openssl: Possible DoS translating ASN.1 object identifiers

A flaw was found in OpenSSL resulting in a possible denial of service while translating ASN.1 object identifiers. Applications that use OBJobj2txt directly, or use any of the OpenSSL subsystems OCSP, PKCS7/SMIME, CMS, CMP/CRMF or TS with no message size limit may experience long delays when...

kernel: Linux kernel KVM: Denial of Service due to incorrect kvm_arm_init failure handling in finalize_pkvm

A flaw was found in the Linux kernel's Kernel-based Virtual Machine KVM for arm64 architectures. This vulnerability arises from a lack of synchronization between the finalizepkvm and kvmarminit initialization calls. A local attacker with low privileges could exploit this by triggering a scenario...

kernel: Linux kernel: Denial of Service due to xfrm resource leak

A flaw was found in the Linux kernel. A local attacker with low privileges could exploit a resource leak vulnerability within the xfrm subsystem. This occurs because a network device netdev reference tracker is incorrectly released during direction checks. Successful exploitation can lead to a...

kernel: HID: check empty report_list in hid_validate_values()

A memory corruption flaw was found in the Linux kernel’s human interface device HID subsystem in how a user inserts a malicious USB device. This flaw allows a local user to crash or potentially escalate their privileges on the system...

kernel: drm/virtio: Check whether transferred 2D BO is shmem

A flaw was found in the Linux kernel networking subsystem. Under certain conditions, a pointer may be dereferenced without proper validation, resulting in a NULL pointer dereference. An unprivileged local user could trigger this flaw by exercising the affected networking functionality, causing a...

kernel: bpf: Fix wrong reg type conversion in release_reference()

A flaw was found in the eBPF subsystem in the Linux kernel. When a resource is released, the pointer registers related to the resource are incorrectly converted to the wrong type, allowing kernel pointers to be exposed to unprivileged users...

kernel: vfio: Fix NULL pointer dereference caused by uninitialized group->iommufd

A NULL pointer dereference was found in the VFIO subsystem. When a VFIO group operation fails before group-iommufd is initialized, the cleanup path calls iommufdctxput with a NULL pointer, causing a kernel crash...

kernel: drm/i915/perf: add sentinel to xehp_oa_b_counters

A bounds-checking error was found in the Linux kernel Intel i915 graphics driver's performance monitoring subsystem. A local user with access to Intel GPU performance counters can trigger address validation for observability architecture counters on Xe-HP and newer hardware, causing the driver to...

kernel: scsi: mpi3mr: Fix mpi3mr_hba_port memory leak in mpi3mr_remove()

A flaw was found in the mpi3mr module in the Linux kernel. The missing release of memory allocated for mpi3mrhbaport will cause a memory leak, potentially impacting system stability and resulting in a denial of service...

kernel: Linux kernel: Network subsystem memory leak

A flaw was found in the Linux kernel. This vulnerability allows an attacker to cause a denial of service via a memory leak caused by improper handling of skb socket buffer cloning in the network subsystem...

kernel: ASoC: lpass: Fix for KASAN use_after_free out of bounds

In the Linux kernel, the following vulnerability has been resolved: ASoC: lpass: Fix for KASAN useafterfree out of bounds When we run syzkaller we get below Out of Bounds error. "KASAN: slab-out-of-bounds Read in regcacheflatread" Below is the backtrace of the issue: BUG: KASAN: slab-out-of-bound...

kernel: scsi: Revert "scsi: core: Do not increase scsi_device's iorequest_cnt if dispatch failed"

A use-after-free flaw was found in the Linux kernel's SCSI subsystem in the command dispatch error handling. A local user can trigger this issue through specific SCSI device operations that cause dispatch failures, where the code attempts to increment a reference counter on a device structure tha...

kernel: ASoC: fsl_mqs: move of_node_put() to the correct location

In the Linux kernel, the following vulnerability has been resolved: ASoC: fslmqs: move ofnodeput to the correct location ofnodeput should have been done directly after mqspriv-regmap = sysconnodetoregmapgprnp; otherwise it creates a reference leak on the success path. To fix this, ofnodeput is...

kernel: net: fix NULL pointer in skb_segment_list

A flaw was found in the Linux kernel's net subsystem. A NULL pointer dereference can be triggered when a specific sequence of network events occurs due to an improper check, resulting in a denial of service...

kernel: ALSA: hda/via: Avoid potential array out-of-bound in add_secret_dac_path()

A vulnerability was found in the Linux kernel's ALSA subsystem in the addsecretdacpath function, where improper array handling can lead to out-of-bounds access. This occurs if the return value of the call to sndhdagetconnections returns an error code a negative number, which is stored in the...

PT-2025-38392

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak exists when using the debugfs lookup function in the USB ULPI subsystem. The result of calling debugfs lookup requires dput to be called on it to prevent memory leaks over...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2023:4375-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:4375-1 advisory. - Incorrect verifier pruning in BPF in Linux Kernel =5.4 leads to unsafe code paths being...

A use-after-free vulnerability was found in the Netfilter subsystem of the Linux kernel when processing batch requests to update nf_tables configuration. (CVE-2023-32233)

In the Linux kernel through 6.3.1, a use-after-free in Netfilter nftables when processing batch requests can be abused to perform arbitrary read and write operations on kernel memory. Unprivileged local users can obtain root privileges. This occurs because anonymous sets are mishandled...

Fedora 39 : kernel (2023-c3bb819677)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-c3bb819677 advisory. The 6.5.6 stable kernel update contains a number of important fixes across the tree. Tenable has extracted the preceding description block directly...

PT-2024-14720 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A bounds checking issue in the Linux kernel's scheduling subsystem has been identified, where the priority index used to access clpriop was not explicitly bounds checked...