CVE-2025-40202

The CVE-2025-40202 entry concerns a Linux kernel vulnerability in ipmi message limit handling. The issue involves improper counting of the number of user messages and a use-after-free scenario, addressed by restructuring the receive message allocation routine so refcounting and user message limit...

CVE-2022-49504

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Inhibit aborts if external loopback plug is inserted After running a short external loopback test, when the external loopback is removed and a normal cable inserted that is directly connected to a target device, the...

CVE-2023-0240

A logic error was found in the iouring subsystem of the Linux kernel. This issue occurs due to an incorrect assumption that the last iograbidentity call could not return false in the ioprepasyncwork function, leading to reference counting issues and a use-after-free issue. This could allow a loca...

CVE-2023-0240

There is a logic error in iouring's implementation which can be used to trigger a use-after-free vulnerability leading to privilege escalation. In the ioprepasyncwork function the assumption that the last iograbidentity call cannot return false is not true, and in this case the function will use...