SUSE CVE-2025-22092

In the Linux kernel, the following vulnerability has been resolved: PCI: Fix NULL dereference in SR-IOV VF creation error path Clean up when virtfn setup fails to prevent NULL pointer dereference during device removal. The kernel oops below occurred due to incorrect error handling flow when...

CVE-2025-21940

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix NULL Pointer Dereference in KFD queue Through KFD IOCTL Fuzzing we encountered a NULL pointer derefrence when calling kfdqueueacquirebuffers. cherry picked from commit 049e5bf3c8406f87c3d8e1958e0a16804fa1d530...

CVE-2025-21980 sched: address a potential NULL pointer dereference in the GRED scheduler.

In the Linux kernel, the following vulnerability has been resolved: sched: address a potential NULL pointer dereference in the GRED scheduler. If kzalloc in gredinit returns a NULL pointer, the code follows the error handling path, invoking greddestroy. This, in turn, calls gredoffload, where...

CVE-2025-21953 net: mana: cleanup mana struct after debugfs_remove()

In the Linux kernel, the following vulnerability has been resolved: net: mana: cleanup mana struct after debugfsremove When on a MANA VM hibernation is triggered, as part of hibernatesnapshot, managdsuspend and managdresume are called. If during this managdresume, a failure occurs with HWC...

CVE-2025-21948 HID: appleir: Fix potential NULL dereference at raw event handle

In the Linux kernel, the following vulnerability has been resolved: HID: appleir: Fix potential NULL dereference at raw event handle Syzkaller reports a NULL pointer dereference issue in inputevent. BUG: KASAN: null-ptr-deref in instrumentatomicread include/linux/instrumented.h:68 inline BUG:...

CVE-2025-21936

CVE-2025-21936 affects the Linux kernel Bluetooth subsystem. The vulnerability arises from not checking the return value of mgmt_alloc_skb() in mgmt_device_connected(), leading to a potential null pointer dereference. The connected Azure/Tenable Nessus entries reference the advisory and state tha...

CVE-2022-49758 reset: uniphier-glue: Fix possible null-ptr-deref

In the Linux kernel, the following vulnerability has been resolved: reset: uniphier-glue: Fix possible null-ptr-deref It will cause null-ptr-deref when resourcesizeres invoked, if platformgetresource returns NULL...

CVE-2025-21846

In the Linux kernel, the following vulnerability has been resolved: acct: perform last write from workqueue In 1 it was reported that the acct2 system call can be used to trigger NULL deref in cases where it is set to write to a file that triggers an internal lookup. This can e.g., happen when...

CVE-2025-21847

CVE-2025-21847 concerns the Linux kernel ASoC: SOF path — stream-ipc handling. The root cause is a missing NULL check for sps->cstream in sof_ipc_msg_data(), which can lead to a NULL pointer dereference if sps->stream is NULL or cstream is NULL. The issue is mitigated by the published patch...

CVE-2025-21833 iommu/vt-d: Avoid use of NULL after WARN_ON_ONCE

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Avoid use of NULL after WARNONONCE There is a WARNONONCE to catch an unlikely situation when domainremovedevpasid can't find the pasid. In case it nevertheless happens we must avoid using a NULL pointer...

Linux Distros Unpatched Vulnerability : CVE-2025-21740

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: KVM: x86/mmu: Ensure NX huge page recovery thread is alive before waking When waking a VM's ...

Linux Distros Unpatched Vulnerability : CVE-2025-21658

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - btrfs: avoid NULL pointer dereference if no valid extent tree BUG Syzbot reported a crash with the following call trace: BTRFS info device loop0: scrub: started...

Linux Distros Unpatched Vulnerability : CVE-2024-50225

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: btrfs: fix error propagation of split bios The purpose of btrfsbbiopropagateerror shall be...

Linux Distros Unpatched Vulnerability : CVE-2024-53092

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: virtiopci: Fix admin vq cleanup by using correct info pointer vpmodernavqcleanup and vpdelvq...

Linux Distros Unpatched Vulnerability : CVE-2024-53199

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ASoC: imx-audmix: Add NULL check in imxaudmixprobe devmkasprintf can return a NULL pointer o...

Linux Distros Unpatched Vulnerability : CVE-2024-50298

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: enetc: allocate vfstate during PF probes In the previous implementation, vfstate is allocated memory only when VF is enabled. However,...

Linux Distros Unpatched Vulnerability : CVE-2024-50034

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net/smc: fix lacks of icsksynmss with IPPROTOSMC Eric report a panic on IPPROTOSMC, and give the facts that when INETPROTOSWICSK was set, icsk-icsksyncmss must ...

Linux Distros Unpatched Vulnerability : CVE-2023-52889

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: apparmor: Fix null pointer deref when receiving skb during sock creation The panic below is...

Linux Distros Unpatched Vulnerability : CVE-2022-49329

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: vduse: Fix NULL pointer dereference on sysfs access The control device has no drvdata. So we...

Linux Distros Unpatched Vulnerability : CVE-2024-26893

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - firmware: armscmi: Fix double free in SMC transport cleanup path When the generic SCMI code tears down a channel, it calls the chanfree callback function, defin...