Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from improper handling of device node reference counts in the delmtddevice function, which could lead to a memory lea...

PT-2025-40142

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.1.0-rc3+ 54 Description The Linux kernel contains a flaw in the del mtd device function related to reference counting. Specifically, the function calls of node put on a potentially cleared device node pointer,...

SUSE CVE-2023-53385

In the Linux kernel, the following vulnerability has been resolved: media: mdp3: Fix resource leaks in offinddevicebynode Use putdevice to release the object get through offinddevicebynode, avoiding resource leaks...

CVE-2023-53385

The CVE-2023-53385 issue relates to the Linux kernel: media: mdp3: Fix resource leaks in of_find_device_by_node. The fix adds release of the object obtained via of_find_device_by_node using put_device to prevent leaks. Public references point to upstream commits implementing this change. If explo...

Linux Distros Unpatched Vulnerability : CVE-2025-39930

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ASoC: simple-card-utils: Don't use freedevicenode at graphutilparsedai commit 419d1918105e...

Linux Distros Unpatched Vulnerability : CVE-2022-50199

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ARM: OMAP2+: Fix refcount leak in omapdssinitof omapdssfinddssofnode calls...

Malicious code in h1-cli-device-node (npm)

The package h1-cli-device-node was found to contain malicious code...

h1-cli-device-browser (>=1.0.1-alpha.0 <=1.0.1-alpha.1), h1-cli-device-node (>=1.0.1-alpha.0 <=1.0.1-alpha.1) potentially affected by unknown CVE via h1-cli-ext-root-openapi-generator (=1.0.1-alpha.1)

h1-cli-ext-root-openapi-generator NPM version =1.0.1-alpha.1 is affected by a known vulnerability. The following packages have a transitive dependency on h1-cli-ext-root-openapi-generator and may be impacted: - h1-cli-device-browser =1.0.1-alpha.0, =1.0.1-alpha.0, =1.0.1-alpha.1 Source cves:...

h1-cli-device-node (>=1.0.1-alpha.0 <=1.0.1-alpha.1) potentially affected by unknown CVE via h1-cli-ext-root-auth (=1.0.1-alpha.1)

h1-cli-ext-root-auth NPM version =1.0.1-alpha.1 is affected by a known vulnerability. The following packages have a transitive dependency on h1-cli-ext-root-auth and may be impacted: - h1-cli-device-node =1.0.1-alpha.0, =1.0.1-alpha.1 Source cves: unknown CVE Source advisory: OSV:MAL-2025-22080...

MAL-2025-22078 Malicious code in h1-cli-device-node (npm)

The package h1-cli-device-node was found to contain malicious code...

CVE-2025-20990

Improper access control in accessing system device node prior to SMR Aug-2025 Release 1 allows local attackers to access device identifier...

CVE-2025-20990

Improper access control in accessing system device node prior to SMR Aug-2025 Release 1 allows local attackers to access device identifier...

CVE-2025-20990

Improper access control in accessing system device node prior to SMR Aug-2025 Release 1 allows local attackers to access device identifier...

CVE-2022-50183

In the Linux kernel, the following vulnerability has been resolved: drm/meson: encodercvbs: Fix refcount leak in mesonencodercvbsinit ofgraphgetremotenode returns remote device nodepointer with refcount incremented, we should use ofnodeput on it when done. Add missing ofnodeput to avoid refcount...

CVE-2022-50199

In the Linux kernel, the following vulnerability has been resolved: ARM: OMAP2+: Fix refcount leak in omapdssinitof omapdssfinddssofnode calls offindcompatiblenode to get device node. offindcompatiblenode returns a node pointer with refcount incremented, we should use ofnodeput on it when done. A...

CVE-2022-50183

In the Linux kernel, the following vulnerability has been resolved: drm/meson: encodercvbs: Fix refcount leak in mesonencodercvbsinit ofgraphgetremotenode returns remote device nodepointer with refcount incremented, we should use ofnodeput on it when done. Add missing ofnodeput to avoid refcount...

CVE-2022-50199 ARM: OMAP2+: Fix refcount leak in omapdss_init_of

In the Linux kernel, the following vulnerability has been resolved: ARM: OMAP2+: Fix refcount leak in omapdssinitof omapdssfinddssofnode calls offindcompatiblenode to get device node. offindcompatiblenode returns a node pointer with refcount incremented, we should use ofnodeput on it when done. A...

CVE-2022-50199

Mode C: The CVE-2022-50199 issue affects the Linux kernel on ARM (OMAP2+). The root cause is a refcount leak in omapdss_init_of: omapdss_find_dss_of_node() calls of_find_compatible_node() which returns a node with a refcount incremented, but of_node_put() is not always called. The fix adds missin...

CVE-2022-50199 ARM: OMAP2+: Fix refcount leak in omapdss_init_of

In the Linux kernel, the following vulnerability has been resolved: ARM: OMAP2+: Fix refcount leak in omapdssinitof omapdssfinddssofnode calls offindcompatiblenode to get device node. offindcompatiblenode returns a node pointer with refcount incremented, we should use ofnodeput on it when done. A...

CVE-2022-50105 powerpc/spufs: Fix refcount leak in spufs_init_isolated_loader

In the Linux kernel, the following vulnerability has been resolved: powerpc/spufs: Fix refcount leak in spufsinitisolatedloader offindnodebypath returns remote device nodepointer with refcount incremented, we should use ofnodeput on it when done. Add missing ofnodeput to avoid refcount leak...