21 matches found
SUSE CVE-2026-43328
In the Linux kernel, the following vulnerability has been resolved: cpufreq: governor: fix double free in cpufreqdbsgovernorinit error path When kobjectinitandadd fails, cpufreqdbsgovernorinit calls kobjectput&dbsdata-attrset.kobj. The kobject release callback cpufreqdbsdatarelease calls...
CVE-2026-43328
In the Linux kernel, the following vulnerability has been resolved: cpufreq: governor: fix double free in cpufreqdbsgovernorinit error path When kobjectinitandadd fails, cpufreqdbsgovernorinit calls kobjectput&dbsdata-attrset.kobj. The kobject release callback cpufreqdbsdatarelease calls...
CVE-2026-43328
Root cause: in the Linux kernel cpufreq governor, the error path in cpufreq_dbs_governor_init() could trigger a double free when kobject_init_and_add() fails. The kobject release path previously attempted cleanup via gov->exit(dbs_data) and kfree(dbs_data) twice. The fix keeps a direct kfree(d...
CVE-2026-43328
In the Linux kernel, the following vulnerability has been resolved: cpufreq: governor: fix double free in cpufreqdbsgovernorinit error path When kobjectinitandadd fails, cpufreqdbsgovernorinit calls kobjectputdata-attrset.kobj. The kobject release callback cpufreqdbsdatarelease calls...
Linux Distros Unpatched Vulnerability : CVE-2026-43328
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - cpufreq: governor: fix double free in cpufreqdbsgovernorinit error path When kobjectinitandadd fails, cpufreqdbsgovernorinit calls...
PT-2026-38979
In the Linux kernel, the following vulnerability has been resolved: cpufreq: governor: fix double free in cpufreq dbs governor init error path When kobject init and add fails, cpufreq dbs governor init calls kobject put&dbs data-attr set.kobj. The kobject release callback cpufreq dbs data release...
Astra Linux - уязвимость в linux-5.15, linux, linux-5.10
In the Linux kernel, the following vulnerabilities have been resolved: EFI: Fixed a NULL dereference in the initialization error path. In cases where runtime services are not supported or have been disabled, the workqueue for those services will never be allocated. Do not attempt to destroy the...
CVE-2023-53604 dm integrity: call kmem_cache_destroy() in dm_integrity_init() error path
In the Linux kernel, the following vulnerability has been resolved: dm integrity: call kmemcachedestroy in dmintegrityinit error path Otherwise the journaliocache will leak if dmregistertarget fails...
CVE-2022-50361
In the Linux kernel, the following vulnerability has been resolved: wifi: wilc1000: add missing unregisternetdev in wilcnetdevifcinit Fault injection test reports this issue: kernel BUG at net/core/dev.c:10731! invalid opcode: 0000 1 PREEMPT SMP KASAN PTI Call Trace: wilcnetdevifcinit+0x19f/0x220...
PT-2025-37975
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains an issue in the net/mlx5 module where a memory leak occurs in the hws pool buddy init function’s error path. The leak happens because the buddy allocator...
CVE-2023-53195
CVE-2023-53195 affects the Linux kernel mlxsw minimal subsystem. The vulnerability stems from a memory leak in mlxsw_m_linecards_init(), where the line cards array was not freed in the error path. The patch fixes this by freeing the array in the error path, making it equivalent to mlxsw_m_linecar...
Linux Distros Unpatched Vulnerability : CVE-2024-42307
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: cifs: fix potential null pointer use in destroyworkqueue in initcifs error path Dan Carpente...
CVE-2022-48879
In the Linux kernel, the following vulnerability has been resolved: efi: fix NULL-deref in init error path In cases where runtime services are not supported or have been disabled, the runtime services workqueue will never have been allocated. Do not try to destroy the workqueue unconditionally in...
CVE-2022-48879 efi: fix NULL-deref in init error path
In the Linux kernel, the following vulnerability has been resolved: efi: fix NULL-deref in init error path In cases where runtime services are not supported or have been disabled, the runtime services workqueue will never have been allocated. Do not try to destroy the workqueue unconditionally in...
GSD-2023-1002235 efi: fix NULL-deref in init error path
efi: fix NULL-deref in init error path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.229 by commit...
GSD-2023-1002184 efi: fix NULL-deref in init error path
efi: fix NULL-deref in init error path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.164 by commit...
GSD-2023-1001829 efi: fix NULL-deref in init error path
efi: fix NULL-deref in init error path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.270 by commit...
GSD-2023-1001788 efi: fix NULL-deref in init error path
efi: fix NULL-deref in init error path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.164 by commit...
GSD-2023-1001754 efi: fix NULL-deref in init error path
efi: fix NULL-deref in init error path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.89 by commit...
GSD-2023-1001692 efi: fix NULL-deref in init error path
efi: fix NULL-deref in init error path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.7 by commit adc96d30f6503d30dc68670c013716f1d9fcc747...