CVE-2025-39852

In the Linux kernel, the following vulnerability has been resolved: net/tcp: Fix socket memory leak in TCP-AO failure handling for IPv6 When tcpaocopyallmatching fails in tcpv6synrecvsock it just exits the function. This ends up causing a memory-leak: unreferenced object 0xffff0000281a8200 size...

CVE-2025-39849 wifi: cfg80211: sme: cap SSID length in __cfg80211_connect_result()

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: sme: cap SSID length in cfg80211connectresult If the ssid-datalen is more than IEEE80211MAXSSIDLEN 32 it would lead to memory corruption so add some bounds checking...

CVE-2025-39849

CVE-2025-39849 refers to a Linux kernel vulnerability in the wifi: cfg80211: sme: cap SSID length in __cfg80211_connect_result() path. The issue allows memory corruption if ssid->datalen exceeds IEEE80211_MAX_SSID_LEN (32) due to missing bounds checks. The connected documents confirm this CVE ...

CVE-2025-39849

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: sme: cap SSID length in cfg80211connectresult If the ssid-datalen is more than IEEE80211MAXSSIDLEN 32 it would lead to memory corruption so add some bounds checking...

PT-2025-46607

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the ASoC Audio Subsystem on Chip Intel sof sdw component. Specifically, the create sdw dailink function does not adequately verify that the add...

SUSE CVE-2022-50390

In the Linux kernel, the following vulnerability has been resolved: drm/ttm: fix undefined behavior in bit shift for TTMTTFLAGPRIVPOPULATED Shifting signed 32-bit value by 31 bits is undefined, so changing significant bit to unsigned. The UBSAN warning calltrace like below: UBSAN:...

SUSE CVE-2022-50392

In the Linux kernel, the following vulnerability has been resolved: ASoC: mediatek: mt8183: fix refcount leak in mt8183mt6358ts3a227max98357devprobe The node returned by ofparsephandle with refcount incremented, ofnodeput needs be called when finish using it. So add it in the error path in...

SUSE CVE-2023-53153

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: Fix use after free for wext Key information in wext.connect is not reset on reconnect and can hold data from a previous connection. Reset key data to avoid that drivers or mac80211 incorrectly detect a WEP...

CVE-2023-53436 scsi: snic: Fix possible memory leak if device_add() fails

In the Linux kernel, the following vulnerability has been resolved: scsi: snic: Fix possible memory leak if deviceadd fails If deviceadd returns error, the name allocated by devsetname needs be freed. As the comment of deviceadd says, putdevice should be used to give up the reference in the error...

CVE-2022-50419 Bluetooth: hci_sysfs: Fix attempting to call device_add multiple times

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcisysfs: Fix attempting to call deviceadd multiple times deviceadd shall not be called multiple times as stated in its documentation: 'Do not call this routine or deviceregister more than once for any device structure...

DEBIAN-CVE-2022-50381

In the Linux kernel, the following vulnerability has been resolved: md: fix a crash in mempoolfree There's a crash in mempoolfree when running the lvm test shell/lvchange-rebuild-raid.sh. The reason for the crash is this: superwritten calls atomicdecandtest&mddev-pendingwrites and...

CVE-2022-50395

CVE-2022-50395 is a Linux kernel vulnerability where a memory leak occurs if keyring allocation fails in the integrity subsystem. The issue is triggered in integrity_init_keyring() when a keyring allocation error path is taken and the allocated key restriction is not freed. The connected advisori...

CVE-2022-50381

CVE-2022-50381 targets the Linux kernel mempool_free crash observed during mdend/mempool usage in environments such as EulerOS and Unity Linux. The root cause is a race between wake-up of pending_writes and the subsequent free of bios (bio) in mempool_free, where bio_put could race with other act...

PT-2025-38354

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak exists in the Linux kernel's tracing subsystem. When a tracing instance is removed, the error messages associated with that instance are not properly freed, leading to a...

PT-2025-38385

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak exists in the Linux kernel related to the use of the debugfs lookup function within the time/debug subsystem. Failing to call dput on the result of debugfs lookup leads to ...

PT-2025-38399

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue in the USB subsystem related to the sl811 driver. A memory leak occurs when using the debugfs lookup function without properly releasing the allocated...

PT-2025-38436

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the Bluetooth subsystem, specifically in the hci sysfs component. The device add function may be called multiple times, violating its documented...

PT-2025-38450

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue where the SCSI subsystem ses could attempt to manage an enclosure with no components. This could lead to an error if the driver tries to manage a...

PT-2025-38449

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A memory leak was resolved in the mt76 dma tx cleanup routine within the Linux kernel’s Wi-Fi subsystem. The fix addresses a memory leak that occurred during device unregistration and...

PT-2025-38421

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak was identified in the fbcon do set font function within the fbdev subsystem of the Linux kernel. The issue occurs when a buffer is newly allocated by fbcon set font and is...