CVE-2026-21375

CVE-2026-21375 describes memory corruption when an output buffer is accessed without validating its size during IOCTL processing. The issue is reported in Qualcomm context, with CVSS 3.1 base score 7.8 (HIGH) and local, low exploit complexity, no user interaction required. Descriptions across NVD...

CVE-2026-21374 Buffer Over-read in Camera

Memory Corruption when processing auxiliary sensor input/output control commands with insufficient buffer size validation...

CVE-2026-21373

CVE-2026-21373 describes memory corruption in the camera subsystem occurring when an IOCTL path accesses an output buffer without validating its size. This leads to a potential buffer over-read/overflow, as indicated by the NVD entry. The CVSS v3.1 vector shows a HIGH impact with local attack vec...

CVE-2026-21372 Heap-Based Buffer Overflow in Power Management IC

Memory Corruption when sending IOCTL requests with invalid buffer sizes during memcpy operations...

CVE-2025-47390

CVE-2025-47390 describes memory corruption during preprocessing of an IOCTL request in the JPEG driver (also referenced as a Camera-related issue). The vulnerability is categorized with high impact (CVSSv3.1: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H) and requires local access with low privileges; ther...

CVE-2025-54602

An issue was discovered in the Wi-Fi driver in Samsung Mobile Processor and Wearable Processor Exynos 980, 850, 1080, 1280, 1330, 1380, 1480, 1580, W920, W930, and W1000. Improper synchronization on a global variable leads to a use-after-free. An attacker can trigger a race condition by invoking ...

CVE-2025-54602

CVE-2025-54602 concerns the Wi-Fi driver in Samsung’s Mobile Processor and Wearable Processor line (Exynos 980, 850, 1080, 1280, 1330, 1380, 1480, 1580, W920, W930, W1000). The root cause is improper synchronization on a global variable causing a use-after-free. An attacker can trigger a race con...

CVE-2025-54602

An issue was discovered in the Wi-Fi driver in Samsung Mobile Processor and Wearable Processor Exynos 980, 850, 1080, 1280, 1330, 1380, 1480, 1580, W920, W930, and W1000. Improper synchronization on a global variable leads to a use-after-free. An attacker can trigger a race condition by invoking ...

SUSE CVE-2026-31390

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix memory leak in xevmmadviseioctl When checkboargsaresane validation fails, jump to the new freevmas cleanup label to properly free the allocated resources. This ensures proper cleanup in this error path. cherry picked...

CVE-2026-31390

A flaw was found in the Linux kernel's drm/xe component. A local user could exploit this vulnerability when validation fails during the xevmmadviseioctl operation, leading to improper cleanup of allocated resources. This can result in a memory leak, potentially causing system instability or a...

EUVD-2026-18762

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix memory leak in xevmmadviseioctl When checkboargsaresane validation fails, jump to the new freevmas cleanup label to properly free the allocated resources. This ensures proper cleanup in this error path. cherry picked...

CVE-2026-31390 drm/xe: Fix memory leak in xe_vm_madvise_ioctl

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix memory leak in xevmmadviseioctl When checkboargsaresane validation fails, jump to the new freevmas cleanup label to properly free the allocated resources. This ensures proper cleanup in this error path. cherry picked...

CVE-2026-31390

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix memory leak in xevmmadviseioctl When checkboargsaresane validation fails, jump to the new freevmas cleanup label to properly free the allocated resources. This ensures proper cleanup in this error path. cherry picked...

PT-2026-30173

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak in the xe vm madvise ioctl function within the drm/xe subsystem of the Linux kernel has been addressed. The issue occurs when validation within check bo args are sane fails...

Linux Distros Unpatched Vulnerability : CVE-2026-23295

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: accel/amdxdna: Fix dead lock for suspend and resume When an application issues a query IOCTL...

CVE-2025-15038

An Out-of-Bounds Read vulnerability exists in the ASUS Business System Control Interface driver. This vulnerability can be triggered by an unprivileged local user sending a specially crafted IOCTL request, potentially leading to a disclosure of kernel information or a system crash. Refer to the...

CVE-2025-15037

An Incorrect Permission Assignment vulnerability exists in the ASUS Business System Control Interface driver. This vulnerability can be triggered by an unprivileged local user sending a specially crafted IOCTL request, potentially leading to unauthorized access to sensitive hardware resources and...

CVE-2026-23341

A flaw was found in the Linux kernel's accel/amdxdna component. A local user can exploit this by issuing an ioctl to destroy a hardware context that has been automatically suspended. This can lead to a system crash, resulting in a Denial of Service DoS...

CVE-2026-23338

A flaw was found in the Linux kernel, specifically within the drm/amdgpu/userq component. This vulnerability allows a local user to intentionally or unintentionally trigger kernel warnings. This occurs when the user provides an incorrect number of fences during a userq wait ioctl operation. While...

EUVD-2026-15304

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/userq: Do not allow userspace to trivially triger kernel warnings Userspace can either deliberately pass in the too small numfences, or the required number can legitimately grow between the two calls to the userq wait...