Lucene search
K

59 matches found

CVE
CVE
added 2026/04/22 1:54 p.m.21 views

CVE-2026-31489

This CVE (CVE-2026-31489) affects the Linux kernel meson-spicc SPI controller driver. The vulnerability arises from a double-put: meson_spicc_probe() registers the controller with devm_spi_register_controller(), and the removal path erroneously calls spi_controller_put() again in meson_spicc_remo...

7.8CVSS5.6AI score0.00129EPSS
Exploits0References8Affected Software1
EUVD
EUVD
added 2026/04/03 6:31 p.m.4 views

EUVD-2026-18761

In the Linux kernel, the following vulnerability has been resolved: spi: fix use-after-free on controller registration failure Make sure to deregister from driver core also in the unlikely event that per-cpu statistics allocation fails during controller registration to avoid use-after-free of...

5.7AI score0.00117EPSS
Exploits0References7
CVE
CVE
added 2026/04/03 3:15 p.m.17 views

CVE-2026-31389

CVE-2026-31389 affects the Linux kernel SPI subsystem. The vulnerability is a use-after-free that can occur during controller registration if per-CPU statistics allocation fails, potentially leading to access of freed driver resources and unclocked register accesses. The issue is mitigated by a p...

7.8CVSS5.7AI score0.00117EPSS
Exploits0References6Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/04/03 3:15 p.m.2 views

CVE-2026-31389

In the Linux kernel, the following vulnerability has been resolved: spi: fix use-after-free on controller registration failure Make sure to deregister from driver core also in the unlikely event that per-cpu statistics allocation fails during controller registration to avoid use-after-free of...

5.7AI score0.00117EPSS
Exploits0References7Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/04/03 3:15 p.m.3 views

CVE-2026-23475

In the Linux kernel, the following vulnerability has been resolved: spi: fix statistics allocation The controller per-cpu statistics is not allocated until after the controller has been registered with driver core, which leaves a window where accessing the sysfs attributes can trigger a...

5.7AI score0.00123EPSS
Exploits0References7Affected Software1
CNNVD
CNNVD
added 2026/04/03 12:0 a.m.8 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the improper timing of the SPI controller’s statistics allocation. This vulnerability may lead to null...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References6
NVD
NVD
added 2026/02/04 5:16 p.m.6 views

CVE-2026-23068

In the Linux kernel, the following vulnerability has been resolved: spi: spi-sprd-adi: Fix double free in probe error path The driver currently uses spiallochost to allocate the controller but registers it using devmspiregistercontroller. If devmregisterrestarthandler fails, the code jumps to the...

7.8CVSS0.00129EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/02/04 4:7 p.m.5 views

CVE-2026-23068

In the Linux kernel, the following vulnerability has been resolved: spi: spi-sprd-adi: Fix double free in probe error path The driver currently uses spiallochost to allocate the controller but registers it using devmspiregistercontroller. If devmregisterrestarthandler fails, the code jumps to the...

5.3AI score0.00129EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2025/12/08 2:15 a.m.2 views

DEBIAN-CVE-2023-53758

In the Linux kernel, the following vulnerability has been resolved: spi: atmel-quadspi: Free resources even if runtime resume failed in .remove An early error exit in atmelqspiremove doesn't prevent the device unbind. So this results in an spi controller with an unbound parent and unmapped regist...

5.3AI score0.00162EPSS
Exploits0References1
OSV
OSV
added 2025/12/08 2:15 a.m.5 views

UBUNTU-CVE-2023-53758

In the Linux kernel, the following vulnerability has been resolved: spi: atmel-quadspi: Free resources even if runtime resume failed in .remove An early error exit in atmelqspiremove doesn't prevent the device unbind. So this results in an spi controller with an unbound parent and unmapped regist...

5.7AI score0.00162EPSS
Exploits0References7
Cvelist
Cvelist
added 2025/12/08 1:19 a.m.26 views

CVE-2023-53758 spi: atmel-quadspi: Free resources even if runtime resume failed in .remove()

In the Linux kernel, the following vulnerability has been resolved: spi: atmel-quadspi: Free resources even if runtime resume failed in .remove An early error exit in atmelqspiremove doesn't prevent the device unbind. So this results in an spi controller with an unbound parent and unmapped regist...

0.00162EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/12/08 12:0 a.m.5 views

CVE-2023-53758

In the Linux kernel, the following vulnerability has been resolved: spi: atmel-quadspi: Free resources even if runtime resume failed in .remove An early error exit in atmelqspiremove doesn't prevent the device unbind. So this results in an spi controller with an unbound parent and unmapped regist...

5.7AI score0.00162EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.3 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-986458)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986458 advisory. In the Linux kernel, the following vulnerability has been resolved: spi: Fix use-after-free with devmspialloc We can't rely on the contents of the devres list during...

7.8CVSS6.2AI score0.00245EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.12 views

EUVD-2025-14150

Malicious code in bioql PyPI...

7.2AI score0.0022EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2025/10/01 11:23 p.m.5 views

SUSE CVE-2025-39893

In the Linux kernel, the following vulnerability has been resolved: spi: spi-qpic-snand: unregister ECC engine on probe error and device remove The on-host hardware ECC engine remains registered both when the spiregistercontroller function returns with an error and also on device removal. Change...

5.5CVSS6.5AI score0.00119EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/09 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2022-50190

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: spi: Fix simplification of devmspiregistercontroller This reverts commit 59ebbe40fb51 spi:...

7.8CVSS6AI score0.00208EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/06/19 3:39 a.m.9 views

SUSE CVE-2022-50190

In the Linux kernel, the following vulnerability has been resolved: spi: Fix simplification of devmspiregistercontroller This reverts commit 59ebbe40fb51 "spi: simplify devmspiregistercontroller". If devmaddaction fails in devmaddactionorreset, devmspiunregister will be called, it decreases the...

5.5CVSS6.3AI score0.00208EPSS
Exploits0References9
OSV
OSV
added 2025/06/18 11:15 a.m.6 views

DEBIAN-CVE-2022-50190

In the Linux kernel, the following vulnerability has been resolved: spi: Fix simplification of devmspiregistercontroller This reverts commit 59ebbe40fb51 "spi: simplify devmspiregistercontroller". If devmaddaction fails in devmaddactionorreset, devmspiunregister will be called, it decreases the...

7.8CVSS5.2AI score0.00208EPSS
Exploits0References1
CVE
CVE
added 2025/06/18 11:3 a.m.97 views

CVE-2022-50190

The CVE-2022-50190 entry concerns a Linux kernel issue in the SPI subsystem: a change related to devm_spi_register_controller is reverted, and if devm_add_action() fails in devm_add_action_or_reset(), devm_spi_unregister() decreases ctlr->dev refcount to 0, potentially causing a use-after-free...

7.8CVSS6.5AI score0.00208EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVE
added 2025/06/18 11:3 a.m.7 views

CVE-2022-50190

In the Linux kernel, the following vulnerability has been resolved: spi: Fix simplification of devmspiregistercontroller This reverts commit 59ebbe40fb51 "spi: simplify devmspiregistercontroller". If devmaddaction fails in devmaddactionorreset, devmspiunregister will be called, it decreases the...

7.8CVSS5.2AI score0.00208EPSS
Exploits0
Rows per page
Query Builder