Lucene search
K

111 matches found

OSV
OSV
added 2026/02/04 5:16 p.m.3 views

UBUNTU-CVE-2026-23068

In the Linux kernel, the following vulnerability has been resolved: spi: spi-sprd-adi: Fix double free in probe error path The driver currently uses spiallochost to allocate the controller but registers it using devmspiregistercontroller. If devmregisterrestarthandler fails, the code jumps to the...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References16
UbuntuCve
UbuntuCve
added 2026/02/04 5:16 p.m.5 views

CVE-2026-23068

In the Linux kernel, the following vulnerability has been resolved: spi: spi-sprd-adi: Fix double free in probe error path The driver currently uses spiallochost to allocate the controller but registers it using devmspiregistercontroller. If devmregisterrestarthandler fails, the code jumps to the...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References12
OSV
OSV
added 2026/02/04 4:8 p.m.6 views

CVE-2026-23087 scsi: xen: scsiback: Fix potential memory leak in scsiback_remove()

In the Linux kernel, the following vulnerability has been resolved: scsi: xen: scsiback: Fix potential memory leak in scsibackremove Memory allocated for struct vscsiblkinfo in scsibackprobe is not freed in scsibackremove leading to potential memory leaks on remove, as well as in the scsibackprob...

5.5CVSS5.2AI score0.00123EPSS
Exploits0References10
EUVD
EUVD
added 2026/02/04 4:7 p.m.7 views

EUVD-2026-5476

In the Linux kernel, the following vulnerability has been resolved: spi: spi-sprd-adi: Fix double free in probe error path The driver currently uses spiallochost to allocate the controller but registers it using devmspiregistercontroller. If devmregisterrestarthandler fails, the code jumps to the...

5.3AI score0.00129EPSS
Exploits0References4
CVE
CVE
added 2026/02/04 4:7 p.m.25 views

CVE-2026-23068

CVE-2026-23068 (Linux kernel) : The spi-sprd-adi driver could double-free the spi_controller on probe failure due to using spi_alloc_host() with devm_spi_register_controller(), then falling through to spi_controller_put() when a restart handler registration failed. The fix switches to devm_spi_al...

7.8CVSS5.3AI score0.00129EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2026/02/04 4:7 p.m.25 views

CVE-2026-23068 spi: spi-sprd-adi: Fix double free in probe error path

In the Linux kernel, the following vulnerability has been resolved: spi: spi-sprd-adi: Fix double free in probe error path The driver currently uses spiallochost to allocate the controller but registers it using devmspiregistercontroller. If devmregisterrestarthandler fails, the code jumps to the...

0.00129EPSS
Exploits0References5
OSV
OSV
added 2026/02/04 4:7 p.m.5 views

CVE-2026-23068 spi: spi-sprd-adi: Fix double free in probe error path

In the Linux kernel, the following vulnerability has been resolved: spi: spi-sprd-adi: Fix double free in probe error path The driver currently uses spiallochost to allocate the controller but registers it using devmspiregistercontroller. If devmregisterrestarthandler fails, the code jumps to the...

7.8CVSS5.3AI score0.00129EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2026/02/04 4:7 p.m.6 views

CVE-2026-23068

In the Linux kernel, the following vulnerability has been resolved: spi: spi-sprd-adi: Fix double free in probe error path The driver currently uses spiallochost to allocate the controller but registers it using devmspiregistercontroller. If devmregisterrestarthandler fails, the code jumps to the...

7.8CVSS5.3AI score0.00129EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/01/06 12:24 a.m.5 views

SUSE CVE-2025-68754

In the Linux kernel, the following vulnerability has been resolved: rtc: amlogic-a4: fix double free caused by devm The clock obtained via devmclkgetenabled is automatically managed by devres and will be disabled and freed on driver detach. Manually calling clkdisableunprepare in error path and...

6.7CVSS6.6AI score0.00155EPSS
Exploits0References3
CVE
CVE
added 2026/01/05 9:32 a.m.16 views

CVE-2025-68754

CVE-2025-68754 affects the Linux kernel rtc driver for amlogic-a4. The issue is a double free caused by manually disabling the clock obtained via devm_clk_get_enabled() in error paths, which conflicts with the devm framework’s automatic clock lifecycle management. The recommended remediation is t...

6.2AI score0.00155EPSS
Exploits0References3
OSV
OSV
added 2026/01/05 9:32 a.m.6 views

CVE-2025-68754 rtc: amlogic-a4: fix double free caused by devm

In the Linux kernel, the following vulnerability has been resolved: rtc: amlogic-a4: fix double free caused by devm The clock obtained via devmclkgetenabled is automatically managed by devres and will be disabled and freed on driver detach. Manually calling clkdisableunprepare in error path and...

6.5AI score0.00155EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/12/24 1:6 p.m.28 views

CVE-2023-54109 media: rcar_fdp1: Fix refcount leak in probe and remove function

In the Linux kernel, the following vulnerability has been resolved: media: rcarfdp1: Fix refcount leak in probe and remove function rcarfcpget take reference, which should be balanced with rcarfcpput. Add missing rcarfcpput in fdp1remove and the error paths of fdp1probe to fix this. hverkuil:...

0.00184EPSS
Exploits0References8
CVE
CVE
added 2025/12/24 10:55 a.m.11 views

CVE-2022-50703

CVE-2022-50703 relates to two refcount-leak bugs in the Linux kernel soc: qcom: smsm driver (qcom_smsm_probe). The issues occur when local_node and node are escaped from for_each_child_of_node() / for_each_available_child_of_node() without proper of_node_put() calls. The fix adds of_node_put() in...

6.1AI score0.00196EPSS
Exploits0References9
SUSE CVE
SUSE CVE
added 2025/12/17 12:26 a.m.5 views

SUSE CVE-2025-68172

In the Linux kernel, the following vulnerability has been resolved: crypto: aspeed - fix double free caused by devm The clock obtained via devmclkgetenabled is automatically managed by devres and will be disabled and freed on driver detach. Manually calling clkdisableunprepare in error path and...

5.5CVSS6.6AI score0.00168EPSS
Exploits0References21
EUVD
EUVD
added 2025/12/16 3:30 p.m.4 views

EUVD-2025-203724

In the Linux kernel, the following vulnerability has been resolved: crypto: aspeed - fix double free caused by devm The clock obtained via devmclkgetenabled is automatically managed by devres and will be disabled and freed on driver detach. Manually calling clkdisableunprepare in error path and...

6.1AI score0.00168EPSS
Exploits0References5
EUVD
EUVD
added 2025/12/16 3:30 p.m.6 views

EUVD-2025-203715

In the Linux kernel, the following vulnerability has been resolved: drm/radeon: Remove calls to drmputdev Since the allocation of the drivers main structure was changed to devmdrmdevalloc drmputdev'ing to trigger it to be free'd should be done by devres. However, drmputdev is still in the probe...

5.9AI score0.00166EPSS
Exploits0References4
NVD
NVD
added 2025/12/16 2:15 p.m.6 views

CVE-2025-68181

In the Linux kernel, the following vulnerability has been resolved: drm/radeon: Remove calls to drmputdev Since the allocation of the drivers main structure was changed to devmdrmdevalloc drmputdev'ing to trigger it to be free'd should be done by devres. However, drmputdev is still in the probe...

0.00166EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/12/16 1:42 p.m.33 views

CVE-2025-68181 drm/radeon: Remove calls to drm_put_dev()

In the Linux kernel, the following vulnerability has been resolved: drm/radeon: Remove calls to drmputdev Since the allocation of the drivers main structure was changed to devmdrmdevalloc drmputdev'ing to trigger it to be free'd should be done by devres. However, drmputdev is still in the probe...

0.00166EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.3 views

PT-2025-49639

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak exists in the dln2 probe function within the kernel's MFD Multiple Function Device driver for DLN2 devices. Specifically, when dln2 setup rx urbs fails during the probe...

6.2AI score0.00032EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.4 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-990004)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990004 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: musb: dsps: Fix the probe error path Commit 7c75bde329d7 usb: musb: musbdsps: requestirq aft...

5.5CVSS5.9AI score0.00226EPSS
Exploits0References4
Rows per page
Query Builder