499 matches found
PT-2023-33121 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.13 Description: A null pointer dereference issue was found in the io tctx exit cb function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions pri...
PT-2023-34336 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.163 Description: The issue is related to a use-after-free UAF problem due to reference count races when releasing resources. The actual impact and potential for attack have not been fully determined...
PT-2023-34090 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.86 Description: A potential shift-out-of-bounds issue in the brcmf fw alloc request function may exist. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel...
PT-2023-34095 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4 Description: A potential memory leak issue has been identified. The actual impact and attack plausibility have not yet been proven. This issue is related to the drm/amd/display component. Recommendations: F...
PT-2023-33342 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.4.228 Description: The issue is related to a bounds check in the snd soc put volsw sx function for the second channel. The actual impact and potential for attack have not been proven yet. Recommendations: For...
PT-2023-33199 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.83 Description: The issue concerns a potential skb leak in the greth init rings function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prio...
CVE-2022-47943
An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. There is an out-of-bounds read and OOPS for SMB2WRITE, when there is a large length in the zero DataOffset case...
CVE-2022-47520
An issue was discovered in the Linux kernel before 6.0.11. Missing offset validation in drivers/net/wireless/microchip/wilc1000/hif.c in the WILC1000 wireless driver can trigger an out-of-bounds read when parsing a Robust Security Network RSN information element from a Netlink packet...
An issue was discovered in the Linux kernel through 5.16-rc6. mtk_vcodec_fw_vpu_init in drivers/media/platform/mtk-vcodec/mtk_vcodec_fw_vpu.c lacks check of the return value of devm_kzalloc() and will cause the null pointer dereference.
...
CVE-2022-3107
An issue was discovered in the Linux kernel through 5.16-rc6. netvscgetethtoolstats in drivers/net/hyperv/netvscdrv.c lacks check of the return value of kvmallocarray and will cause the null pointer dereference...
CVE-2022-3106
An issue was discovered in the Linux kernel through 5.16-rc6. ef100updatestats in drivers/net/ethernet/sfc/ef100nic.c lacks check of the return value of kmalloc...
PT-2022-34796 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.19.12 Description: A potential issue exists in the btrfs filesystem, which may cause a hang during unmount when stopping a space reclaim worker. The actual impact and attack plausibility have not yet been...
PT-2022-34641 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.68 Description: A potential issue exists in the Linux Kernel, related to a dentry leak in update sched domain debugfs. The actual impact and attack plausibility have not yet been proven. Recommendations: F...
PT-2022-34665 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions v4.8 through v5.10.142 Description: A use-after-free issue was discovered. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions v4.8 through v5.10.142, update to...
PT-2022-33969 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.142 Description: The issue concerns an array out of bounds access in the gpio-fan component of the Linux Kernel's hwmon subsystem. The actual impact and potential for attack have not been proven yet...
PT-2022-34172 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.137 Description: A potential security issue exists due to a use-after-free error in the linkwatch on disconnect. The actual impact and attack plausibility have not yet been proven. Recommendations: For Lin...
PT-2022-33543 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.19.2 Description: The issue is related to a potential information leak in the wil write file wmi function. The actual impact and attack plausibility have not yet been proven. It was introduced in version v3.1...
PT-2022-33448 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.19.2 Description: The issue is related to a use-after-free crash in the dm sm register threshold callback function. It was introduced in version v3.10 and fixed in version v5.19.2. The actual impact and attac...
PT-2022-33548 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.19.2 Description: The issue is related to the hinic get stats64 function, which may cause a kernel hang. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel...
PT-2022-33373 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions v5.10 through v5.19.3 Description: A buffer overflow issue exists in the sja1105 setup devlink regions function. The actual impact and attack plausibility have not yet been proven. This issue was introduced in version...