USN-7595-1 linux, linux-aws, linux-aws-6.8, linux-gke, linux-gkeop, linux-ibm, linux-lowlatency, linux-lowlatency-hwe-6.8, linux-nvidia, linux-nvidia-6.8, linux-nvidia-lowlatency, linux-oem-6.8 vulnerabilities

It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls. An attacker could use this to expose sensitive information. CVE-2025-2312 Several security issues were discovered in the Linux kernel. An...

USN-7594-1 linux, linux-gcp, linux-raspi, linux-realtime vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM32 architecture; - ARM64 architecture; - PowerPC architecture; - RISC-V architecture; - User-Mode Linux UML; - x...

Vulnerability of the brcmstb_usb_pinmap_probe() function in the drivers/usb/misc/brcmstb-usb-pinmap.c module – This driver provides support for USB devices in Linux kernels. It can be exploited by attackers to cause service failures.

Vulnerability of the brcmstbusbpinmapprobe function in the drivers/usb/misc/brcmstb-usb-pinmap.c module – The Linux kernel’s USB device support driver is vulnerable due to a NULL pointer dereferencing issue. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the serial_resume() function in the drivers/tty/serial/8250/serial_cs.c file of the Linux kernel allows a attacker to compromise the confidentiality and accessibility of the protected information.

The vulnerability of the serialresume function in the drivers/tty/serial/8250/serialcs.c file of the Linux kernel is related to improper memory release before deleting the last reference „memory leak“. Exploiting this vulnerability could allow an attacker to compromise the confidentiality and...

Vulnerability of the dwc3_meson_g12a_setup_regmaps() function in the driver/usb/dwc3/dwc3-meson-g12a.c file – This driver is used to support USB devices in Linux operating systems. It allows a hacker to cause a service failure.

Vulnerability of the dwc3mesong12asetupregmaps function in the driver/usb/dwc3/dwc3-meson-g12a.c file – The Linux kernel’s USB device support driver is vulnerable due to a NULL pointer dereferencing issue. Exploiting this vulnerability could allow an attacker to cause a system failure...

Vulnerability of the zynqmp_qspi_irq() function in the drivers/spi/spi-zynqmp-gqspi.c module – This driver provides support for SPI devices in the Linux kernel, which allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

Vulnerability of the zynqmpqspiirq function in the drivers/spi/spi-zynqmp-gqspi.c module – The Linux kernel’s SPI device driver support has a vulnerability related to incorrect checking of the return value of this function. Exploiting this vulnerability could allow an attacker to compromise the...

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: btrfs: check folio mapping after unlock in relocateonefolio CVE-2024-56758 In the Linux kernel, the following vulnerability has been resolved: hrtimers: Force migrate away hrtimers queued after CPUHPAPHRTIMERSDYIN...

CVE-2025-38040

In the Linux kernel, the following vulnerability has been resolved: serial: mctrlgpio: split disablems into sync and nosync APIs The following splat has been observed on a SAMA5D27 platform using atmelserial: BUG: sleeping function called from invalid context at kernel/irq/manage.c:738 inatomic: ...

SUSE CVE-2022-49937

In the Linux kernel, the following vulnerability has been resolved: media: mceusb: Use new usbcontrolmsg routines Automatic kernel fuzzing led to a WARN about invalid pipe direction in the mceusb driver: ------------ cut here ------------ usb 6-1: BOGUS control dir, pipe 80000380 doesn't match...

SUSE CVE-2022-50017

In the Linux kernel, the following vulnerability has been resolved: mips: cavium-octeon: Fix missing ofnodeput in octeon2usbclocksstart We should call ofnodeput for the reference 'uctlnode' returned by ofgetparent which will increase the refcount. Otherwise, there will be a refcount leak bug...

SUSE CVE-2022-50019

In the Linux kernel, the following vulnerability has been resolved: tty: serial: Fix refcount leak bug in uccuart.c In socinfo, offindnodebytype will return a node pointer with refcount incremented. We should use ofnodeput when it is not used anymore...

SUSE CVE-2022-50028

In the Linux kernel, the following vulnerability has been resolved: gadgetfs: epio - wait until IRQ finishes after usbepqueue if waitforcompletioninterruptible is interrupted we need to wait until IRQ gets finished. Otherwise complete from epiocomplete can corrupt stack...

SUSE CVE-2022-50192

In the Linux kernel, the following vulnerability has been resolved: spi: tegra20-slink: fix UAF in tegraslinkremove After calling spiunregistermaster, the refcount of master will be decrease to 0, and it will be freed in spicontrollerrelease, the device data also will be freed, so it will lead a...

SUSE CVE-2025-38010

In the Linux kernel, the following vulnerability has been resolved: phy: tegra: xusb: Use a bitmask for UTMI pad power state tracking The current implementation uses biaspadenable as a reference count to manage the shared bias pad for all UTMI PHYs. However, during system suspension with connecte...

SUSE CVE-2025-38040

In the Linux kernel, the following vulnerability has been resolved: serial: mctrlgpio: split disablems into sync and nosync APIs The following splat has been observed on a SAMA5D27 platform using atmelserial: BUG: sleeping function called from invalid context at kernel/irq/manage.c:738 inatomic: ...

SUSE CVE-2025-38081

In the Linux kernel, the following vulnerability has been resolved: spi-rockchip: Fix register out of bounds access Do not write native chip select stuff for GPIO chip selects. GPIOs can be numbered much higher than native CS. Also, it makes no sense...

The vulnerability of the usb6fire_chip_abort() function in the sound/usb/6fire/chip.c module allows a hacker to trigger a service failure for USB audio devices in Linux operating systems.

The vulnerability of the usb6firechipabort function in the sound/usb/6fire/chip.c module, which supports USB audio devices in Linux operating systems, is related to the reutilization of previously freed memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

PT-2025-33595

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains an issue in the hwmon component, specifically within the corsair-cpro driver. The vulnerability involves insufficient validation of the size of received input...

DEBIAN-CVE-2022-50229

In the Linux kernel, the following vulnerability has been resolved: ALSA: bcd2000: Fix a UAF bug on the error path of probing When the driver fails in sndcardregister at probe time, it will free the 'bcd2k-midiouturb' before killing it, which may cause a UAF bug. The following log can reveal it:...

DEBIAN-CVE-2022-50133

In the Linux kernel, the following vulnerability has been resolved: usb: xhciplatremove: avoid NULL dereference Since commit 4736ebd7fcaff1eb8481c140ba494962847d6e0a "usb: host: xhci-plat: omit shared hcd if either root hub has no ports" xhci-sharedhcd can be NULL, which causes the following Oops...