1712 matches found
PT-2025-37976
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.17.0-rc2-virtme 134 Description: The fbnic driver had an issue where phylink resume was invoked as part of the fbnic up path while not holding the RTNL lock. This could lead to locking assertions during PM...
UBUNTU-CVE-2022-50303
In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix double release compute pasid If kfdprocessdeviceinitvm returns failure after vm is converted to compute vm and vm-pasid set to compute pasid, KFD will not take pdd-drmfile reference. As a result, drm close file...
CVE-2022-50241
In the Linux kernel, the following vulnerability has been resolved: NFSD: fix use-after-free on source server when doing inter-server copy Use-after-free occurred when the laundromat tried to free expired cpntfstate entry on the s2scpstateids list after inter-server copy completed. The sccplist...
CVE-2022-50241 NFSD: fix use-after-free on source server when doing inter-server copy
In the Linux kernel, the following vulnerability has been resolved: NFSD: fix use-after-free on source server when doing inter-server copy Use-after-free occurred when the laundromat tried to free expired cpntfstate entry on the s2scpstateids list after inter-server copy completed. The sccplist...
CVE-2025-57573
Tenda F3 V12.01.01.48multi and after is vulnerable to Buffer Overflow via the wifiTimeClose parameter in goform/setWifi...
CVE-2025-8007
A security issue exists in the protected mode of 1756-EN4TR and 1756-EN2TR communication modules, where a Concurrent Forward Close operation can trigger a Major Non-Recoverable MNFR fault. This condition may lead to unexpected system crashes and loss of device availability...
CVE-2025-8008
A security issue exists in the protected mode of EN4TR devices, where sending specifically crafted messages during a Forward Close operation can cause the device to crash...
kernel: tipc: Fix use-after-free in tipc_conn_close()
In the Linux kernel, the following vulnerability has been resolved: tipc: Fix use-after-free in tipcconnclose. syzbot reported a null-ptr-deref in tipcconnclose during netns dismantle. 0 tipctopsrvstop iterates tipcnetnet-topsrv-connidr and calls tipcconnclose for each tipcconn. The problem is th...
kernel: tipc: Fix use-after-free in tipc_conn_close()
In the Linux kernel, the following vulnerability has been resolved: tipc: Fix use-after-free in tipcconnclose. syzbot reported a null-ptr-deref in tipcconnclose during netns dismantle. 0 tipctopsrvstop iterates tipcnetnet-topsrv-connidr and calls tipcconnclose for each tipcconn. The problem is th...
kernel: udp: Fix memory accounting leak.
A memory overflow vulnerability exists within the Linux kernel's networking subsystem. Specifically, an application can set the SORCVBUF socket option to its maximum value INTMAX, which triggers an integer overflow within the udprmemrelease function during socket closure. The udpdestructcommon...
kernel: tipc: Fix use-after-free in tipc_conn_close()
In the Linux kernel, the following vulnerability has been resolved: tipc: Fix use-after-free in tipcconnclose. syzbot reported a null-ptr-deref in tipcconnclose during netns dismantle. 0 tipctopsrvstop iterates tipcnetnet-topsrv-connidr and calls tipcconnclose for each tipcconn. The problem is th...
kernel: udp: Fix memory accounting leak.
A memory overflow vulnerability exists within the Linux kernel's networking subsystem. Specifically, an application can set the SORCVBUF socket option to its maximum value INTMAX, which triggers an integer overflow within the udprmemrelease function during socket closure. The udpdestructcommon...
kernel: tipc: Fix use-after-free in tipc_conn_close()
In the Linux kernel, the following vulnerability has been resolved: tipc: Fix use-after-free in tipcconnclose. syzbot reported a null-ptr-deref in tipcconnclose during netns dismantle. 0 tipctopsrvstop iterates tipcnetnet-topsrv-connidr and calls tipcconnclose for each tipcconn. The problem is th...
kernel: udp: Fix memory accounting leak.
A memory overflow vulnerability exists within the Linux kernel's networking subsystem. Specifically, an application can set the SORCVBUF socket option to its maximum value INTMAX, which triggers an integer overflow within the udprmemrelease function during socket closure. The udpdestructcommon...
CVE-2025-57573
Tenda F3 V12.01.01.48multi and after is vulnerable to Buffer Overflow via the wifiTimeClose parameter in goform/setWifi...
CVE-2025-57573
Tenda F3 V12.01.01.48multi and after is vulnerable to Buffer Overflow via the wifiTimeClose parameter in goform/setWifi...
PT-2025-37062
Name of the Vulnerable Software and Affected Versions: Tenda F3 versions 12.01.01.48 and after Description: The Tenda F3 is susceptible to a buffer overflow issue through the wifiTimeClose parameter in the goform/setWifi endpoint. Recommendations: Update to a newer version that addresses this...
CVE-2025-57573
Tenda F3 V12.01.01.48multi and after is vulnerable to Buffer Overflow via the wifiTimeClose parameter in goform/setWifi...
CVE-2025-57573
CVE-2025-57573 affects Tenda F3 routers (V12.01.01.48 and later) via goform/setWifi, where an input length validation issue in the wifiTimeClose parameter can trigger a buffer overflow. Documented impact is denial of service; exploitability details are not provided in the core sources, but PT-202...
CVE-2025-8007
A security issue exists in the protected mode of 1756-EN4TR and 1756-EN2TR communication modules, where a Concurrent Forward Close operation can trigger a Major Non-Recoverable MNFR fault. This condition may lead to unexpected system crashes and loss of device availability...