14 matches found
PT-2026-52961
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists during device shutdown where the vfio pci core close device function may not revoke DMABUF access before the function is disabled via vfio pci core disable. This creates ...
PT-2026-51868
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak occurs in the net: tls component when tls set device offload rx fails during tls dev add. In this error path, the function tls sw free resources rx is called to clean up th...
SUSE CVE-2026-43467
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix crash when moving to switchdev mode When moving to switchdev mode when the device doesn't support IPsec, we try to clean up the IPsec resources anyway which causes the crash below, fix that by correctly checking for...
PT-2026-39128
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A crash occurs in the net/mlx5 component when transitioning to switchdev mode on devices that do not support IPsec. The issue is caused by the system attempting to clean up IPsec resourc...
xorg: xwayland: Use-after-free in Xkb client resource removal
A flaw was discovered in the X.Org X server’s X Keyboard Xkb extension when handling client resource cleanup. The software frees certain data structures without properly detaching related resources, leading to a use-after-free condition. This can cause memory corruption or a crash when affected...
Security update for the Linux Kernel
The SUSE Linux Enterprise Micro 6.0 and 6.1 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2023-53261: coresight: Fix memory leak in acpibuffer-pointer bsc1249770. CVE-2024-58090: sched/core: Prevent rescheduling when interrupts are disabled...
EUVD-2022-55324
Malicious code in bioql PyPI...
remoteproc: core: Cleanup acquired resources when rproc_handle_resources() fails in rproc_attach()
...
DEBIAN-CVE-2025-38419
In the Linux kernel, the following vulnerability has been resolved: remoteproc: core: Cleanup acquired resources when rprochandleresources fails in rprocattach When rproc-state = RPROCDETACHED and rprocattach is used to attach to the remote processor, if rprochandleresources returns a failure, th...
Qualcomm Chipsets 资源管理错误漏洞
Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A resource management error vulnerability exists in Qualcomm Chipsets that originates from a memory corruption that occurs when processing cleanup to free resources during a subsystem reboot...
CVE-2024-53092 virtio_pci: Fix admin vq cleanup by using correct info pointer
In the Linux kernel, the following vulnerability has been resolved: virtiopci: Fix admin vq cleanup by using correct info pointer vpmodernavqcleanup and vpdelvqs clean up admin vq resources by virtiopcivqinfo pointer. The info pointer of admin vq is stored in vpdev-adminvq.info instead of...
CVE-2021-47479 staging: rtl8712: fix use-after-free in rtl8712_dl_fw
In the Linux kernel, the following vulnerability has been resolved: staging: rtl8712: fix use-after-free in rtl8712dlfw Syzbot reported use-after-free in rtl8712dlfw. The problem was in race condition between r871xudevremove -ndoopen callback. It's easy to see from crash log, that driver accesses...
UBUNTU-CVE-2023-52569
In the Linux kernel, the following vulnerability has been resolved: btrfs: remove BUG after failure to insert delayed dir index item Instead of calling BUG when we fail to insert a delayed dir index item into the delayed node's tree, we can just release all the resources we have allocated/acquire...
The vulnerability of the Intel PROSet/Wireless WiFi connection utility arises from incomplete cleaning of temporary or auxiliary resources. This allows a malicious actor to disclose protected information or cause service failures.
The vulnerability of the Intel PROSet/Wireless WiFi networking connectivity tool exists due to incomplete cleanup of temporary or auxiliary resources. Exploiting this vulnerability can allow a malicious actor to disclose protected information or cause service failures...