85 matches found
PT-2026-8157
In the Linux kernel, the following vulnerability has been resolved: drm/xe/nvm: Fix double-free on aux add failure After a successful auxiliary device init, aux dev-dev.release xe nvm release dev is responsible for the kfreenvm. When there is failure with auxiliary device add, driver will call...
Azure Linux 3.0 Security Update: kernel (CVE-2025-38190)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38190 advisory. - In the Linux kernel, the following vulnerability has been resolved: atm: Revert atmaccounttx if...
UBUNTU-CVE-2022-50820
In the Linux kernel, the following vulnerability has been resolved: perf/armdmc620: Fix hotplug callback leak in dmc620pmuinit dmc620pmuinit won't remove the callback added by cpuhpsetupstatemulti when platformdriverregister failed. Remove the callback by cpuhpremovemultistate in fail path. Simil...
UBUNTU-CVE-2022-50827
In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix memory leak in lpfccreateport Commit 5e633302ace1 "scsi: lpfc: vmid: Add support for VMID in mailbox command" introduced allocations for the VMID resources in lpfccreateport after the call to scsihostalloc. Upon...
CVE-2023-54208
CVE-2023-54208 affects the Linux kernel media driver for ov5675, where ov5675_init_controls() leaks memory on failure paths. The full stack trace and memleak scenario involve v4l2_ctrl_handler_init_class and i2c/ov5675 probing, leading to a kmemleak when running tests with a BPF mock device. The ...
CVE-2023-54208 media: ov5675: Fix memleak in ov5675_init_controls()
In the Linux kernel, the following vulnerability has been resolved: media: ov5675: Fix memleak in ov5675initcontrols There is a kmemleak when testing the media/i2c/ov5675.c with bpf mock device: AssertionError: unreferenced object 0xffff888107362160 size 16: comm "python3", pid 277, jiffies...
PT-2025-54153
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a memory leak in the ptp qoriq probe function within the ptp qoriq module. Smatch, a static analysis tool, identified that memory allocated using ioremap for th...
PT-2025-53117
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw in the configfs create dir function that can lead to a memory leak. The issue arises from an incorrect reference count within the configfs make dirent...
CVE-2022-50632
In the Linux kernel, the following vulnerability has been resolved: drivers: perf: marvellcn10k: Fix hotplug callback leak in tadpmuinit tadpmuinit won't remove the callback added by cpuhpsetupstatemulti when platformdriverregister failed. Remove the callback by cpuhpremovemultistate in fail path...
CVE-2022-50661 seccomp: Move copy_seccomp() to no failure path.
In the Linux kernel, the following vulnerability has been resolved: seccomp: Move copyseccomp to no failure path. Our syzbot instance reported memory leaks in doseccomp 0, similar to the report 1. It shows that we miss freeing struct seccompfilter and some objects included in it. We can reproduce...
CVE-2022-50632
In the Linux kernel, the following vulnerability has been resolved: drivers: perf: marvellcn10k: Fix hotplug callback leak in tadpmuinit tadpmuinit won't remove the callback added by cpuhpsetupstatemulti when platformdriverregister failed. Remove the callback by cpuhpremovemultistate in fail path...
EUVD-2022-55674
Nagios XI versions prior to 5.8.9 are vulnerable to cross-site scripting XSS in the BPI component via the info URL field. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in the context of a victim's browser...
CVE-2025-40096 drm/sched: Fix potential double free in drm_sched_job_add_resv_dependencies
In the Linux kernel, the following vulnerability has been resolved: drm/sched: Fix potential double free in drmschedjobaddresvdependencies When adding dependencies with drmschedjobadddependency, that function consumes the fence reference both on success and failure, so in the latter case the...
CVE-2022-50574
In the Linux kernel, the following vulnerability has been resolved: drm/omap: dss: Fix refcount leak bugs In dssinitports and dssuninitports, we should call ofnodeput for the reference returned by ofgraphgetportbyid in fail path or when it is not used anymore...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987577)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987577 advisory. In the Linux kernel, the following vulnerability has been resolved: ipmr,ip6mr: acquire RTNL before calling ip6mrfreetable on failure path ip6mrfreetable can only be...
EUVD-2019-11347
Malware in sbrugna...
CVE-2022-50495
CVE-2022-50495 is rejected/not used; this entry does not represent an active vulnerability.
EUVD-2022-55470
Malicious code in bioql PyPI...
kernel: io_uring/futex: ensure io_futex_wait() cleans up properly on failure
In the Linux kernel, the following vulnerability has been resolved: iouring/futex: ensure iofutexwait cleans up properly on failure The iofutexdata is allocated upfront and assigned to the iokiocb asyncdata field, but the request isn't marked with REQFASYNCDATA at that point. Those two should...
CVE-2023-53349 media: ov2740: Fix memleak in ov2740_init_controls()
In the Linux kernel, the following vulnerability has been resolved: media: ov2740: Fix memleak in ov2740initcontrols There is a kmemleak when testing the media/i2c/ov2740.c with bpf mock device: unreferenced object 0xffff8881090e19e0 size 16: comm "51-i2c-ov2740", pid 278, jiffies 4294781584 age...