CVE-2023-54207

In the Linux kernel, the following vulnerability has been resolved: HID: uclogic: Correct devm device reference for hidinput inputdev name Reference the HID device rather than the input device for the devm allocation of the inputdev name. Referencing the inputdev would lead to a use-after-free wh...

PT-2025-53954

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak exists in the qcom add sysmon subdev function within the remoteproc sysmon component. The function fails to free allocated memory when of irq get byname or devm request...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992497)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992497 advisory. In the Linux kernel, the following vulnerability has been resolved: i2c: mux: reg: check return value after calling platformgetresource It will cause null-ptr-deref ...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992280)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992280 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: gadget: aspeed: Add NULL pointer check in astvhubinitdev The variable d-name, returned by...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992640)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992640 advisory. In the Linux kernel, the following vulnerability has been resolved: i2c: npcm: disable interrupt enable bit before devmrequestirq The customer reports that there is ...

PT-2025-54057

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A resource leak exists in the regulator subsystem related to the raa215300 driver. Specifically, memory allocated by clk register clkdev and resources allocated by clk register fixed rat...

PT-2025-54050

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to memory management and resource handling within the imx93 clock driver. Specifically, the probe function does not properly release hardware...

PT-2025-54136

In the Linux kernel, the following vulnerability has been resolved: thermal/drivers/mediatek: Use devm of iomap to avoid resource leak in mtk thermal probe Smatch reports: 1. mtk thermal probe warn: 'apmixed base' from of iomap not released. 2. mtk thermal probe warn: 'auxadc base' from of iomap...

EUVD-2023-60282

In the Linux kernel, the following vulnerability has been resolved: spmi: Add a check for remove callback when removing a SPMI driver When removing a SPMI driver, there can be a crash due to NULL pointer dereference if it does not have a remove callback defined. This is one such call trace observ...

CVE-2023-54097

In the Linux kernel, the following vulnerability has been resolved: regulator: stm32-pwr: fix ofiomap leak Smatch reports: drivers/regulator/stm32-pwr.c:166 stm32pwrregulatorprobe warn: 'base' from ofiomap not released on lines: 151,166. In stm32pwrregulatorprobe, base is not released when...

CVE-2023-54044

In the Linux kernel, the following vulnerability has been resolved: spmi: Add a check for remove callback when removing a SPMI driver When removing a SPMI driver, there can be a crash due to NULL pointer dereference if it does not have a remove callback defined. This is one such call trace observ...

UBUNTU-CVE-2023-54097

In the Linux kernel, the following vulnerability has been resolved: regulator: stm32-pwr: fix ofiomap leak Smatch reports: drivers/regulator/stm32-pwr.c:166 stm32pwrregulatorprobe warn: 'base' from ofiomap not released on lines: 151,166. In stm32pwrregulatorprobe, base is not released when...

CVE-2023-54097 regulator: stm32-pwr: fix of_iomap leak

In the Linux kernel, the following vulnerability has been resolved: regulator: stm32-pwr: fix ofiomap leak Smatch reports: drivers/regulator/stm32-pwr.c:166 stm32pwrregulatorprobe warn: 'base' from ofiomap not released on lines: 151,166. In stm32pwrregulatorprobe, base is not released when...

CVE-2023-54097

CVE-2023-54097 (Linux kernel) affects the regulator subsystem, specifically the stm32-pwr regulator driver. The issue is an of_iomap() leak in stm32_pwr_regulator_probe() that can leak the mapped base address if memory allocation or regulator registration fails. The fix replaces of_iomap() with d...

CVE-2023-54044

Technical details about CVE-2023-54044 (Linux spmi remove callback crash) are not publicly provided in the supplied documents; monitor for updates.

CVE-2023-54044 spmi: Add a check for remove callback when removing a SPMI driver

In the Linux kernel, the following vulnerability has been resolved: spmi: Add a check for remove callback when removing a SPMI driver When removing a SPMI driver, there can be a crash due to NULL pointer dereference if it does not have a remove callback defined. This is one such call trace observ...

PT-2025-53174

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a memory leak in the stm32-pwr regulator driver. Specifically, the of iomap function in stm32 pwr regulator probe does not release allocated memory when devm...

SUSE CVE-2025-68172

In the Linux kernel, the following vulnerability has been resolved: crypto: aspeed - fix double free caused by devm The clock obtained via devmclkgetenabled is automatically managed by devres and will be disabled and freed on driver detach. Manually calling clkdisableunprepare in error path and...

EUVD-2025-203715

In the Linux kernel, the following vulnerability has been resolved: drm/radeon: Remove calls to drmputdev Since the allocation of the drivers main structure was changed to devmdrmdevalloc drmputdev'ing to trigger it to be free'd should be done by devres. However, drmputdev is still in the probe...

EUVD-2025-203726

In the Linux kernel, the following vulnerability has been resolved: drm/radeon: Do not kfree devres managed rdev Since the allocation of the drivers main structure was changed to devmdrmdevalloc rdev is managed by devres and we shouldn't be calling kfree on it. This fixes things exploding if the...