CVE-2026-23044

The CVE-2026-23044 issue affects the Linux kernel where hibernate crash occurs if crypto_alloc_acomp() returns an ERR_PTR instead of NULL. The cleanup paths in save_compressed_image() and load_compressed_image() call crypto_free_acomp() unconditionally, dereferencing an invalid pointer in crypto_...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the mtk-cci driver not handling ERRPTR-EPROBEDEFER correctly, which could lead to dereferencing of incorrect...

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-990005)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990005 advisory. In the Linux kernel, the following vulnerability has been resolved: nbd: fix race between nbdallocconfig and module removal When nbd module is being removing,...

EUVD-2022-55133

Malicious code in bioql PyPI...

CVE-2023-53058 net/mlx5: E-Switch, Fix an Oops in error handling code

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: E-Switch, Fix an Oops in error handling code The error handling dereferences "vport". There is nothing we can do if it is an error pointer except returning the error code...

CVE-2025-37783

CVE-2025-37783 — Linux kernel (drm/msm/dpu) The issue occurs where dpu_plane_virtual_atomic_check could dereference pointers returned by drm_atomic_get_plane_state without verifying for errors, leading to undefined behavior. The fix adds IS_ERR checks to ensure plane_state is valid before derefer...

CVE-2025-37783 drm/msm/dpu: Fix error pointers in dpu_plane_virtual_atomic_check

In the Linux kernel, the following vulnerability has been resolved: drm/msm/dpu: Fix error pointers in dpuplanevirtualatomiccheck The function dpuplanevirtualatomiccheck was dereferencing pointers returned by drmatomicgetplanestate without checking for errors. This could lead to undefined behavio...

UBUNTU-CVE-2023-53017

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcisync: fix memory leak in hciupdateadvdata When hcicmdsyncqueue failed in hciupdateadvdata, instptr is not freed, which will cause memory leak, convert to use ERRPTR/PTRERR to pass the instance to callback so no memo...

Linux Distros Unpatched Vulnerability : CVE-2024-56776

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/sti: avoid potential dereference of error pointers The return value of drmatomicgetcrtcstate needs to be checked. To avoid use of error pointer 'crtcstate' ...

CVE-2024-56776

In the Linux kernel, the following vulnerability has been resolved: drm/sti: avoid potential dereference of error pointers The return value of drmatomicgetcrtcstate needs to be checked. To avoid use of error pointer 'crtcstate' in case of the failure...

UBUNTU-CVE-2024-42320

In the Linux kernel, the following vulnerability has been resolved: s390/dasd: fix error checks in dasdcopypairstore dasdaddbusid can return an error via ERRPTR if an allocation fails. However, two callsites in dasdcopypairstore do not check the result, potentially resulting in a NULL pointer...

kernel: drm/virtio: improper return value check in virtio_gpu_object_shmem_init()

In the Linux kernel before 6.0.3, drivers/gpu/drm/virtio/virtgpuobject.c misinterprets the drmgemshmemgetsgtable return value expects it to be NULL in the error case, whereas it is actually an error pointer...

kernel: drm/virtio: improper return value check in virtio_gpu_object_shmem_init()

In the Linux kernel before 6.0.3, drivers/gpu/drm/virtio/virtgpuobject.c misinterprets the drmgemshmemgetsgtable return value expects it to be NULL in the error case, whereas it is actually an error pointer...

SUSE CVE-2023-22997

In the Linux kernel before 6.1.2, kernel/module/decompress.c misinterprets the modulegetnextpage return value expects it to be NULL in the error case, whereas it is actually an error pointer...

UBUNTU-CVE-2023-22997

In the Linux kernel before 6.1.2, kernel/module/decompress.c misinterprets the modulegetnextpage return value expects it to be NULL in the error case, whereas it is actually an error pointer...