CVE-2023-54258

In the Linux kernel, the following vulnerability has been resolved: cifs: fix potential oops in cifsoplockbreak With deferred close we can have closes that race with lease breaks, and so with the current checks for whether to send the lease response, oplockresponse, this can mean that an unmount...

CVE-2023-54244

CVE-2023-54244 affects the Linux kernel ACPI EC subsystem. The issue occurs when removing custom ACPI query handlers, as the handler could still be used in the EC query workqueue after the module owning the callback was unloaded, leading to a kernel oops. The mitigation is to flush the EC query w...

CVE-2023-54244 ACPI: EC: Fix oops when removing custom query handlers

In the Linux kernel, the following vulnerability has been resolved: ACPI: EC: Fix oops when removing custom query handlers When removing custom query handlers, the handler might still be used inside the EC query workqueue, causing a kernel oops if the module holding the callback function was...

CVE-2022-50849

CVE-2022-50849: In the Linux kernel, pstore ram-backend backends can trigger an oops when reading /proc/kcore due to kmap_atomic() assuming lowmem pages are addressable via __va(). The bug arises when vmap() is used without mapping the ramoops lowmem pages; read_kcore and aligned_vread can pass a...

CVE-2023-54233 ASoC: SOF: avoid a NULL dereference with unsupported widgets

In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: avoid a NULL dereference with unsupported widgets If an IPC4 topology contains an unsupported widget, its .moduleinfo field won't be set, then sofipc4routesetup will cause a kernel Oops trying to dereference it. Add a...

CVE-2023-54220 serial: 8250: Fix oops for port->pm on uart_change_pm()

In the Linux kernel, the following vulnerability has been resolved: serial: 8250: Fix oops for port-pm on uartchangepm Unloading a hardware specific 8250 driver can produce error "Unable to handle kernel paging request at virtual address" about ten seconds after unloading the driver. This happens...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992461)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992461 advisory. In the Linux kernel, the following vulnerability has been resolved: cpufreq: qcom: fix writes in read-only memory region This commit fixes a kernel oops because of ...

Linux Distros Unpatched Vulnerability : CVE-2023-54233

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ASoC: SOF: avoid a NULL dereference with unsupported widgets If an IPC4 topology contains an unsupported widget, its .moduleinfo field won't be set, then...

PT-2025-54073

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to ACPI Embedded Controller EC query handlers. Specifically, removing custom query handlers could lead to a kernel oops if the module containing...

PT-2025-54120

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the DRM subsystem where the drm copy field function may attempt to copy a NULL pointer. This occurs when a driver has a bug and fails to set...

EUVD-2023-60327

In the Linux kernel, the following vulnerability has been resolved: serial: sc16is7xx: setup GPIO controller later in probe The GPIO controller component of the sc16is7xx driver is setup too early, which can result in a race condition where another device tries to utilise the GPIO lines before th...

CVE-2023-54061

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

Linux Distros Unpatched Vulnerability : CVE-2023-54061

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - x86: fix clearuserrepgood exception handling annotation This code no longer exists in mainline, because it was removed in commit d2c95f9d6802 x86: don't use...

Linux Distros Unpatched Vulnerability : CVE-2023-54028

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - RDMA/rxe: Fix the error trying to register non-static key in rxecleanuptask In the function rxecreateqp, rxeqpfrominit is called to initialize qp, internally...

PT-2025-52906

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s coresight component, specifically within the tmc subsystem. The issue stems from a missing handle for events, which is crucial for retrieving auxiliar...

PT-2025-53019

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.10.146 Description The Linux kernel contains a flaw in the md/raid1 subsystem. Specifically, when a RAID1 array run fails during assembly with an inactive disk, the mdx raid1 thread does not stop, even after...

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: x86: fix clearuserrepgood exception handling annotation This code no longer exists in mainline, because it was removed in commit d2c95f9d6802 "x86: don't use REPGOOD or ERMS for user memory clearing" upstream. However, rather tha...

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-991144)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991144 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/cs: make commands with 0 chunks illegal behaviour. Submitting a cs with 0 chunks, caus...

kernel: cifs: fix oops during encryption

An out-of-bounds memory access vulnerability exists in the linux kernel, such that A stack-allocated buffer backed by vmalloc was passed into crypto code scatterwalkmapandcopy → memcpy where a cross-page write occurred. This ended up hitting a read-only mapping, causing a page-level fault and...

CVE-2025-40340

CVE-2025-40340 is addressed in Root OS packaging (rootio-linux). Connected OSV entries show fixes for Root:Debian:13 and patches for Root:Ubuntu:22.04 and Root:Ubuntu:24.04, among others, with multiple fixed versions available. This indicates the vulnerability is not in the Linux kernel itself in...