CVE-2022-50856

The CVE-2022-50856 entry applies to the Linux kernel, specifically the CIFS subsystem. The vulnerability was caused by an xid leak in cifs_ses_add_channel() where the xid was not freed before returning. A fix was applied to ensure the xid is freed, mitigating the leak. Affected versions/contexts ...

CVE-2022-50853

CVE-2022-50853 affects the Linux kernel, describing a credential leak in NFSv4 during _nfs4_discover_trunking(). The provided sources note that the vulnerability has been resolved by a kernel fix. No exploit details or affected versions are specified in the documents; remediation is the kernel pa...

CVE-2022-50853

In the Linux kernel, the following vulnerability has been resolved: NFSv4: Fix a credential leak in nfs4discovertrunking...

CVE-2022-50853 NFSv4: Fix a credential leak in _nfs4_discover_trunking()

In the Linux kernel, the following vulnerability has been resolved: NFSv4: Fix a credential leak in nfs4discovertrunking...

CVE-2022-50845

CVE-2022-50845 fixes an inode leak in ext4_xattr_inode_create() on an error path during setxattr; if ext4_mark_inode_dirty() fails, the inode’s i_nlink can be dropped, leading to an inode leak.

CVE-2023-54194

Technical details about CVE-2023-54194 are not provided in the supplied documents. The initial description notes a Linux exFAT fix (switch from kmalloc_array/kfree to kvmalloc_array/kvfree) but lacks specific vendor/advisory specifics, impact, affected versions, or fix details.

CVE-2023-54192 f2fs: fix null pointer panic in tracepoint in __replace_atomic_write_block

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix null pointer panic in tracepoint in replaceatomicwriteblock We got a kernel panic if oldaddr is NULL. https://bugzilla.kernel.org/showbug.cgi?id=217266 BUG: kernel NULL pointer dereference, address: 0000000000000000 Cal...

CVE-2023-54187

CVE-2023-54187 concerns a Linux kernel issue where moving/renaming a directory could trigger potential corruption. The vulnerability affects the filesystem code related to F2FS and reproduces in ext4_rename, as revealed by xfstests/generic/707. The root cause involves corruption risks during dire...

CVE-2023-54187 f2fs: fix potential corruption when moving a directory

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix potential corruption when moving a directory F2FS has the same issue in ext4rename causing crash revealed by xfstests/generic/707. See also commit 0813299c586b "ext4: Fix possible corruption when moving a directory"...

CVE-2022-50785 fsi: occ: Prevent use after free

In the Linux kernel, the following vulnerability has been resolved: fsi: occ: Prevent use after free Use getdevice and putdevice in the open and close functions to make sure the device doesn't get freed while a file descriptor is open. Also, lock around the freeing of the device buffer and check...

CVE-2025-15213

A vulnerability has been found in code-projects Student File Management System 1.0. The affected element is an unknown function of the file /download.php of the component File Download Handler. The manipulation of the argument storeid leads to improper authorization. The attack is possible to be...

PT-2025-54023

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel experienced an issue where memory allocation failed for the exFAT file system due to system memory fragmentation. This occurred when using kmalloc array and kfree,...

PT-2025-54261

Name of the Vulnerable Software and Affected Versions Ksenia Security Lares 4.0 Home Automation version 1.6 Description An authenticated attacker can upload MPFS File System binary images through an unprotected endpoint. This allows overwriting flash program memory and potentially executing...

inMusic Engine DJ 安全漏洞

inMusic Engine DJ is a suite of professional DJ software from inMusic USA. A security vulnerability exists in inMusic Engine DJ version 4.3.0, which stems from an insecure privilege in the exposed HTTP service in the remote library that could lead to access to all files and network paths...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a credential leak in the nfs4discovertrunking function in the NFSv4 subsystem...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a failure to verify the validity of tcon-ses in cifsoplockbreak, which could lead to a null pointer dereference...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from f2fs not properly checking for a multi-device read-only condition, which could lead to a null pointer dereferenc...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the presence of a debug file system entry leak at the block level...

Ksenia Security Lares 4.0 Home Automation 安全漏洞

Ksenia Security Lares 4.0 Home Automation is an intelligent security and home automation control platform from Ksenia Security, Italy. A security vulnerability exists in Ksenia Security Lares 4.0 Home Automation version 1.6, which originates from an unprotected endpoint, and could allow an...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992188)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992188 advisory. In the Linux kernel, the following vulnerability has been resolved: cifs: fix oops during encryption When running xfstests against Azure the following oops occurred ...