29 matches found
CVE-2023-54321 driver core: fix potential null-ptr-deref in device_add()
In the Linux kernel, the following vulnerability has been resolved: driver core: fix potential null-ptr-deref in deviceadd I got the following null-ptr-deref report while doing fault injection test: BUG: kernel NULL pointer dereference, address: 0000000000000058 CPU: 2 PID: 278 Comm: 37-i2c-ds248...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989704)
"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989704 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: gadget: Fix use-after-free bug by not setting udc-dev.driver The syzbot fuzzer found a...
EUVD-2009-0868
Malware in sbrugna...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987004)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987004 advisory. In the Linux kernel, the following vulnerability has been resolved: net: phy: fix null-ptr-deref while probe failed I got a null-ptr-deref report as following when...
EUVD-2022-47390
Malicious code in bioql PyPI...
CVE-2025-53141
CVE-2025-53141 refers to a null pointer dereference in the Windows Ancillary Function Driver for WinSock that can enable local privilege escalation for an authenticated user. The connected Windows-ecosystem data identifies this CVE as affecting the WinSock ancillary driver with a high base severi...
Linux Distros Unpatched Vulnerability : CVE-2022-34682
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer, where an unprivileged regular user can cause a null-pointer dereference,...
Linux Distros Unpatched Vulnerability : CVE-2025-38301
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: nvmem: zynqmpnvmem: unbreak driver after cleanup Commit 29be47fcd6a0 nvmem: zynqmpnvmem:...
CVE-2025-38420 wifi: carl9170: do not ping device which has failed to load firmware
In the Linux kernel, the following vulnerability has been resolved: wifi: carl9170: do not ping device which has failed to load firmware Syzkaller reports 1, 2 crashes caused by an attempts to ping the device which has failed to load firmware. Since such a device doesn't pass 'ieee80211registerhw...
CVE-2025-38301
In the Linux kernel, the following vulnerability has been resolved: nvmem: zynqmpnvmem: unbreak driver after cleanup Commit 29be47fcd6a0 "nvmem: zynqmpnvmem: zynqmpnvmemprobe cleanup" changed the driver to expect the device pointer to be passed as the "context", but in nvmem the context parameter...
CVE-2025-38301
CVE-2025-38301 affects the Linux kernel nvmem driver for zynqmp_nvmem; root cause: the driver expected a device pointer in context but nvmem_config.priv is never set, causing NULL pointer dereferences when accessing the device. A fix was committed to restore correct context handling (commit 29be4...
PT-2025-30868
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw in the ALSA subsystem related to the ad1816a driver. A potential NULL pointer dereference exists in the snd card ad1816a pnp function. The issue is...
CVE-2022-49984
A flaw was found in the hid-steam module in the Linux kernel. A NULL pointer dereference can be triggered when a malicious device fails to submit a feature report, resulting in a denial of service...
CVE-2021-25491
A vulnerability in mfc driver prior to SMR Oct-2021 Release 1 allows memory corruption via NULL-pointer dereference...
CVE-2025-23147
In the Linux kernel, the following vulnerability has been resolved: i3c: Add NULL pointer check in i3cmasterqueueibi The I3C master driver may receive an IBI from a target device that has not been probed yet. In such cases, the master calls i3cmasterqueueibi to queue an IBI work task, leading to...
CVE-2025-37792 Bluetooth: btrtl: Prevent potential NULL dereference
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btrtl: Prevent potential NULL dereference The btrtlinitialize function checks that rtlloadfile either had an error or it loaded a zero length file. However, if it loaded a zero length file then the error code is not se...
CVE-2025-37792 Bluetooth: btrtl: Prevent potential NULL dereference
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btrtl: Prevent potential NULL dereference The btrtlinitialize function checks that rtlloadfile either had an error or it loaded a zero length file. However, if it loaded a zero length file then the error code is not se...
Linux Distros Unpatched Vulnerability : CVE-2015-8551
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The PCI backend driver in Xen, when running on an x86 system and using Linux 3.1.x through 4.3.x as the driver domain, allows local guest administrators to hit...
CVE-2024-57834
In the Linux kernel, the following vulnerability has been resolved: media: vidtv: Fix a null-ptr-deref in vidtvmuxstopthread syzbot report a null-ptr-deref in vidtvmuxstopthread. 1 If dvb-mux is not initialized successfully by vidtvmuxinit in the vidtvstartstreaming, it will trigger null pointer...
CVE-2025-21676
In the Linux kernel, the following vulnerability has been resolved: net: fec: handle pagepooldevallocpages error The fecenetupdatecbd function calls pagepooldevallocpages but did not handle the case when it returned NULL. There was a WARNON!newpage but it would still proceed to use the NULL point...