Lucene search
+L

119 matches found

OSV
OSV
added 2025/09/18 4:15 p.m.5 views

UBUNTU-CVE-2023-53425

In the Linux kernel, the following vulnerability has been resolved: media: platform: mediatek: vpu: fix NULL ptr dereference If pdev is NULL, then it is still dereferenced. This fixes this smatch warning: drivers/media/platform/mediatek/vpu/mtkvpu.c:570 vpuloadfirmware warn: address of NULL point...

5.5CVSS5.8AI score0.00136EPSS
Exploits0References11
OSV
OSV
added 2025/09/18 4:4 p.m.3 views

CVE-2023-53425 media: platform: mediatek: vpu: fix NULL ptr dereference

In the Linux kernel, the following vulnerability has been resolved: media: platform: mediatek: vpu: fix NULL ptr dereference If pdev is NULL, then it is still dereferenced. This fixes this smatch warning: drivers/media/platform/mediatek/vpu/mtkvpu.c:570 vpuloadfirmware warn: address of NULL point...

5.5CVSS5AI score0.00136EPSS
Exploits0References11
RedhatCVE
RedhatCVE
added 2025/09/18 3:23 p.m.3 views

CVE-2022-50384

In the Linux kernel, the following vulnerability has been resolved: staging: vmeuser: Fix possible UAF in tsi148dmalistadd Smatch report warning as follows: drivers/staging/vmeuser/vmetsi148.c:1757 tsi148dmalistadd warn: '&entry-;list' not removed from list In tsi148dmalistadd, the error path "go...

5.5CVSS5.8AI score0.00156EPSS
Exploits0References4
NVD
NVD
added 2025/09/15 2:15 p.m.7 views

CVE-2022-50245

In the Linux kernel, the following vulnerability has been resolved: rapidio: fix possible UAF when kfifoalloc fails If kfifoalloc fails in mportcdevopen, goto errfifo and just free priv. But priv is still in the chdev-filelist, then list traversal may cause UAF. This fixes the following smatch...

7.8CVSS0.00156EPSS
Exploits0References9
OSV
OSV
added 2025/09/15 2:15 p.m.4 views

DEBIAN-CVE-2022-50245

In the Linux kernel, the following vulnerability has been resolved: rapidio: fix possible UAF when kfifoalloc fails If kfifoalloc fails in mportcdevopen, goto errfifo and just free priv. But priv is still in the chdev-filelist, then list traversal may cause UAF. This fixes the following smatch...

7.8CVSS5.6AI score0.00156EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/09/07 11:22 p.m.3 views

SUSE CVE-2025-39729

In the Linux kernel, the following vulnerability has been resolved: crypto: ccp - Fix dereferencing uninitialized error pointer Fix below smatch warnings: drivers/crypto/ccp/sev-dev.c:1312 sevplatforminitlocked error: we previously assumed 'error' could be null...

5.5CVSS6.5AI score0.00119EPSS
Exploits0References3
NVD
NVD
added 2025/09/07 4:15 p.m.6 views

CVE-2025-39729

In the Linux kernel, the following vulnerability has been resolved: crypto: ccp - Fix dereferencing uninitialized error pointer Fix below smatch warnings: drivers/crypto/ccp/sev-dev.c:1312 sevplatforminitlocked error: we previously assumed 'error' could be null...

5.5CVSS0.00119EPSS
Exploits0References2
OSV
OSV
added 2025/09/05 5:21 p.m.14 views

CVE-2025-39708 media: iris: Fix NULL pointer dereference

In the Linux kernel, the following vulnerability has been resolved: media: iris: Fix NULL pointer dereference A warning reported by smatch indicated a possible null pointer dereference where one of the arguments to API "irishfigen2handlesystemerror" could sometimes be null. To fix this, add a che...

5.5CVSS6.1AI score0.00119EPSS
Exploits0References5
OSV
OSV
added 2025/06/18 11:15 a.m.3 views

UBUNTU-CVE-2022-50148

In the Linux kernel, the following vulnerability has been resolved: kernfs: fix potential NULL dereference in kernfsremove When lockdep is enabled, lockdepassertheldwrite would cause potential NULL pointer dereference. Fix the following smatch warnings: fs/kernfs/dir.c:1353 kernfsremove warn:...

5.5CVSS6.1AI score0.00157EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/05/13 8:28 a.m.4 views

kernel: drm/amdgpu: Fix smatch static checker warning

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix smatch static checker warning adev-gfx.imu.funcs could be NULL...

5.5CVSS6.4AI score0.00235EPSS
Exploits0References5
OSV
OSV
added 2025/02/26 7:1 a.m.6 views

UBUNTU-CVE-2022-49280

In the Linux kernel, the following vulnerability has been resolved: NFSD: prevent underflow in nfssvcdecodewriteargs Smatch complains: fs/nfsd/nfsxdr.c:341 nfssvcdecodewriteargs warn: no lower bound on 'args-len' Change the type to unsigned to prevent this issue...

5.5CVSS6.2AI score0.00252EPSS
Exploits0References12
NVD
NVD
added 2025/02/26 7:0 a.m.10 views

CVE-2022-49058

In the Linux kernel, the following vulnerability has been resolved: cifs: potential buffer overflow in handling symlinks Smatch printed a warning: arch/x86/crypto/poly1305glue.c:198 poly1305updatearch error: memcpy 'dctx-buf' too small 16 vs u32max It's caused because Smatch marks 'linklen' as...

7.8CVSS0.00312EPSS
Exploits0References8
OSV
OSV
added 2025/02/26 7:0 a.m.0 views

DEBIAN-CVE-2022-49058

In the Linux kernel, the following vulnerability has been resolved: cifs: potential buffer overflow in handling symlinks Smatch printed a warning: arch/x86/crypto/poly1305glue.c:198 poly1305updatearch error: memcpy 'dctx-buf' too small 16 vs u32max It's caused because Smatch marks 'linklen' as...

7.8CVSS5.7AI score0.00312EPSS
Exploits0References1
CVE
CVE
added 2025/02/26 1:54 a.m.183 views

CVE-2022-49058

CVE-2022-49058 involves a buffer overflow in the Linux kernel CIFS implementation when handling symlinks. The root cause, per the provided description, is that Smatch flags the variable link_len as untrusted (coming from sscanf), which can lead to an out-of-bounds copy into dctx->buf. The fixe...

7.8CVSS5.6AI score0.00312EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2025/02/26 1:54 a.m.9 views

CVE-2022-49058 cifs: potential buffer overflow in handling symlinks

In the Linux kernel, the following vulnerability has been resolved: cifs: potential buffer overflow in handling symlinks Smatch printed a warning: arch/x86/crypto/poly1305glue.c:198 poly1305updatearch error: memcpy 'dctx-buf' too small 16 vs u32max It's caused because Smatch marks 'linklen' as...

7.8CVSS6AI score0.00312EPSS
Exploits0References11
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.2 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: PCI: Endpoint: Fixed error handling in vpciscanbus Smatch complains about inconsistent NULL checking in vpciscanbus: drivers/pci/endpoint/functions/pci-epf-vntb.c:1024 vpciscanbus error: We previously assumed that ‘vpcibus’ could...

5.5CVSS6.3AI score0.0021EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.5 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: drm/amdgpu: Fixed the smatch static checker warning adev-gfx.imu.funcs could be NULL...

5.5CVSS6.1AI score0.00235EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2024/12/30 3:48 a.m.3 views

SUSE CVE-2024-56752

In the Linux kernel, the following vulnerability has been resolved: drm/nouveau/gr/gf100: Fix missing unlock in gf100grchannew When the call to gf100grctxgenerate fails, unlock gr-fecs.mutex before returning the error. Fixes smatch warning: drivers/gpu/drm/nouveau/nvkm/engine/gr/gf100.c:480...

5.5CVSS7.7AI score0.00201EPSS
Exploits0References13
OSV
OSV
added 2024/12/29 12:15 p.m.2 views

DEBIAN-CVE-2024-56752

In the Linux kernel, the following vulnerability has been resolved: drm/nouveau/gr/gf100: Fix missing unlock in gf100grchannew When the call to gf100grctxgenerate fails, unlock gr-fecs.mutex before returning the error. Fixes smatch warning: drivers/gpu/drm/nouveau/nvkm/engine/gr/gf100.c:480...

5.5CVSS5.7AI score0.00201EPSS
Exploits0References1
OSV
OSV
added 2024/12/29 12:15 p.m.8 views

AZL-54857 CVE-2024-56752 affecting package kernel for versions less than 6.6.64.2-1

In the Linux kernel, the following vulnerability has been resolved: drm/nouveau/gr/gf100: Fix missing unlock in gf100grchannew When the call to gf100grctxgenerate fails, unlock gr-fecs.mutex before returning the error. Fixes smatch warning: drivers/gpu/drm/nouveau/nvkm/engine/gr/gf100.c:480...

5.5CVSS6.7AI score0.00201EPSS
Exploits0References1
Rows per page
Query Builder