40350 matches found
UBUNTU-CVE-2022-50816
In the Linux kernel, the following vulnerability has been resolved: ipv6: ensure sane device mtu in tunnels Another syzbot report 1 with no reproducer hints at a bug in ip6gre tunnel dev:ip6gretap0 Since ipv6 mcast code makes sure to read dev-mtu once and applies a sanity check on it see commit...
CVE-2023-54318 net/smc: use smc_lgr_list.lock to protect smc_lgr_list.list iterate in smcr_port_add
In the Linux kernel, the following vulnerability has been resolved: net/smc: use smclgrlist.lock to protect smclgrlist.list iterate in smcrportadd While doing smcrportadd, there maybe linkgroup add into or delete from smclgrlist.list at the same time, which may result kernel crash. So, use...
CVE-2023-54318
CVE-2023-54318 affects the Linux kernel in the net/smc code path. The issue stems from iterating smc_lgr_list.list in smcr_port_add without proper synchronization, allowing a linkgroup to be added or removed concurrently and potentially triggering a NULL dereference and kernel crash. The connecte...
CVE-2023-54318 net/smc: use smc_lgr_list.lock to protect smc_lgr_list.list iterate in smcr_port_add
In the Linux kernel, the following vulnerability has been resolved: net/smc: use smclgrlist.lock to protect smclgrlist.list iterate in smcrportadd While doing smcrportadd, there maybe linkgroup add into or delete from smclgrlist.list at the same time, which may result kernel crash. So, use...
CVE-2023-54317 dm flakey: don't corrupt the zero page
In the Linux kernel, the following vulnerability has been resolved: dm flakey: don't corrupt the zero page When we need to zero some range on a block device, the function blkdevissuezeropages submits a write bio with the bio vector pointing to the zero page. If we use dm-flakey with corrupt bio...
CVE-2023-54317 dm flakey: don't corrupt the zero page
In the Linux kernel, the following vulnerability has been resolved: dm flakey: don't corrupt the zero page When we need to zero some range on a block device, the function blkdevissuezeropages submits a write bio with the bio vector pointing to the zero page. If we use dm-flakey with corrupt bio...
CVE-2023-54303 bpf: Disable preemption in bpf_perf_event_output
In the Linux kernel, the following vulnerability has been resolved: bpf: Disable preemption in bpfperfeventoutput The nesting protection in bpfperfeventoutput relies on disabled preemption, which is guaranteed for kprobes and tracepoints. However bpfperfeventoutput can be also called from uprobes...
CVE-2023-54280
CVE-2023-54280 affects the Linux kernel CIFS/IPC path. The vulnerability was a race in tree connecting IPC that could access TCP_Server_Info::hostname during IPC tree construction, potentially freeing the hostname in a cifsd thread and causing a use-after-free in __tree_connect_dfs_target(). The ...
CVE-2023-54280 cifs: fix potential race when tree connecting ipc
In the Linux kernel, the following vulnerability has been resolved: cifs: fix potential race when tree connecting ipc Protect access of TCPServerInfo::hostname when building the ipc tree name as it might get freed in cifsd thread and thus causing an use-after-free bug in treeconnectdfstarget. Als...
CVE-2023-54280 cifs: fix potential race when tree connecting ipc
In the Linux kernel, the following vulnerability has been resolved: cifs: fix potential race when tree connecting ipc Protect access of TCPServerInfo::hostname when building the ipc tree name as it might get freed in cifsd thread and thus causing an use-after-free bug in treeconnectdfstarget. Als...
CVE-2022-50883 bpf: Prevent decl_tag from being referenced in func_proto arg
In the Linux kernel, the following vulnerability has been resolved: bpf: Prevent decltag from being referenced in funcproto arg Syzkaller managed to hit another decltag issue: btffuncprotocheck kernel/bpf/btf.c:4506 inline btfcheckalltypes kernel/bpf/btf.c:4734 inline btfparsetypesec+0x1175/0x198...
CVE-2023-54237
CVE-2023-54237 affects the Linux kernel net/smc component. The root cause described across connected documents is that smc_llc_srv_add_link() could be invoked without proper protection, potentially allowing a second link to be added to a link group and thereby breaking the security environment pr...
CVE-2022-50833 Bluetooth: use hdev->workqueue when queuing hdev->{cmd,ncmd}_timer works
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: use hdev-workqueue when queuing hdev-cmd,ncmdtimer works syzbot is reporting attempt to schedule hdev-cmdwork work from systemwq WQ into hdev-workqueue WQ which is under draining operation 1, for commit c8efcc2589464ac...
CVE-2023-54173 bpf: Disable preemption in bpf_event_output
In the Linux kernel, the following vulnerability has been resolved: bpf: Disable preemption in bpfeventoutput We received report 1 of kernel crash, which is caused by using nesting protection without disabled preemption. The bpfeventoutput can be called by programs executed by bpfprogrunarraycg...
CVE-2023-54173
CVE-2023-54173 affects the Linux kernel. A bug in bpf_event_output allowed nesting protection to run with preemption enabled, risking a NULL pointer dereference and kernel crash due to two tasks racing over perf_sample_data. The fix was to disable preemption inside bpf_event_output, preventing co...
CVE-2023-54173 bpf: Disable preemption in bpf_event_output
In the Linux kernel, the following vulnerability has been resolved: bpf: Disable preemption in bpfeventoutput We received report 1 of kernel crash, which is caused by using nesting protection without disabled preemption. The bpfeventoutput can be called by programs executed by bpfprogrunarraycg...
CVE-2022-50815 ext2: Add sanity checks for group and filesystem size
In the Linux kernel, the following vulnerability has been resolved: ext2: Add sanity checks for group and filesystem size Add sanity check that filesystem size does not exceed the underlying device size and that group size is big enough so that metadata can fit into it. This avoid trying to mount...
CVE-2025-15102
DVP-12SE11T - Password Protection Bypass...
CVE-2025-15102
DVP-12SE11T - Password Protection Bypass...
CVE-2025-15102
CVE-2025-15102 impacts Delta Electronics DVP-12SE11T PLC. The vulnerability is a password protection bypass that can be exploited remotely without authentication, potentially allowing unauthorized access and manipulation of PLC functionality. Fixed via firmware updates in late December 2025. Conn...