Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the rkcanfdhandlerxfifooverflowint function failing to properly handle a skb allocation failure, which could...

DEBIAN-CVE-2022-49417

In the Linux kernel, the following vulnerability has been resolved: iwlwifi: mei: fix potential NULL-ptr deref If SKB allocation fails, continue rather than using the NULL pointer. Coverity CID: 1497650...

CVE-2022-49500

CVE-2022-49500 describes a Linux kernel issue affecting the wl1251 driver where memory allocated for DMA was done in a way that conflicts with vmap’ed stacks, leading to kernel panics. The vulnerability is documented as impacting the wl1251 paths (e.g., via SDIO) and rendering affected devices (s...

CVE-2022-49292

CVE-2022-49292 is tied to the Linux kernel ALSA oss PCM buffer allocation overflow. The vulnerability occurs when snd_pcm_plug_alloc() may allocate an oversized temporary buffer during data conversion if hardware parameters allow larger-than-expected period/buffer sizes, risking an INT_MAX overfl...

CVE-2022-49292

In the Linux kernel, the following vulnerability has been resolved: ALSA: oss: Fix PCM OSS buffer allocation overflow We've got syzbot reports hitting INTMAX overflow at vmalloc allocation that is called from sndpcmplugalloc. Although we apply the restrictions to input parameters, it's based only...

CVE-2022-49292 ALSA: oss: Fix PCM OSS buffer allocation overflow

In the Linux kernel, the following vulnerability has been resolved: ALSA: oss: Fix PCM OSS buffer allocation overflow We've got syzbot reports hitting INTMAX overflow at vmalloc allocation that is called from sndpcmplugalloc. Although we apply the restrictions to input parameters, it's based only...

CVE-2021-47655

CVE-2021-47655 affects the Linux kernel component media: venus: vdec. The root cause is a memory-leak risk in venus_helper_alloc_dpb_bufs() where an early return on an error path (ida_alloc_min()) could skip releasing previously allocated buffers. The fix moves the direct kfree() from the dma_all...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a PCM OSS buffer allocation that could lead to an overflow...

PT-2025-7966 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A memory leak issue has been resolved in the Linux kernel. The issue occurred in the venus helper alloc dpb bufs implementation, where an early return on an error path could prevent th...

CVE-2024-45776

CVE-2024-45776 affects GRUB2’s language handling (grub_mofile_open): reading a language .mo file can overflow the internal buffer during allocation due to an unchecked integer overflow, leading to out-of-bounds reads/writes. Consequences described in the sources include leakage of sensitive data ...

PT-2025-6689 · Grub2 +5 · Grub2 +5

Name of the Vulnerable Software and Affected Versions: GRUB2 affected versions not specified Description: The issue arises when reading the language .mo file in grub mofile open, where GRUB2 fails to verify an integer overflow when allocating its internal buffer. A crafted .mo file may lead the...

CVE-2020-13545

An exploitable signed conversion vulnerability exists in the TextMaker document parsing functionality of SoftMaker Office 2021’s TextMaker application. A specially crafted document can cause the document parser to miscalculate a length used to allocate a buffer, later upon usage of this buffer th...

SUSE CVE-2024-56639

In the Linux kernel, the following vulnerability has been resolved: net: hsr: must allocate more bytes for RedBox support Blamed commit forgot to change hsrinitskb to allocate larger skb for RedBox case. Indeed, sendhsrsupervisionframe will add two additional components struct hsrsuptlv and struc...

PT-2026-2477

Name of the Vulnerable Software and Affected Versions Node.js affected versions not specified Description A flaw exists in the Node.js software platform related to improper handling of exceptional states. Exploitation may allow a remote attacker to cause a denial-of-service condition. Specificall...

PT-2026-4945

Name of the Vulnerable Software and Affected Versions OpenSSL versions 3.3 through 3.6 Description A TLS 1.3 connection utilizing certificate compression can be manipulated to allocate a substantial buffer prior to decompression, bypassing the configured certificate size limit. This can lead to...

CVE-2024-56572

In the Linux kernel, the following vulnerability has been resolved: media: platform: allegro-dvt: Fix possible memory leak in allocatebuffersinternal The buffer in the loop should be released under the exception path, otherwise there may be a memory leak here. To mitigate this, free the buffer wh...

CVE-2024-53213

A double free vulnerability was found in the Linux kernel. In lan78xxprobe, the buf buffer is freed twice: once implicitly through usbfreeurbdev-urbintr with the URBFREEBUFFER flag and again explicitly by kfreebuf, resulting in loss of availability of the system. Mitigation Mitigation for this...

DEBIAN-CVE-2024-56639

In the Linux kernel, the following vulnerability has been resolved: net: hsr: must allocate more bytes for RedBox support Blamed commit forgot to change hsrinitskb to allocate larger skb for RedBox case. Indeed, sendhsrsupervisionframe will add two additional components struct hsrsuptlv and struc...

DEBIAN-CVE-2024-56572

In the Linux kernel, the following vulnerability has been resolved: media: platform: allegro-dvt: Fix possible memory leak in allocatebuffersinternal The buffer in the loop should be released under the exception path, otherwise there may be a memory leak here. To mitigate this, free the buffer wh...

CVE-2024-56572

In the Linux kernel, the following vulnerability has been resolved: media: platform: allegro-dvt: Fix possible memory leak in allocatebuffersinternal The buffer in the loop should be released under the exception path, otherwise there may be a memory leak here. To mitigate this, free the buffer wh...