2037 matches found
UBUNTU-CVE-2022-50190
In the Linux kernel, the following vulnerability has been resolved: spi: Fix simplification of devmspiregistercontroller This reverts commit 59ebbe40fb51 "spi: simplify devmspiregistercontroller". If devmaddaction fails in devmaddactionorreset, devmspiunregister will be called, it decreases the...
UBUNTU-CVE-2022-50025
In the Linux kernel, the following vulnerability has been resolved: cxl: Fix a memory leak in an error handling path A bitmapzalloc must be balanced by a corresponding bitmapfree in the error handling path of afuallocateirqs...
UBUNTU-CVE-2022-50229
In the Linux kernel, the following vulnerability has been resolved: ALSA: bcd2000: Fix a UAF bug on the error path of probing When the driver fails in sndcardregister at probe time, it will free the 'bcd2k-midiouturb' before killing it, which may cause a UAF bug. The following log can reveal it:...
UBUNTU-CVE-2022-50048
In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: possible module reference underflow in error path dst-ops is set on when nftexprclone fails, but module refcount has not been bumped yet, therefore nftexprdestroy leads to module reference underflow...
CVE-2022-50188 drm/meson: Fix refcount leak in meson_encoder_hdmi_init
In the Linux kernel, the following vulnerability has been resolved: drm/meson: Fix refcount leak in mesonencoderhdmiinit offinddevicebynode takes reference, we should use putdevice to release it when not need anymore. Add missing putdevice in error path to avoid refcount leak...
CVE-2022-50188
CVE-2022-50188 is a Linux kernel vulnerability where a refcount leak in drm/meson was fixed. The issue arose because of how of_find_device_by_node() held a reference, with missing put_device() in the error path, leading to a refcount leak. The fix patches the kernel (meson_encoder_hdmi_init) to r...
CVE-2022-50146 PCI: dwc: Deallocate EPC memory on dw_pcie_ep_init() errors
In the Linux kernel, the following vulnerability has been resolved: PCI: dwc: Deallocate EPC memory on dwpcieepinit errors If dwpcieepinit fails to perform any action after the EPC memory is initialized and the MSI memory region is allocated, the latter parts won't be undone thus causing a memory...
CVE-2022-50119 rpmsg: Fix possible refcount leak in rpmsg_register_device_override()
In the Linux kernel, the following vulnerability has been resolved: rpmsg: Fix possible refcount leak in rpmsgregisterdeviceoverride rpmsgregisterdeviceoverride need to call putdevice to free vch when driversetoverride fails. Fix this by adding a putdevice to the error path...
CVE-2022-50048
In Linux kernels affected by CVE-2022-50048, the vulnerability is in netfilter nf_tables: if nft_expr_clone() fails, dst->ops is set before the module refcount is bumped, causing an underflow in nft_expr_destroy(). This is a kernel-level issue that can affect systems using nf_tables, and is de...
CVE-2022-50048
In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: possible module reference underflow in error path dst-ops is set on when nftexprclone fails, but module refcount has not been bumped yet, therefore nftexprdestroy leads to module reference underflow...
CVE-2022-50042
In the Linux kernel, the following vulnerability has been resolved: net: genl: fix error path memory leak in policy dumping If construction of the array of policies fails when recording non-first policy we need to unwind. netlinkpolicydumpaddpolicy itself also needs fixing as it currently gives u...
PT-2025-26045 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A possible refcount leak in the rpmsg register device override function has been resolved. The issue occurred when driver set override fails, and put device was not called to free vch...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: net: mana: Fixed a possible double-free in the error handling path. When the auxiliarydeviceadd function returns an error and then calls auxiliarydeviceuninit, the callback function adevrelease calls kfreemadev. We should not cal...
Astra Linux – Vulnerability in Linux 6.12
In the Linux kernel, the following vulnerabilities have been resolved: net: txgbe: fixed a memory leak in the error handling path of txgbeprobe When txgbeswinit is called, memory is allocated for wx-rsskey in wxinitrsskey. However, in the txgbeprobe function, the subsequent error handling paths d...
Astra Linux – Vulnerability in Linux 6.12
In the Linux kernel, the following vulnerabilities have been resolved: net: ngbe: fixed a memory leak in the ngbeprobe error path. When ngbeswinit is called, memory is allocated for wx-rsskey in wxinitrsskey. However, in the ngbeprobe function, the subsequent error paths after ngbeswinit do not...
Astra Linux – Vulnerability in Linux 6.12
In the Linux kernel, the following vulnerability has been resolved: eth:bnxt: fixed the issue of missing ring index trimming on the error path. The commit under “Fixes” converted txprod to a free-running state, but failed to mask this issue on the Tx error path. This caused failures under error...
Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12
In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Fixed a double-free in the error path. If the uvcstatusinit function fails to allocate the inturb variable, it will free the dev-status pointer without resetting it to NULL. This causes the kfree call in...
UBUNTU-CVE-2025-37995
In the Linux kernel, the following vulnerability has been resolved: module: ensure that kobjectput is safe for module type kobjects In 'lookuporcreatemodulekobject', an internal kobject is created using 'modulektype'. So call to 'kobjectput' on error handling path causes an attempt to use an...
SUSE CVE-2025-37955
In the Linux kernel, the following vulnerability has been resolved: virtio-net: free xskbuffs on error in virtnetxskpoolenable The selftests added to our CI by Bui Quang Minh recently reveals that there is a mem leak on the error path of virtnetxskpoolenable: unreferenced object 0xffff88800a68a00...
CVE-2025-37980 block: fix resource leak in blk_register_queue() error path
In the Linux kernel, the following vulnerability has been resolved: block: fix resource leak in blkregisterqueue error path When registering a queue fails after blkmqsysfsregister is successful but the function later encounters an error, we need to clean up the blkmqsysfs resources. Add the missi...