UBUNTU-CVE-2025-68235

In the Linux kernel, the following vulnerability has been resolved: nouveau/firmware: Add missing kfree of nvkmfalconfw::boot nvkmfalconfw::boot is allocated, but no one frees it. This causes a kmemleak warning. Make sure this data is deallocated...

CVE-2025-68235

CVE-2025-68235 involves the Linux kernel where the nouveau/firmware component allocated nvkm_falcon_fw::boot but did not free it, causing a kmemleak warning. The published fix deallocates the boot data (adding the missing kfree()), removing the leak. The Connected documents confirm this CVE is re...

Linux Distros Unpatched Vulnerability : CVE-2025-68193

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/xe/guc: Add devm release action to safely tear down CT When a buffer object BO is allocated with the XEBOFLAGGGTTINVALIDATE flag, the driver initiates TLB...

CVE-2025-40227

In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs: dealloc commit test ctx always The damonctx for testing online DAMON parameters commit inputs is deallocated only when the test fails. This means memory is leaked for every successful online DAMON parameters commi...

CVE-2025-40227

In the Linux kernel vulnerability CVE-2025-40227, the issue is in mm/damon/sysfs where the damon_ctx used for testing online DAMON parameters is deallocated only on test failure, causing memory leaks on every successful online DAMON parameters commit. The linked documents consistently describe th...

CVE-2025-40227 mm/damon/sysfs: dealloc commit test ctx always

In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs: dealloc commit test ctx always The damonctx for testing online DAMON parameters commit inputs is deallocated only when the test fails. This means memory is leaked for every successful online DAMON parameters commi...

kernel: RDMA/iwcm: Fix use-after-free of work objects after cm_id destruction

In the Linux kernel, the following vulnerability has been resolved: RDMA/iwcm: Fix use-after-free of work objects after cmid destruction The commit 59c68ac31e15 "iwcm: free cmid resources on the last deref" simplified cmid resource management by freeing cmid once all references to the cmid were...

PT-2025-47817

Name of the Vulnerable Software and Affected Versions thread-amount versions prior to 0.2.2 Description The thread-amount tool, used to determine the number of threads in a process, contains resource leaks when obtaining thread counts on Windows and Apple platforms. On Windows, the thread amount...

PT-2025-53007

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s scsi subsystem, specifically within the qla2xxx driver. The issue involves improper memory freeing of items allocated for processing I/O control block...

kernel: bpf: put bpf_link's program when link is safe to be deallocated

No description is available for this CVE...

kernel: ima: Fix potential memory leak in ima_init_crypto()

In the Linux kernel, the following vulnerability has been resolved: ima: Fix potential memory leak in imainitcrypto On failure to allocate the SHA1 tfm, IMA fails to initialize and exits without freeing the imaalgoarray. Add the missing kfree for imaalgoarray to avoid the potential memory leak...

usb: gadget: f_rndis: Refactor bind path to use __free()

...

Xen 安全漏洞

Xen is an open source virtual machine monitor product from Xen Open Source. The product enables different and incompatible operating systems to run on the same computer and supports runtime migration to ensure uptime and avoid downtime. A security vulnerability exists in Xen that stems from...

CVE-2025-40094

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: facm: Refactor bind path to use free After an bind/unbind cycle, the acm-notifyreq is left stale. If a subsequent bind fails, the unified error label attempts to free this stale request, leading to a NULL pointer...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from not properly freeing memory, which could lead to a memory leak...

Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices Improper Cleanup on Thrown Exception (CVE-2024-53059)

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: Fix response handling in iwlmvmsendrecoverycmd 1. The size of the response packet is not validated. 2. The response buffer is not freed. Resolve these issues by switching to iwlmvmsendcmdstatus, which handles...

CVE-2025-40002

In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Fix use-after-free in tbdpdprxwork The original code relies on canceldelayedwork in tbdpdprxstop, which does not ensure that the delayed work item tunnel-dprxwork has fully completed if it was already running. This...

PT-2025-42707

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a use-after-free issue within the thunderbolt driver, specifically in the tb dp dprx work function. The original code used cancel delayed work, which did not...

CVE-2025-39994

The CVE-2025-39994 issue is in the Linux kernel’s media tuner xc5000: the code path xc5000_release() used cancel_delayed_work(), risking use-after-free of xc5000_priv if timer_sleep is still active. The fix replaces cancel_delayed_work() with cancel_delayed_work_sync() to ensure the delayed work ...

GHSA-2PGJ-5CV2-6XXW FuelVM is vulnerable to heap memory allocation re-use bug

Impact A memory safety vulnerability was present in the Fuel Virtual Machine FuelVM, where memory reads could bypass expected access controls. Specifically, when a smart contract performed a mload or other opcodes which access memory on memory that had been deallocated using ret, it was still abl...