Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990406)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990406 advisory. In the Linux kernel, the following vulnerability has been resolved: tracing: Fix potential double free in createvarref In createvarref, initvarref is called to...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987679)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987679 advisory. In the Linux kernel, the following vulnerability has been resolved: tracing: Fix potential double free in createvarref In createvarref, initvarref is called to...

EUVD-2010-3082

Malware in sbrugna...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414429)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414429 advisory. usb8devstartxmit in drivers/net/can/usb/usb8dev.c in the Linux kernel through 5.17.1 has a double free. Tenable has extracted the preceding description block directl...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-401559)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-401559 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: fix a double-free in sidpminit When the allocation of...

EUVD-2022-37450

Malicious code in bioql PyPI...

kernel: crypto: algif_hash - fix double free in hash_accept

In the Linux kernel, the following vulnerability has been resolved: crypto: algifhash - fix double free in hashaccept If accept2 is called on socket type algifhash with MSGMORE flag set and cryptoahashimport fails, sk2 is freed. However, it is also freed in afalgrelease, leading to...

Linux Distros Unpatched Vulnerability : CVE-2024-27392

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: nvme: host: fix double-free of struct nvmeidns in nsupdatenuse When nvmeidentifyns fails, it...

CVE-2024-12837 GPU DDK - Exploitable kernel double free on apsFenceSyncCheckpoints allocated with arbitrary size

Software installed and run as a non-privileged user may conduct improper GPU system calls to corrupt kernel heap memory...

CVE-2022-49391

In the Linux kernel, the following vulnerability has been resolved: remoteproc: mtkscp: Fix a potential double free 'scp-rproc' is allocated using devmrprocalloc, so there is no need to free it explicitly in the remove function...

CVE-2024-56766

In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: fix double free in atmelpmecccreateuser The "user" pointer was converted from being allocated with kzalloc to being allocated by devmkzalloc. Calling kfreeuser will lead to a double free...

CVE-2024-53213

A double free vulnerability was found in the Linux kernel. In lan78xxprobe, the buf buffer is freed twice: once implicitly through usbfreeurbdev-urbintr with the URBFREEBUFFER flag and again explicitly by kfreebuf, resulting in loss of availability of the system. Mitigation Mitigation for this...

kernel: Double-free in split_2MB_gtt_entry when function intel_gvt_dma_map_guest_page failed

A double-free memory flaw was found in the Linux kernel. The Intel GVT-g graphics driver triggers VGA card system resource overload, causing a fail in the intelgvtdmamapguestpage function. This issue could allow a local user to crash the system...

SUSE CVE-2021-22600

A double free bug in packetsetring in net/packet/afpacket.c can be exploited by a local user through crafted syscalls to escalate privileges or deny service. We recommend upgrading kernel past the effected versions or rebuilding past ec6af094ea28f0f2dda1a6a33b14cd57e36a9755...

GSD-2022-1003291 rpmsg: virtio: Fix possible double free in rpmsg_virtio_add_ctrl_dev()

rpmsg: virtio: Fix possible double free in rpmsgvirtioaddctrldev This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.47 by commit...

CVE-2022-34495

rpmsgprobe in drivers/rpmsg/virtiorpmsgbus.c in the Linux kernel before 5.18.4 has a double free...

Exploit for CVE-2016-2384

This repository contains proof-of-concept exploits for two Linux kernel vulnerabilities: CVE-2016-2384 and CVE-2017-6074. CVE-2016-2384 is a double-free vulnerability in the USB MIDI driver. The exploit is a part of a proof-of-concept exploit for the vulnerability in the usb-midi driver. It is...

CVE-2019-1999

In binderallocfreepage of binderalloc.c, there is a possible double free due to improper locking. This could lead to local escalation of privilege in the kernel with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android...

CVE-2018-7480

The blkcginitqueue function in block/blk-cgroup.c in the Linux kernel before 4.11 allows local users to cause a denial of service double free or possibly have unspecified other impact by triggering a creation failure...

iOS/MacOS kernel double free due to IOSurfaceRootUserClient not respecting MIG ownership rules(CVE-2017-13861)

I have previously detailed the lifetime management paradigms in MIG in the writeups for: CVE-2016-7612 https://bugs.chromium.org/p/project-zero/issues/detail?id=926 and CVE-2016-7633 https://bugs.chromium.org/p/project-zero/issues/detail?id=954 If a MIG method returns KERNSUCCESS it means that th...