DEBIAN-CVE-2022-50338

In the Linux kernel, the following vulnerability has been resolved: binder: fix UAF of alloc-vma in race with munmap In commit 720c24192404 "ANDROID: binder: change downwrite to downread" binder assumed the mmap read lock is sufficient to protect alloc-vma inside binderupdatepagerange. This used ...

CVE-2022-50338

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

UBUNTU-CVE-2022-50267

In the Linux kernel, the following vulnerability has been resolved: mmc: rtsxpci: fix return value check of mmcaddhost mmcaddhost may return error, if we ignore its return value, the memory that allocated in mmcallochost will be leaked and it will lead a kernel crash because of deleting not added...

UBUNTU-CVE-2023-53223

In the Linux kernel, the following vulnerability has been resolved: drm/msm/dsi: Add missing check for allocorderedworkqueue Add check for the return value of allocorderedworkqueue as it may return NULL pointer and cause NULL pointer dereference. Patchwork:...

CVE-2022-50338

...

CVE-2023-53223 drm/msm/dsi: Add missing check for alloc_ordered_workqueue

In the Linux kernel, the following vulnerability has been resolved: drm/msm/dsi: Add missing check for allocorderedworkqueue Add check for the return value of allocorderedworkqueue as it may return NULL pointer and cause NULL pointer dereference. Patchwork:...

CVE-2023-53223 drm/msm/dsi: Add missing check for alloc_ordered_workqueue

In the Linux kernel, the following vulnerability has been resolved: drm/msm/dsi: Add missing check for allocorderedworkqueue Add check for the return value of allocorderedworkqueue as it may return NULL pointer and cause NULL pointer dereference. Patchwork:...

CVE-2023-53223

The CVE-2023-53223 issue affects the Linux kernel component drm/msm/dsi where alloc_ordered_workqueue may return NULL. The vulnerability arises from a missing check of the return value, potentially leading to a NULL pointer dereference. A patch addressing this check has been published (Patchwork:...

CVE-2022-50278 PNP: fix name memory leak in pnp_alloc_dev()

In the Linux kernel, the following vulnerability has been resolved: PNP: fix name memory leak in pnpallocdev After commit 1fa5ae857bb1 "driver core: get rid of struct device's busid string array", the name of device is allocated dynamically, move devsetname after pnpaddid to avoid memory leak...

DEBIAN-CVE-2022-50245

In the Linux kernel, the following vulnerability has been resolved: rapidio: fix possible UAF when kfifoalloc fails If kfifoalloc fails in mportcdevopen, goto errfifo and just free priv. But priv is still in the chdev-filelist, then list traversal may cause UAF. This fixes the following smatch...

CVE-2022-50240 android: binder: stop saving a pointer to the VMA

In the Linux kernel, the following vulnerability has been resolved: android: binder: stop saving a pointer to the VMA Do not record a pointer to a VMA outside of the mmaplock for later use. This is unsafe and there are a number of failure paths after the recorded VMA pointer may be freed during...

CVE-2022-50240 android: binder: stop saving a pointer to the VMA

In the Linux kernel, the following vulnerability has been resolved: android: binder: stop saving a pointer to the VMA Do not record a pointer to a VMA outside of the mmaplock for later use. This is unsafe and there are a number of failure paths after the recorded VMA pointer may be freed during...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from an unchecked allocorderedworkqueue return value that could result in a null pointer dereference...

PT-2025-37664

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A missing check for the return value of alloc ordered workqueue can lead to a NULL pointer dereference within the drm/msm/dsi subsystem of the Linux kernel. The vulnerability is...

PT-2025-37640

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.10.150-00001-gdc8dcf942daa Description: A use-after-free UAF vulnerability exists within the binder component of the Linux kernel. The vulnerability occurs due to a race condition between binder update page...

PT-2025-37494

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.10.150-00001-gdc8dcf942daa Description: A use-after-free UAF vulnerability exists within the binder component of the Linux kernel. The vulnerability occurs due to a race condition between binder update page...

CVE-2025-39736

In the Linux kernel, the following vulnerability has been resolved: mm/kmemleak: avoid deadlock by moving prwarn outside kmemleaklock When netpoll is enabled, calling prwarnonce while holding kmemleaklock in mempoolalloc can cause a deadlock due to lock inversion with the netconsole subsystem. Th...

DEBIAN-CVE-2025-38697

In the Linux kernel, the following vulnerability has been resolved: jfs: upper bound check of tree index in dbAllocAG When computing the tree index in dbAllocAG, we never check if we are out of bounds realative to the size of the stree. This could happen in a scenario where the filesystem metadat...

iwlwifi: Add missing check for alloc_ordered_workqueue

...

CVE-2025-57615

An issue was discovered in rust-ffmpeg 0.3.0 after comit 5ac0527 An integer overflow vulnerability in the Vector::new constructor function allows an attacker to cause a denial of service via a null pointer dereference. The vulnerability stems from an unchecked cast of a usize parameter to cint,...