6175 matches found
CVE-2023-54287
In the Linux kernel, the following vulnerability has been resolved: tty: serial: imx: disable Ageing Timer interrupt request irq There maybe pending USR interrupt before requesting irq, however uartaddoneport has not executed, so there will be kernel panic: 0.795668 Unable to handle kernel NULL...
CVE-2023-54299
In the Linux kernel, the following vulnerability has been resolved: usb: typec: bus: verify partner exists in typecaltmodeattention Some usb hubs will negotiate DisplayPort Alt mode with the device but will then negotiate a data role swap after entering the alt mode. The data role swap causes the...
UBUNTU-CVE-2023-54220
In the Linux kernel, the following vulnerability has been resolved: serial: 8250: Fix oops for port-pm on uartchangepm Unloading a hardware specific 8250 driver can produce error "Unable to handle kernel paging request at virtual address" about ten seconds after unloading the driver. This happens...
UBUNTU-CVE-2023-54301
In the Linux kernel, the following vulnerability has been resolved: serial: 8250bcm7271: fix leak in brcmuartprobe Smatch reports: drivers/tty/serial/8250/8250bcm7271.c:1120 brcmuartprobe warn: 'baudmuxclk' from clkprepareenable not released on lines: 1032. The issue is fixed by using a managed...
UBUNTU-CVE-2023-54287
In the Linux kernel, the following vulnerability has been resolved: tty: serial: imx: disable Ageing Timer interrupt request irq There maybe pending USR interrupt before requesting irq, however uartaddoneport has not executed, so there will be kernel panic: 0.795668 Unable to handle kernel NULL...
CVE-2022-50829
In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k: hifusb: Fix use-after-free in ath9khifusbregincb It is possible that skb is freed in ath9khtcrxmsg, then usbsubmiturb fails and we try to free skb again. It causes use-after-free bug. Moreover, if allocskb fails,...
CVE-2023-54301
CVE-2023-54301 concerns the Linux kernel serial driver 8250_bcm7271 (brcmuart) leak. The issue occurs in brcmuart_probe where a clock (baud_mux_clk) is acquired via clk_prepare_enable() and not released, leading to a leak in the probe path. The vulnerability has been addressed by adopting a manag...
CVE-2023-54301 serial: 8250_bcm7271: fix leak in `brcmuart_probe`
In the Linux kernel, the following vulnerability has been resolved: serial: 8250bcm7271: fix leak in brcmuartprobe Smatch reports: drivers/tty/serial/8250/8250bcm7271.c:1120 brcmuartprobe warn: 'baudmuxclk' from clkprepareenable not released on lines: 1032. The issue is fixed by using a managed...
CVE-2023-54301 serial: 8250_bcm7271: fix leak in `brcmuart_probe`
In the Linux kernel, the following vulnerability has been resolved: serial: 8250bcm7271: fix leak in brcmuartprobe Smatch reports: drivers/tty/serial/8250/8250bcm7271.c:1120 brcmuartprobe warn: 'baudmuxclk' from clkprepareenable not released on lines: 1032. The issue is fixed by using a managed...
CVE-2023-54299
CVE-2023-54299 covers a Linux kernel DisplayPort Alt Mode handling bug in usb: typec: bus where a device’s altmode partner is not verified before Attention messages. This can lead to a NULL pointer dereference when the partner’s typec_altmode/typec_altmode_ops are dereferenced after a data role s...
CVE-2023-54299
In the Linux kernel, the following vulnerability has been resolved: usb: typec: bus: verify partner exists in typecaltmodeattention Some usb hubs will negotiate DisplayPort Alt mode with the device but will then negotiate a data role swap after entering the alt mode. The data role swap causes the...
CVE-2023-54287 tty: serial: imx: disable Ageing Timer interrupt request irq
In the Linux kernel, the following vulnerability has been resolved: tty: serial: imx: disable Ageing Timer interrupt request irq There maybe pending USR interrupt before requesting irq, however uartaddoneport has not executed, so there will be kernel panic: 0.795668 Unable to handle kernel NULL...
CVE-2023-54287
Summary of CVE-2023-54287 (Linux kernel, i.MX8MP) : The issue arises in the serial/tty imx driver when Jailhouse is enabled, potentially causing a kernel panic due to a NULL pointer dereference from a pending USR interrupt while the IRQ is not yet requested. The root cause is unsafe handling of t...
CVE-2023-54287
In the Linux kernel, the following vulnerability has been resolved: tty: serial: imx: disable Ageing Timer interrupt request irq There maybe pending USR interrupt before requesting irq, however uartaddoneport has not executed, so there will be kernel panic: 0.795668 Unable to handle kernel NULL...
CVE-2022-50881
In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k: Fix use-after-free in ath9khifusbdisconnect This patch fixes a use-after-free in ath9k that occurs in ath9khifusbdisconnect when ath9kdestroywmi is trying to access 'drvpriv' that has already been freed by...
OESA-2025-2883 kernel security update
The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved:usb: musb: sunxi: Fix accessing an released usb phyCommit 6ed05c68cbca usb: musb: sunxi: Explicitly release USB PHY onexit will cause that usb phy @glue-xceiv is...
CVE-2023-54270
CVE-2023-54270 concerns the Linux kernel media: usb: siano driver and describes use-after-free bugs caused by do_submit_urb. The provided reports show a KASAN UAF in worker_thread with a trace and indicate memory allocation/free paths (smsusb_probe/term_device) involved in probe/driver flow. Conn...
CVE-2023-54270 media: usb: siano: Fix use after free bugs caused by do_submit_urb
In the Linux kernel, the following vulnerability has been resolved: media: usb: siano: Fix use after free bugs caused by dosubmiturb There are UAF bugs caused by dosubmiturb. One of the KASan reports is shown below: 36.403605 BUG: KASAN: use-after-free in workerthread+0x4a2/0x890 36.406105 Read o...
CVE-2023-54270
In the Linux kernel, the following vulnerability has been resolved: media: usb: siano: Fix use after free bugs caused by dosubmiturb There are UAF bugs caused by dosubmiturb. One of the KASan reports is shown below: 36.403605 BUG: KASAN: use-after-free in workerthread+0x4a2/0x890 36.406105 Read o...
CVE-2023-54266
In the Linux kernel, the following vulnerability has been resolved: media: dvb-usb: m920x: Fix a potential memory leak in m920xi2cxfer 'read' is freed when it is known to be NULL, but not when a read error occurs. Revert the logic to avoid a small leak, should a m920xread call fail...