15 matches found
CVE-2026-53025 greybus: raw: fix use-after-free on cdev close
In the Linux kernel, the following vulnerability has been resolved: greybus: raw: fix use-after-free on cdev close This addresses a use-after-free bug when a raw bundle is disconnected but its chardev is still opened by an application. When the application releases the cdev, it causes the followi...
PT-2026-51919
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free issue exists in the greybus raw component. The problem occurs when a raw bundle is disconnected while its character device chardev remains open by an application. Becaus...
Astra Linux – Vulnerability in Linux 5.10, Linux
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fhid: fixed the lifetime of fhidg relative to cdev The embedded struct cdev does not correctly tie its lifetime to the surrounding struct fhidg. As a result, there is a use-after-free scenario when /dev/hidgN is kept...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013723)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013723 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fhid: fix fhidg lifetime vs cdev The embedded struct cdev does not have its lifetime...
CVE-2026-23096
In the Linux kernel, the following vulnerability has been resolved: uacce: fix cdev handling in the cleanup path When cdevdeviceadd fails, it internally releases the cdev memory, and if cdevdevicedel is then executed, it will cause a hang error. To fix it, we check the return value of cdevdevicea...
CVE-2026-23096
In the Linux kernel, the following vulnerability has been resolved: uacce: fix cdev handling in the cleanup path When cdevdeviceadd fails, it internally releases the cdev memory, and if cdevdevicedel is then executed, it will cause a hang error. To fix it, we check the return value of cdevdevicea...
UBUNTU-CVE-2026-23096
In the Linux kernel, the following vulnerability has been resolved: uacce: fix cdev handling in the cleanup path When cdevdeviceadd fails, it internally releases the cdev memory, and if cdevdevicedel is then executed, it will cause a hang error. To fix it, we check the return value of cdevdevicea...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992841)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992841 advisory. In the Linux kernel, the following vulnerability has been resolved: chardev: fix error handling in cdevdeviceadd While doing fault injection test, I got the followin...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992163)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992163 advisory. In the Linux kernel, the following vulnerability has been resolved: chardev: fix error handling in cdevdeviceadd While doing fault injection test, I got the followin...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992306)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992306 advisory. In the Linux kernel, the following vulnerability has been resolved: chardev: fix error handling in cdevdeviceadd While doing fault injection test, I got the followin...
EUVD-2022-55573
Malicious code in bioql PyPI...
SUSE CVE-2022-50282
In the Linux kernel, the following vulnerability has been resolved: chardev: fix error handling in cdevdeviceadd While doing fault injection test, I got the following report: ------------ cut here ------------ kobject: 'null' 0000000039956980: is not initialized, yet kobjectput is being called...
Linux Distros Unpatched Vulnerability : CVE-2022-50282
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - chardev: fix error handling in cdevdeviceadd While doing fault injection test, I got the following report: ------------ cut here ------------ kobject: 'null'...
CVE-2022-50282 chardev: fix error handling in cdev_device_add()
In the Linux kernel, the following vulnerability has been resolved: chardev: fix error handling in cdevdeviceadd While doing fault injection test, I got the following report: ------------ cut here ------------ kobject: 'null' 0000000039956980: is not initialized, yet kobjectput is being called...
PT-2023-33731 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.16 Description: The issue concerns error handling in the cdev device add function. It was introduced in version v4.12 and is fixed in Linux Kernel version v6.0.16. The actual impact and attack plausibility...