EUVD-2024-54020

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2024-27412

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: power: supply: bq27xxx-i2c: Do not free non existing IRQ The bq27xxx i2c-client may not have...

CVE-2022-50028

CVE-2022-50028 concerns the Linux kernel gadgetfs subsystem. The issue arises in gadgetfs: ep_io where, after usb_ep_queue(), if wait_for_completion_interruptible() is interrupted, the kernel must wait for the IRQ to finish; otherwise complete() called from epio_complete() can corrupt the stack. ...

CVE-2025-38040 serial: mctrl_gpio: split disable_ms into sync and no_sync APIs

In the Linux kernel, the following vulnerability has been resolved: serial: mctrlgpio: split disablems into sync and nosync APIs The following splat has been observed on a SAMA5D27 platform using atmelserial: BUG: sleeping function called from invalid context at kernel/irq/manage.c:738 inatomic: ...

CVE-2023-53102 ice: xsk: disable txq irq before flushing hw

In the Linux kernel, the following vulnerability has been resolved: ice: xsk: disable txq irq before flushing hw iceqpdis intends to stop a given queue pair that is a target of xsk pool attach/detach. One of the steps is to disable interrupts on these queues. It currently is broken in a way that...

CVE-2024-58079 media: uvcvideo: Fix crash during unbind if gpio unit is in use

In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Fix crash during unbind if gpio unit is in use We used the wrong device for the device managed functions. We used the usb device, when we should be using the interface device. If we unbind the driver from the usb...

Linux Distros Unpatched Vulnerability : CVE-2021-47283

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net:sfc: fix non-freed irq in legacy irq mode SFC driver can be configured via modparam to work using MSI-X, MSI or legacy IRQ interrupts. In the last one, the...

CVE-2025-21799

CVE-2025-21799 covers a Linux kernel net:ethernet:ti:am65-cpsw issue. The root cause is improper IRQ handling: k3_udma_glue_tx_get_irq() may return a negative error value, and a non-null check is not sufficient; the IRQ must be validated as > 0. At runtime, .set_channels can trigger a chain th...

Azure Linux 3.0 Security Update: kernel (CVE-2024-39292)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-39292 advisory. - In the Linux kernel, the following vulnerability has been resolved: um: Add winch to winchhandlers before...

CVE-2024-57914

CVE-2024-57914 : In the Linux kernel, a NULL pointer dereference can occur in the usb: typec: tcpci code when two Type‑C ports share one IRQ. The tcpci_irq() handler may dereference a NULL regmap if an interrupt arrives for the second port before its tcpci_register_port() completes, leading to an...

CVE-2024-37353

REJECTED CVE A resource management issue exists in the Linux Kernel's virtio module. When requestirq fails in vpfindvqsmsix, the cleanup path incorrectly attempts to free an already released IRQ, resulting in warnings and potential system instability. This issue arises from the mishandling of...

PT-2023-35269 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.164 Description: The issue is related to the dp aux cmd fifo tx function, where it may not be completed if the irq is not for aux transfer. The actual impact and attack plausibility have not yet been prove...

PT-2023-33190 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.84 Description: The issue is related to the pinctrl subsystem in the Linux Kernel, specifically with the MediaTek driver. It involves starting up with IRQs disabled. The actual impact and potential for...

PT-2023-34508 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.163 Description: The issue is related to the ASoC: mediatek: mt8173 component, where IRQ is enabled when pdata is ready. The actual impact and attack plausibility have not yet been proven. Recommendations:...

PT-2022-33741 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.63 Description: The issue is related to the gadgetfs ep io, where it waits until IRQ finishes. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions...

PT-2022-34473 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.14.291 Description: The issue is related to the gadgetfs ep io, where it waits until IRQ finishes. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel version...