CVE-2022-49932

In the Linux kernel, the following vulnerability has been resolved: KVM: VMX: Do all initialization before exposing /dev/kvm to userspace Call kvminit only after all setup is complete, as kvminit exposes /dev/kvm to userspace and thus allows userspace to create VMs and call other ioctls. E.g. KVM...

DEBIAN-CVE-2022-49932

In the Linux kernel, the following vulnerability has been resolved: KVM: VMX: Do all initialization before exposing /dev/kvm to userspace Call kvminit only after all setup is complete, as kvminit exposes /dev/kvm to userspace and thus allows userspace to create VMs and call other ioctls. E.g. KVM...

UBUNTU-CVE-2023-53045

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: uaudio: don't let userspace block driver unbind In the unbind callback for fuac1 and fuac2, a call to sndcardfree via gaudiocleanup will disconnect the card and then wait for all resources to be released, which happe...

CVE-2023-53045 usb: gadget: u_audio: don't let userspace block driver unbind

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: uaudio: don't let userspace block driver unbind In the unbind callback for fuac1 and fuac2, a call to sndcardfree via gaudiocleanup will disconnect the card and then wait for all resources to be released, which happe...

CVE-2023-53045 usb: gadget: u_audio: don't let userspace block driver unbind

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: uaudio: don't let userspace block driver unbind In the unbind callback for fuac1 and fuac2, a call to sndcardfree via gaudiocleanup will disconnect the card and then wait for all resources to be released, which happe...

CVE-2023-53045

CVE-2023-53045 is mitigated in the Linux kernel via a fix to the USB gadget driver (usb: gadget: u_audio). In the unbind callback for f_uac1/f_uac2, a call to snd_card_free() could block waiting for resources to be released if userspace kept the file descriptor open, potentially causing a deadloc...

CVE-2022-49932

CVE-2022-49932 affects the Linux kernel KVM/vMX path where /dev/kvm is exposed before VMX initialization is complete. The EulerOS advisories (EulerOS-SA-2025-2464/2483, EulerOS-SA-2025-2436/2447) flag this issue as part of kernel fixes and describe the root cause as incomplete initialization prio...

CVE-2022-49932 KVM: VMX: Do _all_ initialization before exposing /dev/kvm to userspace

In the Linux kernel, the following vulnerability has been resolved: KVM: VMX: Do all initialization before exposing /dev/kvm to userspace Call kvminit only after all setup is complete, as kvminit exposes /dev/kvm to userspace and thus allows userspace to create VMs and call other ioctls. E.g. KVM...

CVE-2022-49852 riscv: process: fix kernel info leakage

In the Linux kernel, the following vulnerability has been resolved: riscv: process: fix kernel info leakage threadstruct's s12 may contain random kernel memory content, which may be finally leaked to userspace. This is a security hole. Fix it by clearing the s12 array in threadstruct when fork. A...

CVE-2022-49771 dm ioctl: fix misbehavior if list_versions races with module loading

In the Linux kernel, the following vulnerability has been resolved: dm ioctl: fix misbehavior if listversions races with module loading listversions will first estimate the required space using the "dmtargetiteratelistversiongetneeded, &needed" call and then will fill the space using the...

kernel: wifi: cfg80211: restrict NL80211_ATTR_TXQ_QUANTUM values

A vulnerability was found in the cfg80211 component in the Linux kernel, where a lack of proper range validation applied to the NL80211ATTRTXQQUANTUM can lead to a scenario where the userspace passes an extremely high value that the kernel is not designed to handle efficiently ex. 2^31. This can...

Ubuntu 24.04 LTS : Linux kernel (Azure, N-Series) vulnerabilities (USN-7468-1)

"The remote Ubuntu 24.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7468-1 advisory. Michael Randrianantenaina discovered that the Bluetooth driver in the Linux Kernel contained an improper access control vulnerability. A nearby attacker...

CVE-2024-45540

Memory corruption while invoking IOCTL map buffer request from userspace...

CVE-2025-0050

Arm Mali GPU drivers (Bifrost, Valhall, and Arm 5th Gen) expose CVE-2025-0050: Improper memory buffer bound checks allow a non-privileged process to perform GPU operations (including via WebGL/WebGPU) outside of buffer bounds. Affected: Bifrost userspace driver r0p0–r49p2 and r50p0–r51p0; Valhall...

CVE-2025-0050 Mali GPU Userspace Driver allows an Out-of-Bounds access

Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Arm Ltd Bifrost GPU Userspace Driver, Arm Ltd Valhall GPU Userspace Driver, Arm Ltd Arm 5th Gen GPU Architecture Userspace Driver allows a non-privileged user process to make valid GPU processing operations,...

CVE-2024-45540 Use After Free in HLOS

Memory corruption while invoking IOCTL map buffer request from userspace...

ARM多款产品 安全漏洞

ARM 5th Gen GPU Architecture Kernel Driver and ARM Bifrost GPU Userspace Driver are both products of ARM, U.K. ARM 5th Gen GPU Architecture Kernel Driver is a GPU kernel driver.ARM ARM 5th Gen GPU Architecture Kernel Driver is a GPU kernel driver and ARM Bifrost GPU Userspace Driver is a userspac...

SUSE CVE-2025-21926

In the Linux kernel, the following vulnerability has been resolved: net: gso: fix ownership in udpgsosegment In udpgsosegment the skb destructor is removed before segmenting the skb but the socket reference is kept as-is. This is an issue if the original skb is later orphaned as we can hit the...

AZL-60258 CVE-2025-21996 affecting package kernel for versions less than 6.6.85.1-2

In the Linux kernel, the following vulnerability has been resolved: drm/radeon: fix uninitialized size issue in radeonvcecsparse On the off chance that command stream passed from userspace via ioctl call to radeonvcecsparse is weirdly crafted and first command to execute is to encode case...

UBUNTU-CVE-2025-21926

In the Linux kernel, the following vulnerability has been resolved: net: gso: fix ownership in udpgsosegment In udpgsosegment the skb destructor is removed before segmenting the skb but the socket reference is kept as-is. This is an issue if the original skb is later orphaned as we can hit the...