15 matches found
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: iio: light: cm3605: Fixed an error handling path in cm3605probe. The commit in “Fixes” also introduced a new error handling path, which should replace the existing one. Otherwise, some resources may be leaked...
Astra Linux – Vulnerability in Linux 5.10, Linux, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: drm/radeon: The iio object was freed before atomindexiio was called by atomparse, and it wasn’t released when the driver was shut down. This issue was fixed by releasing the iio object in radeonatombiosfini. Unreferenced object:...
CVE-2026-43356
A flaw was found in the Linux kernel's Industrial I/O IIO subsystem, specifically within the Analog Devices ADIS Inertial Measurement Unit IMU drivers adis16480, adis16490, adis16545. When these drivers are initialized, a NULL pointer dereference occurs in the adisinit function because the adis-o...
SUSE CVE-2026-23092
In the Linux kernel, the following vulnerability has been resolved: iio: dac: ad3552r-hs: fix out-of-bound write in ad3552rhswritedatasource When simplewritetobuffer succeeds, it returns the number of bytes actually copied to the buffer. The code incorrectly uses 'count' as the index for null...
CVE-2025-71198
In the Linux kernel, the following vulnerability has been resolved: iio: imu: stlsm6dsx: fix iiochanspec for sensors without event detection The stlsm6dsxaccchannels array of struct iiochanspec has a non-NULL eventspec field, indicating support for IIO events. However, event detection is not...
CVE-2025-71199
The CVE-2025-71199 issue affects the Linux kernel IIO ADC driver for sama5d2 (at91-sama5d2_adc). A use-after-free can occur when at91_adc_interrupt schedules work (via the workqueue) and at91_adc_remove frees the indio_dev later through iio_device_unregister, allowing a worker to access freed mem...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002298)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002298 advisory. An issue was discovered in drivers/iio/dac/ad5755.c in the Linux kernel before 4.8.6. There is an out of bounds write in the function ad5755parsedt. Tenable has...
Astra Linux – Vulnerability found in Linux 6.12, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: iio: light: opt3001: fixed a deadlock caused by concurrent flag access. The threaded IRQ function in this driver reads the flag twice: once to lock a mutex and once to unlock it. Although the code that sets the flag is designed t...
CVE-2022-50561 iio: fix memory leak in iio_device_register_eventset()
In the Linux kernel, the following vulnerability has been resolved: iio: fix memory leak in iiodeviceregistereventset When iiodeviceregistersysfsgroup returns failed, iiodeviceregistereventset needs to free attrs array. Otherwise, kmemleak would scan & report memory leak as below: unreferenced...
UBUNTU-CVE-2025-39719
In the Linux kernel, the following vulnerability has been resolved: iio: imu: bno055: fix OOB access of hwxlate array Fix a potential out-of-bounds array access of the hwxlate array in bno055.c. In bno055getregmask, hwxlate was iterated over the length of the vals array instead of the length of t...
CVE-2025-39690 iio: accel: sca3300: fix uninitialized iio scan data
In the Linux kernel, the following vulnerability has been resolved: iio: accel: sca3300: fix uninitialized iio scan data Fix potential leak of uninitialized stack data to userspace by ensuring that the channels array is zeroed before use...
UBUNTU-CVE-2022-49953
In the Linux kernel, the following vulnerability has been resolved: iio: light: cm3605: Fix an error handling path in cm3605probe The commit in Fixes also introduced a new error handling path which should goto the existing error handling path. Otherwise some resources leak...
SUSE CVE-2024-57908
In the Linux kernel, the following vulnerability has been resolved: iio: imu: kmx61: fix information leak in triggered buffer The 'buffer' local array is used to push data to user space from a triggered buffer, but it does not set values for inactive channels, as it only uses...
PT-2025-3634 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue concerns an information leak in the triggered buffer of the Linux kernel's iio light bh1745 component. The local struct 'scan' is used to send data to user space from a...
SUSE CVE-2023-52643
In the Linux kernel, the following vulnerability has been resolved: iio: core: fix memleak in iiodeviceregistersysfs When iiodeviceregistersysfsgroup fails, we should free iiodevopaque-chanattrgroup.attrs to prevent potential memleak...