340 matches found
CVE-2023-54178
CVE-2023-54178: In the Linux kernel, a null pointer dereference could occur in the unittest code path when kmalloc() fails during kasprintf(), causing name or full_name to be NULL and a following strcmp() to dereference NULL. The vulnerability is addressed by the kernel fix that ensures NULL chec...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from an unchecked kasprintf return value that could lead to a null pointer dereference...
PT-2025-54111
In the Linux kernel, the following vulnerability has been resolved: of: overlay: fix null pointer dereferencing in find dup cset node entry and find dup cset prop When kmalloc fail to allocate memory in kasprintf, fn 1 or fn 2 will be NULL, and strcmp will cause null pointer dereference...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992280)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992280 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: gadget: aspeed: Add NULL pointer check in astvhubinitdev The variable d-name, returned by...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-992635)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992635 advisory. In the Linux kernel, the following vulnerability has been resolved: pinctrl: devicetree: fix null pointer dereferencing in pinctrldttomap Here is the BUG report by...
PT-2025-54007
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to null pointer dereferencing within the of unittest find node by name function. Specifically, if kmalloc fails to allocate memory during the...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992430)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992430 advisory. In the Linux kernel, the following vulnerability has been resolved: power: supply: fix null pointer dereferencing in powersupplygetbatteryinfo when kmalloc fail to...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from an unchecked kasprintf return value that could lead to a null pointer dereference...
SUSE CVE-2022-50761
In the Linux kernel, the following vulnerability has been resolved: x86/xen: Fix memory leak in xeninitlockcpu In xeninitlockcpu, the @name has allocated new string by kasprintf, if bindipitoirqhandler fails, it should be freed, otherwise may lead to a memory leak issue, fix it...
EUVD-2022-55800
In the Linux kernel, the following vulnerability has been resolved: x86/xen: Fix memory leak in xeninitlockcpu In xeninitlockcpu, the @name has allocated new string by kasprintf, if bindipitoirqhandler fails, it should be freed, otherwise may lead to a memory leak issue, fix it...
CVE-2022-50761
In the Linux kernel, the following vulnerability has been resolved: x86/xen: Fix memory leak in xeninitlockcpu In xeninitlockcpu, the @name has allocated new string by kasprintf, if bindipitoirqhandler fails, it should be freed, otherwise may lead to a memory leak issue, fix it...
UBUNTU-CVE-2022-50761
In the Linux kernel, the following vulnerability has been resolved: x86/xen: Fix memory leak in xeninitlockcpu In xeninitlockcpu, the @name has allocated new string by kasprintf, if bindipitoirqhandler fails, it should be freed, otherwise may lead to a memory leak issue, fix it...
CVE-2022-50761 x86/xen: Fix memory leak in xen_init_lock_cpu()
In the Linux kernel, the following vulnerability has been resolved: x86/xen: Fix memory leak in xeninitlockcpu In xeninitlockcpu, the @name has allocated new string by kasprintf, if bindipitoirqhandler fails, it should be freed, otherwise may lead to a memory leak issue, fix it...
CVE-2022-50761
The CVE-2022-50761 entry concerns a memory leak in the Linux kernel under x86/xen: in xen_init_lock_cpu(), a string allocated with kasprintf() is not freed if bind_ipi_to_irqhandler() fails, potentially leaking memory. The description notes this memory leak is fixed in Xen/CPU initialization code...
CVE-2022-50761 x86/xen: Fix memory leak in xen_init_lock_cpu()
In the Linux kernel, the following vulnerability has been resolved: x86/xen: Fix memory leak in xeninitlockcpu In xeninitlockcpu, the @name has allocated new string by kasprintf, if bindipitoirqhandler fails, it should be freed, otherwise may lead to a memory leak issue, fix it...
PT-2025-53127
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak issue was identified and resolved in the x86/xen component of the Linux kernel within the xen init lock cpu function. Specifically, if the bind ipi to irqhandler function...
Siemens SIMATIC S7-1500 Improper Input Validation (CVE-2023-52675)
In the Linux kernel, the following vulnerability has been resolved: powerpc/imc-pmu: Add a null pointer check in updateeventsingroup kasprintf returns a pointer to dynamically allocated memory which can be NULL upon failure. This plugin only works with Tenable.ot. Please visit...
CVE-2025-40162
In the Linux kernel, the following vulnerability has been resolved: ASoC: amd/sdwutils: avoid NULL deref when devmkasprintf fails devmkasprintf may return NULL on memory allocation failure, but the debug message prints cpus-dainame before checking it. Move the devdbg call after the NULL check to...
CVE-2025-40162 ASoC: amd/sdw_utils: avoid NULL deref when devm_kasprintf() fails
In the Linux kernel, the following vulnerability has been resolved: ASoC: amd/sdwutils: avoid NULL deref when devmkasprintf fails devmkasprintf may return NULL on memory allocation failure, but the debug message prints cpus-dainame before checking it. Move the devdbg call after the NULL check to...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from amd/sdwutils not checking for pointers after devmkasprintf fails, which could result in a null pointer...