16 matches found
EUVD-2026-32342
In the Linux kernel, the following vulnerability has been resolved: arm64/gcs: Fix error handling in archsetshadowstackstatus allocgcs returns an error-encoded pointer on failure, which comes from dommap, not NULL. The current NULL check fails to detect errors, which could lead to using an invali...
CVE-2026-23155
In the Linux kernel, the following vulnerability has been resolved: can: gsusb: gsusbreceivebulkcallback: fix error message Sinc commit 79a6d1bfe114 "can: gsusb: gsusbreceivebulkcallback: unanchor URL on usbsubmiturb error" a failing resubmit URB will print an info message. In the case of a short...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992377)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992377 advisory. In the Linux kernel, the following vulnerability has been resolved: arm64: cacheinfo: Fix incorrect assignment of signed error value to unsigned fwlevel Though...
CVE-2025-68316
CVE-2025-68316 affects the Linux kernel’s SCSI UFS core. The root cause was an invalid non‑negative error code propagated from ufshcd_init(), causing a failed probe to be treated as success and potentially leaving the driver in an invalid state. The available connected sources confirm the issue a...
CVE-2025-68316 scsi: ufs: core: Fix invalid probe error return value
In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Fix invalid probe error return value After DME Link Startup, the error return value is set to the MIPI UniPro GenericErrorCode which can be 0 SUCCESS or 1 FAILURE. Upon failure during driver probe, the error code...
CVE-2022-49964
In the Linux kernel, the following vulnerability has been resolved: arm64: cacheinfo: Fix incorrect assignment of signed error value to unsigned fwlevel Though acpifindlastcachelevel always returned signed value and the document states it will return any errors caused by lack of a PPTT table, it...
CVE-2022-49964 arm64: cacheinfo: Fix incorrect assignment of signed error value to unsigned fw_level
In the Linux kernel, the following vulnerability has been resolved: arm64: cacheinfo: Fix incorrect assignment of signed error value to unsigned fwlevel Though acpifindlastcachelevel always returned signed value and the document states it will return any errors caused by lack of a PPTT table, it...
PT-2025-18441 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been resolved. The issue was related to the handling of Out-of-Memory OOM conditions during VMA merge operations. In certain cases, the caller d...
SUSE CVE-2025-22095
In the Linux kernel, the following vulnerability has been resolved: PCI: brcmstb: Fix error path after a call to regulatorbulkget If the regulatorbulkget returns an error and no regulators are created, we need to set their number to zero. If we don't do this and the PCIe link up fails, a call to...
CVE-2025-21799 net: ethernet: ti: am65-cpsw: fix freeing IRQ in am65_cpsw_nuss_remove_tx_chns()
In the Linux kernel, the following vulnerability has been resolved: net: ethernet: ti: am65-cpsw: fix freeing IRQ in am65cpswnussremovetxchns When getting the IRQ we use k3udmagluetxgetirq which returns negative error value on error. So not NULL check is not sufficient to deteremine if IRQ is...
The vulnerability of the mlx5 component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the mlx5 component in the Linux operating system’s kernel is related to incorrect error handling in the mlx5internalerrretvalue function. Exploiting this vulnerability can allow an attacker to cause a service failure...
PT-2024-34104
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A crash can occur in the Linux kernel when blk alloc disk fails, causing the md-disk variable to be set to an error value. The cleanup mapped device function attempts to access md-disk...
The vulnerability of the Envoy proxy server, related to improper checking of the error value of the pointer, allows a hacker to cause an unexpected termination of the application.
The vulnerability of the Envoy proxy server is related to improper checking of the error value of the pointer. Exploiting this vulnerability can allow a malicious actor to cause an unexpected termination of the application...
Sudo before 1.9.15 might allow row hammer attacks (for authentication bypass or privilege escalation) because application logic sometimes is based on not equaling an error value (instead of equaling a success value) and because the values do not resist flips of a single bit.
...
CVE-2023-42465
Sudo before 1.9.15 might allow row hammer attacks for authentication bypass or privilege escalation because application logic sometimes is based on not equaling an error value instead of equaling a success value, and because the values do not resist flips of a single bit...
GSD-2022-1004990 arm64: cacheinfo: Fix incorrect assignment of signed error value to unsigned fw_level
arm64: cacheinfo: Fix incorrect assignment of signed error value to unsigned fwlevel This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.7 by...