376 matches found
Spoofing
In the Linux kernel, the following vulnerability has been resolved: media: venus: core: Fix some resource leaks in the error path of 'venusprobe' If an error occurs after a successful 'oficcget' call, it must be undone. Use 'devmoficcget' instead of 'oficcget' to avoid the leak. Update the remove...
UBUNTU-CVE-2021-47052
In the Linux kernel, the following vulnerability has been resolved: crypto: sa2ul - Fix memory leak of rxd There are two error return paths that are not freeing rxd and causing memory leaks. Fix these. Addresses-Coverity: "Resource leak"...
kernel: thermal: core: call put_device() only after device_register() fails
In the Linux kernel, the following vulnerability has been resolved: thermal: core: call putdevice only after deviceregister fails putdevice shouldn't be called before a prior call to deviceregister. thermalcoolingdeviceregister doesn't follow that properly and needs fixing. Also...
kernel: drm: amd: display: Fix memory leakage
A memory leak flaw was found in the Linux kernel's AMD display driver in the display context construction logic. A local user can trigger this issue during AMD GPU initialization when the dcconstructctx function fails to release allocated memory in error paths. This results in permanent memory...
Vapor's Metrics integration could cause a system drain
This is a DoS attack against anyone who Bootstraps a metrics backend for their Vapor app with the following attack vector: 1. send unlimited requests against a vapor instance with different paths. this will create “unlimited” counters and timers, which will eventually drain the system. 2...
CVE-2021-46755
Failure to unmap certain SysHub mappings in error paths of the ASP AMD Secure Processor bootloader may allow an attacker with a malicious bootloader to exhaust the SysHub resources resulting in a potential denial of service...
Denial of service
Failure to unmap certain SysHub mappings in error paths of the ASP AMD Secure Processor bootloader may allow an attacker with a malicious bootloader to exhaust the SysHub resources resulting in a potential denial of service...
kernel: ASoC: mediatek: mt8173-rt5650: Fix refcount leak in mt8173_rt5650_dev_probe
In the Linux kernel, the following vulnerability has been resolved: ASoC: mediatek: mt8173-rt5650: Fix refcount leak in mt8173rt5650devprobe ofparsephandle returns a node pointer with refcount incremented, we should use ofnodeput on it when not need anymore. Fix refcount leak in some error paths...
PT-2025-26083 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A refcount leak issue has been identified in the Linux kernel, specifically in the mc pcie init irq domains function. The of get next child function returns a node pointer with an...
SUSE SLES15: cluster-md-kmp-default / dlm-kmp-default / dtb-al / dtb-zte / etc (SUSE-SU-2023:0780-1)
The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:0780-1 advisory. The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security...
GSD-2023-1002419 mmc: sdio: fix possible resource leaks in some error paths
mmc: sdio: fix possible resource leaks in some error paths This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.306 by commit...
GSD-2023-1002400 mmc: sdio: fix possible resource leaks in some error paths
mmc: sdio: fix possible resource leaks in some error paths This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.232 by commit...
GSD-2023-1002351 mmc: sdio: fix possible resource leaks in some error paths
mmc: sdio: fix possible resource leaks in some error paths This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.95 by commit...
GSD-2023-1001206 thermal: core: fix some possible name leaks in error paths
thermal: core: fix some possible name leaks in error paths This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.86 by commit...
GSD-2023-1000834 thermal: core: fix some possible name leaks in error paths
thermal: core: fix some possible name leaks in error paths This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.16 by commit...
PT-2023-33911 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.16 Description: The issue concerns potential name leaks in error paths. It was introduced in version v5.16 and is fixed in Linux Kernel version v6.0.16. The actual impact and attack plausibility have not ye...
GSD-2022-1008188 btrfs: fix ulist leaks in error paths of qgroup self tests
btrfs: fix ulist leaks in error paths of qgroup self tests This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.224 by commit...
GSD-2022-1007845 btrfs: fix ulist leaks in error paths of qgroup self tests
btrfs: fix ulist leaks in error paths of qgroup self tests This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.8 by commit...
PT-2022-36571 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.14.299 Description: The issue is related to ulist leaks in error paths of qgroup self tests in the btrfs filesystem. The actual impact and attack plausibility have not yet been proven. Recommendations: For...
PT-2022-36514 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.19.265 Description: The issue is related to ulist leaks in error paths of qgroup self tests in the btrfs filesystem. The actual impact and attack plausibility have not yet been proven. Recommendations: For...