CVE-2020-35885

An issue was discovered in the alpm-rs crate through 2020-08-20 for Rust. StrcCtx performs improper memory deallocation...

UBUNTU-CVE-2025-37989

In the Linux kernel, the following vulnerability has been resolved: net: phy: leds: fix memory leak A network restart test on a router led to an out-of-memory condition, which was traced to a memory leak in the PHY LED trigger code. The root cause is misuse of the devm API. The registration...

kernel security update

4.18.0-553.52.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...

CVE-2023-53096

In the Linux kernel, the following vulnerability has been resolved: interconnect: fix mem leak when freeing nodes The node link array is allocated when adding links to a node but is not deallocated when nodes are destroyed...

CVE-2022-49895 cxl/region: Fix decoder allocation crash

In the Linux kernel, the following vulnerability has been resolved: cxl/region: Fix decoder allocation crash When an intermediate port's decoders have been exhausted by existing regions, and creating a new region with the port in question in it's hierarchical path is attempted, cxlportattachregio...

The vulnerability of Google Chrome browsers, related to memory usage after deallocation, allows attackers to compromise the confidentiality, integrity, and accessibility of data.

The vulnerability of Google Chrome relates to the use of memory after deallocation. Exploiting this vulnerability allows a remote attacker to compromise the confidentiality, integrity, and accessibility of data through a specially crafted HTML page...

The vulnerability of the SCSI component in the Linux operating system allows a hacker to gain elevated privileges within the system.

The vulnerability of the SCSI component in the Linux operating system is related to errors that occur after deallocation. Exploiting this vulnerability can allow an attacker to increase their privileges within the system...

The vulnerability of Google Chrome browsers, related to memory usage after deallocation, allows attackers to compromise the confidentiality, integrity, and accessibility of data.

The vulnerability of Google Chrome relates to the use of memory after deallocation. Exploiting this vulnerability can allow an attacker to compromise privacy, integrity, and accessibility of data...

The vulnerability of the Linux operating system’s kernel WiFi component, which allows a hacker to increase their privileges within the system

The vulnerability of the wilcparsejoinbssparam function in the Linux kernel-based WiFi component is related to errors that occur after deallocation. Exploiting this vulnerability can allow an attacker to gain elevated privileges within the system...

PT-2025-13283 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A memory leak bug has been identified in the Linux kernel, specifically in the ufx usb probe function. The error handling code in this function has several issues, including missing uf...

The vulnerability of the `atmel_pmecc_create_user()` function in the `drivers/mtd/nand/raw/atmel/pmecc.c` file of the Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the atmelpmecccreateuser function in the drivers/mtd/nand/raw/atmel/pmecc.c file of the Linux kernel is related to a recurrence of memory deallocation. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...

The vulnerability of the Microsoft Office suite relates to the possibility of exploiting memory after deallocation, allowing an attacker to execute arbitrary code.

The vulnerability of the Microsoft Office suite is related to the possibility of using memory after it is freed. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

Linux Distros Unpatched Vulnerability : CVE-2024-56786

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: bpf: put bpflink's program when link is safe to be deallocated In general, BPF link's...

PT-2025-14299

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A NULL pointer access issue has been resolved in the Linux kernel. The problem occurred because resources were being released prematurely, before all threads that utilized them had been...

Linux Distros Unpatched Vulnerability : CVE-2024-35860

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bpf: support deferring bpflink dealloc to after RCU grace period BPF link for some program types is passed as a context which can be used by those BPF programs ...

SUSE CVE-2022-49700

In the Linux kernel, the following vulnerability has been resolved: mm/slub: add missing TID updates on slab deactivation The fastpath in slaballocnode assumes that c-slab is stable as long as the TID stays the same. However, two places in slaballoc currently don't update the TID when deactivatin...

The vulnerability of the Input component in the Linux operating system’s kernel allows a hacker to gain elevated privileges within the system.

The vulnerability of the Input component in the Linux operating system’s kernel is related to memory management errors after deallocation. Exploiting this vulnerability can allow an attacker to gain elevated privileges within the system...

The vulnerability of the nilfs2 component in the Linux operating system’s kernel, which allows a hacker to cause a service failure

The vulnerability of the nilfs2 component in the Linux operating system’s kernel is related to errors that occur after deallocation. Exploiting this vulnerability can allow an attacker to cause a service failure...

SUSE CVE-2023-45802

When a HTTP/2 stream was reset RST frame by a client, there was a time window were the request's memory resources were not reclaimed immediately. Instead, de-allocation was deferred to connection close. A client could send new requests and resets, keeping the connection busy and open and causing...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: drm/msm/a6xx: Avoid a nullptr dereference when the speedbin setting fails Calling a6xxdestroy before adrenogpuinit leads to a null pointer dereference on msmgpucleanup: platformsetdrvdatagpu-pdev, NULL; This occurs because...