PT-2026-37463

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A null pointer dereference occurs in the fbcon component. If the fbcon open function fails during a call from con2fb acquire newinfo, the info-fbcon par pointer remains NULL and is...

Linux Distros Unpatched Vulnerability : CVE-2026-31737

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: ftgmac100: fix ring allocation unwind on open failure ftgmac100allocrings allocates rxskbs, txskbs, rxdes, txdes, and rxscratch in stages. On intermediate...

CVE-2026-31737

In the Linux kernel, the following vulnerability has been resolved: net: ftgmac100: fix ring allocation unwind on open failure ftgmac100allocrings allocates rxskbs, txskbs, rxdes, txdes, and rxscratch in stages. On intermediate failures it returned -ENOMEM directly, leaking resources allocated...

CVE-2026-31737 net: ftgmac100: fix ring allocation unwind on open failure

In the Linux kernel, the following vulnerability has been resolved: net: ftgmac100: fix ring allocation unwind on open failure ftgmac100allocrings allocates rxskbs, txskbs, rxdes, txdes, and rxscratch in stages. On intermediate failures it returned -ENOMEM directly, leaking resources allocated...

CVE-2026-31737

Technical details (affected product/component/versions/root cause/impact or fixes) for CVE-2026-31737 are not publicly available in the provided connected documents. Monitor for updates.

CVE-2026-31737

In the Linux kernel, the following vulnerability has been resolved: net: ftgmac100: fix ring allocation unwind on open failure ftgmac100allocrings allocates rxskbs, txskbs, rxdes, txdes, and rxscratch in stages. On intermediate failures it returned -ENOMEM directly, leaking resources allocated...

EUVD-2026-26550

In the Linux kernel, the following vulnerability has been resolved: net: ftgmac100: fix ring allocation unwind on open failure ftgmac100allocrings allocates rxskbs, txskbs, rxdes, txdes, and rxscratch in stages. On intermediate failures it returned -ENOMEM directly, leaking resources allocated...

CVE-2026-31737

In the Linux kernel, the following vulnerability has been resolved: net: ftgmac100: fix ring allocation unwind on open failure ftgmac100allocrings allocates rxskbs, txskbs, rxdes, txdes, and rxscratch in stages. On intermediate failures it returned -ENOMEM directly, leaking resources allocated...

PT-2026-36372

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A resource leak occurs in the ftgmac100 alloc rings function during the allocation of rx skbs, tx skbs, rxdes, txdes, and rx scratch. When an intermediate failure occurs, the function...

Linux Distros Unpatched Vulnerability : CVE-2026-23282

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - smb: client: fix oops due to uninitialised var in smb2unlink If SMB2openinit or SMB2closeinit fails e.g. reconnect, the iovs set @rqst will be left uninitialise...

CVE-2023-54147

CVE-2023-54147 affects the Linux kernel component media: platform: mtk-mdp3. The root cause is a missing check of the return value from ida_alloc, which could lead to a NULL pointer dereference. The patch also ensures that the allocated ctx->id is freed if mdp_m2m_open fails later, preventing ...

CVE-2022-50729

CVE-2022-50729 concerns a Linux kernel issue in the ksmbd component where a resource leak occurs in ksmbd_session_rpc_open(). The underlying cause, as described in the available documents, is that when ksmbd_rpc_open() fails, ksmbd_rpc_id_free() must be called to undo the result of ksmbd_ipc_id_a...

CVE-2022-50729 ksmbd: Fix resource leak in ksmbd_session_rpc_open()

In the Linux kernel, the following vulnerability has been resolved: ksmbd: Fix resource leak in ksmbdsessionrpcopen When ksmbdrpcopen fails then it must call ksmbdrpcidfree to undo the result of ksmbdipcidalloc...

PT-2025-53224

In the Linux kernel, the following vulnerability has been resolved: media: platform: mtk-mdp3: Add missing check and free for ida alloc Add the check for the return value of the ida alloc in order to avoid NULL pointer dereference. Moreover, free allocated "ctx-id" if mdp m2m open fails later in...

CVE-2025-27063

Memory corruption during video playback when video session open fails with time out error...

CVE-2025-38570

CVE-2025-38570 is described in the initial document as a Linux kernel issue in the fbnic AF_XDP path, where a UaF occurs in xsk_bind() due to NAPI handling: NAPI is freed and the NAPI pointer is not cleared from the queue after a device open failure. The report indicates a local attack vector wit...

PT-2025-33769

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a use-after-free UaF issue in the fbnic module within the AF XDP portion of the queues. The vulnerability occurs when a Network Address Port Identifier NAPI h...

OESA-2023-1076 lxc security update

Containers are insulated areas inside a system, which have their own namespace for filesystem, network, PID, IPC, CPU and memory allocation and which can be created using the Control Group and Namespace features included in the Linux kernel. Security Fixes: lxc-user-nic in lxc through 5.0.1 is...

July 11, 2017, update for Office 2013 (KB3172545)

July 11, 2017, update for Office 2013 KB3172545 This article describes update 3172545 for Microsoft Office 2013 that was released on July 11, 2017. This update also applies to Office Home and Student 2013 RT. This update has a prerequisite. Be aware that the update in the Microsoft Download Cente...

The vulnerability of the read_config_file function (lib/hesiod.c) in the daemon for accessing DNS Hesiod databases allows a attacker to gain root privileges.

The vulnerability of the readconfigfile function lib/hesiod.c in the daemon for accessing DNS databases, Hesiod, is related to the tendency to revert to the default domain “.athena.mit.edu” in case of an error during the opening of the configuration file. Exploiting this vulnerability could allow...