issue...

DEBIAN-CVE-2022-50625

In the Linux kernel, the following vulnerability has been resolved: serial: amba-pl011: avoid SBSA UART accessing DMACR register Chapter "B Generic UART" in "ARM Server Base System Architecture" 1 documentation describes a generic UART interface. Such generic UART does not support DMA. In current...

CVE-2022-50625 serial: amba-pl011: avoid SBSA UART accessing DMACR register

In the Linux kernel, the following vulnerability has been resolved: serial: amba-pl011: avoid SBSA UART accessing DMACR register Chapter "B Generic UART" in "ARM Server Base System Architecture" 1 documentation describes a generic UART interface. Such generic UART does not support DMA. In current...

EUVD-2025-200146

In GPU pdma, there is a possible information disclosure due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS10117741; Issue ID: MSV-4538...