CVE-2022-50565

CVE-2022-50565 affects the Linux kernel (wifi: plfxlc) and describes a potential memory leak in __lf_x_usb_enable_rx(), where urbs were not freed on exception paths. The mitigation adds a kfree() for urbs within the error label, and the patch was tested for compilation. Exploitation specifics, af...

CVE-2022-50565 wifi: plfxlc: fix potential memory leak in __lf_x_usb_enable_rx()

In the Linux kernel, the following vulnerability has been resolved: wifi: plfxlc: fix potential memory leak in lfxusbenablerx urbs does not be freed in exception paths in lfxusbenablerx. That will trigger memory leak. To fix it, add kfree for urbs within "error" label. Compile tested only...

SUSE CVE-2025-40007

In the Linux kernel, the following vulnerability has been resolved: netfs: fix reference leak Commit 20d72b00ca81 "netfs: Fix the request's work item to not require a ref" modified netfsallocrequest to initialize the reference counter to 2 instead of 1. The rationale was that the requet's "work"...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987696)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987696 advisory. In the Linux kernel, the following vulnerability has been resolved: net/usb: kalmia: Don't pass actlen in usbbulkmsg error path syzbot reported that actlen in...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987563)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987563 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/amd/amdgpu/amdgpucs: fix refcount leak of a dmafence obj This issue takes place in an error...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987634)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987634 advisory. In the Linux kernel, the following vulnerability has been resolved: media: irtoy: free before error exiting Fix leak in error path. Tenable has extracted the precedi...

CVE-2025-40007 netfs: fix reference leak

In the Linux kernel, the following vulnerability has been resolved: netfs: fix reference leak Commit 20d72b00ca81 "netfs: Fix the request's work item to not require a ref" modified netfsallocrequest to initialize the reference counter to 2 instead of 1. The rationale was that the requet's "work"...

PT-2025-51585

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw in the crypto/aspeed module where a double free issue can occur due to improper clock management with devm clk get enabled. Specifically, the clock...

PT-2025-51628

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue related to the cleanup of Precision Time Protocol PTP resources when a driver is removed, particularly in error scenarios. The problem arises from...

Linux Distros Unpatched Vulnerability : CVE-2022-50514

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - usb: gadget: fhid: fix refcount leak on error path When failing to allocate reportdesc, opts-refcnt has already been incremented so it needs to be decremented t...

AlmaLinux 10 : kernel (ALSA-2025:9896)

The remote AlmaLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:9896 advisory. kernel: ice: Fix deinitializing VF in error path CVE-2025-21883 kernel: eth: bnxt: fix truesize for mb-xdp-pass case CVE-2025-21961 kernel: ibmvnic: Use...

SUSE CVE-2022-50537

In the Linux kernel, the following vulnerability has been resolved: firmware: raspberrypi: fix possible memory leak in rpifirmwareprobe In rpifirmwareprobe, if mboxrequestchannel fails, the 'fw' will not be freed through rpifirmwaredelete, fix this leak by calling kfree in the error path...

EUVD-2025-31840

Successful exploitation of the vulnerability could allow an unauthenticated attacker to gain access to a victim’s Sync account data such as account credentials and email protection information...

SUSE CVE-2022-50514

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fhid: fix refcount leak on error path When failing to allocate reportdesc, opts-refcnt has already been incremented so it needs to be decremented to avoid leaving the options structure permanently locked...

SUSE CVE-2023-53638

In the Linux kernel, the following vulnerability has been resolved: octeonep: cancel queued works in probe error path If it fails to get the devices's MAC address, octepprobe exits while leaving the delayed work intrpolltask queued. When the work later runs, it's a use after free. Move the...

CVE-2023-53662

In the Linux kernel, the following vulnerability has been resolved: ext4: fix memory leaks in ext4fnamesetupfilename,preparelookup If the filename casefolding fails, we'll be leaking memory from the fscryptname struct, namely from the 'cryptobuf.name' member. Make sure we free it in the error pat...

CVE-2023-53638

In the Linux kernel, the following vulnerability has been resolved: octeonep: cancel queued works in probe error path If it fails to get the devices's MAC address, octepprobe exits while leaving the delayed work intrpolltask queued. When the work later runs, it's a use after free. Move the...

CVE-2022-50544

In the Linux kernel, the following vulnerability has been resolved: usb: host: xhci: Fix potential memory leak in xhciallocstreaminfo xhciallocstreaminfo allocates stream context array for streaminfo -streamctxarray with xhciallocstreamctx. When some error occurs, streaminfo-streamctxarray is not...

CVE-2022-50537

In the Linux kernel, the following vulnerability has been resolved: firmware: raspberrypi: fix possible memory leak in rpifirmwareprobe In rpifirmwareprobe, if mboxrequestchannel fails, the 'fw' will not be freed through rpifirmwaredelete, fix this leak by calling kfree in the error path...

CVE-2022-50514

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fhid: fix refcount leak on error path When failing to allocate reportdesc, opts-refcnt has already been incremented so it needs to be decremented to avoid leaving the options structure permanently locked...