249 matches found
CVE-2026-53078
A flaw was found in the Linux kernel's Berkeley Packet Filter BPF socket operations sockops program. When a BPF sockops program accesses context fields with the same destination and source registers, certain macros fail to properly clear the destination register. This can lead to a...
CVE-2026-53078
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix same-register dst/src OOB read and pointer leak in sockops When a BPF sockops program accesses ctx fields with dstreg == srcreg, the SOCKOPSGETSK and SOCKOPSGETFIELD macros fail to zero the destination register in the...
CVE-2026-53078 bpf: Fix same-register dst/src OOB read and pointer leak in sock_ops
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix same-register dst/src OOB read and pointer leak in sockops When a BPF sockops program accesses ctx fields with dstreg == srcreg, the SOCKOPSGETSK and SOCKOPSGETFIELD macros fail to zero the destination register in the...
EUVD-2026-38946
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix same-register dst/src OOB read and pointer leak in sockops When a BPF sockops program accesses ctx fields with dstreg == srcreg, the SOCKOPSGETSK and SOCKOPSGETFIELD macros fail to zero the destination register in the...
CVE-2026-53078
The CVE-2026-53078 issue is a Linux kernel BPF sock_ops vulnerability. When a BPF sock_ops program accesses ctx fields with the same destination and source registers (dst_reg == src_reg), SOCK_OPS_GET_SK() and SOCK_OPS_GET_FIELD() failed to zero the destination register in the !fullsock/!locked_t...
PT-2026-51972
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the BPF sock ops program when accessing ctx fields where the destination register dst reg is the same as the source register src reg. In the !fullsock or !locked tcp...
Astra Linux – Vulnerability in Linux 5.10
The checkaluop function in kernel/bpf/verifier.c in the Linux kernel, as of v5.16-rc5, did not properly update the bounds when handling the mov32 instruction. This issue allows local users to obtain potentially sensitive address information, also known as a “pointer leak.”...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: tools/powerturbostat: Fixed the file pointer leak. Currently, if the fscanf function fails, an early return causes a leak of the open file pointer. This issue was fixed by closing the file before the return statement. This issue...
Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: media: go7007: fix a memleak in go7007loadencoder In go7007loadencoder, the variable bounce i.e., go-bootfw is allocated without subsequent deallocation. After the following call chain: saa7134go7007init | | - go7007bootencoder |...
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: RDMA/hfi1: Fixed the kernel pointer leak. Pointers should be printed using %p or %px, instead of being cast to unsigned long long and then printed using %llx. Change %llx to %p to print secure pointers...
Astra Linux – Vulnerability in Linux, Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: scsi: advansys: Fixed kernel pointer leaks Pointers should be printed using %p or %px, rather than being cast to unsigned long and then printed using %lx. Change %lx to %p when printing hashed pointers...
Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: bpf: Fixed incorrect reg type conversion in releasereference Some helper functions will allocate memory. To avoid memory leaks, the verifier requires the eBPF program to release this memory by calling the corresponding helper...
denuOwO-hypervisor-vulnerabilities
DenuOwO SVM/VMX Hypervisor — 6 Vulnerabilities PoC + Analysis...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005692)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005692 advisory. In the Linux kernel, the following vulnerability has been resolved: bpf: Fix pointer-leak due to insufficient speculative store bypass mitigation To mitigate Spectre...
📄 Qualcomm CVP Kernel Pointer Leak
The Qualcomm CVP driver exposes kernel pointers to userland by returning a hashed session ID derived from a kernel pointer using hash32ptr. This function is not a cryptographic hash but a reversible fold that XORs the upper and lower 32 bits of the pointer. Due to predictable ARM64 kernel virtual...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003883)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003883 advisory. In the Android kernel in sync debug fs driver there is a kernel pointer leak due to the usage of printf with %p. This could lead to local information disclosure with...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001302)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001302 advisory. An issue was discovered in the fdlockedioctl function in drivers/block/floppy.c in the Linux kernel through 4.15.7. The floppy driver will copy a kernel pointer to...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004329)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004329 advisory. In the Android kernel in sync debug fs driver there is a kernel pointer leak due to the usage of printf with %p. This could lead to local information disclosure with...
CVE-2018-21079
An issue was discovered on Samsung mobile devices with L5.x, M6.0, N7.x, and O8.0 software. There is a kernel pointer leak in the USB gadget driver. The Samsung ID is SVE-2017-10993 March 2018...
CVE-2020-10840
An issue was discovered on Samsung mobile devices with P9.0 and Q10.0 Exynos 9610 chipsets software. There is a kernel pointer leak in the vipx driver. The Samsung ID is SVE-2019-16293 February 2020...