545 matches found
ROS-20251223-7317
Vulnerability in jenkins related to incorrect resource cleanup or release. Exploitation of the vulnerability may allow an attacker to cause a denial of service...
[SECURITY] Fedora 42 Update: containernetworking-plugins-1.9.0-1.fc42
Reference and example networking plugins, maintained by the CNI team. The CNI Container Network Interface project consists of a specification and libraries for writing plugins to configure network interfaces in Linux containers, along with a number of supported plugins. CNI concerns itself only...
SUSE CVE-2025-68289
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: feem: Fix memory leak in eemunwrap The existing code did not handle the failure case of usbepqueue in the command path, potentially leading to memory leaks. Improve error handling to free all allocated resources on...
SUSE CVE-2025-68204
In the Linux kernel, the following vulnerability has been resolved: pmdomain: arm: scmi: Fix genpd leak on provider registration failure If ofgenpdaddprovideronecell fails during probe, the previously created generic power domains are not removed, leading to a memory leak and potential kernel cra...
EUVD-2025-203773
In the Linux kernel, the following vulnerability has been resolved: can: gsusb: gsusbxmitcallback: fix handling of failed transmitted URBs The driver lacks the cleanup of failed transfers of URBs. This reduces the number of available URBs per error by 1. This leads to reduced performance and...
CVE-2025-68289
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: feem: Fix memory leak in eemunwrap The existing code did not handle the failure case of usbepqueue in the command path, potentially leading to memory leaks. Improve error handling to free all allocated resources on...
CVE-2025-68314
The CVE-2025-68314 entry concerns the Linux kernel component drm/msm. The vulnerability stems from last_fence not being updated in the vm-bind path, causing last_fence to not be waited on at context close for certain contexts, which can lead to faults as resources are freed while still in use. A ...
CVE-2025-68289 usb: gadget: f_eem: Fix memory leak in eem_unwrap
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: feem: Fix memory leak in eemunwrap The existing code did not handle the failure case of usbepqueue in the command path, potentially leading to memory leaks. Improve error handling to free all allocated resources on...
CVE-2025-68289 usb: gadget: f_eem: Fix memory leak in eem_unwrap
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: feem: Fix memory leak in eemunwrap The existing code did not handle the failure case of usbepqueue in the command path, potentially leading to memory leaks. Improve error handling to free all allocated resources on...
CVE-2025-68204
In the Linux kernel, the following vulnerability has been resolved: pmdomain: arm: scmi: Fix genpd leak on provider registration failure If ofgenpdaddprovideronecell fails during probe, the previously created generic power domains are not removed, leading to a memory leak and potential kernel cra...
CVE-2025-68204 pmdomain: arm: scmi: Fix genpd leak on provider registration failure
In the Linux kernel, the following vulnerability has been resolved: pmdomain: arm: scmi: Fix genpd leak on provider registration failure If ofgenpdaddprovideronecell fails during probe, the previously created generic power domains are not removed, leading to a memory leak and potential kernel cra...
PT-2025-51693
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a memory leak in the f eem module within the gadget subsystem, specifically in the eem unwrap function. The existing code lacked proper error handling for usb e...
PT-2025-51617
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak can occur in the Linux kernel when of genpd add provider onecell fails during probe. This happens because generic power domains are not removed, potentially leading to a...
CVE-2023-53758
In the Linux kernel, the following vulnerability has been resolved: spi: atmel-quadspi: Free resources even if runtime resume failed in .remove An early error exit in atmelqspiremove doesn't prevent the device unbind. So this results in an spi controller with an unbound parent and unmapped regist...
CVE-2023-53758
The CVE-2023-53758 issue concerns the Linux kernel driver for the Atmel QuadSPI (spi: atmel-quadspi). The vulnerability arises when an early error path in atmel_qspi_remove() unbinds the device without properly freeing resources, leaving the SPI controller with an unbound parent and unmapped regi...
CVE-2023-53758 spi: atmel-quadspi: Free resources even if runtime resume failed in .remove()
In the Linux kernel, the following vulnerability has been resolved: spi: atmel-quadspi: Free resources even if runtime resume failed in .remove An early error exit in atmelqspiremove doesn't prevent the device unbind. So this results in an spi controller with an unbound parent and unmapped regist...
CVE-2023-53758 spi: atmel-quadspi: Free resources even if runtime resume failed in .remove()
In the Linux kernel, the following vulnerability has been resolved: spi: atmel-quadspi: Free resources even if runtime resume failed in .remove An early error exit in atmelqspiremove doesn't prevent the device unbind. So this results in an spi controller with an unbound parent and unmapped regist...
PT-2025-49488
In the Linux kernel, the following vulnerability has been resolved: spi: atmel-quadspi: Free resources even if runtime resume failed in .remove An early error exit in atmel qspi remove doesn't prevent the device unbind. So this results in an spi controller with an unbound parent and unmapped...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from Bluetooth btusb not properly cleaning up the order of resources, which could lead to reuse after release...
xorg: xwayland: Use-after-free in Xkb client resource removal
A flaw was discovered in the X.Org X server’s X Keyboard Xkb extension when handling client resource cleanup. The software frees certain data structures without properly detaching related resources, leading to a use-after-free condition. This can cause memory corruption or a crash when affected...