CVE-2025-21928 HID: intel-ish-hid: Fix use-after-free issue in ishtp_hid_remove()

In the Linux kernel, the following vulnerability has been resolved: HID: intel-ish-hid: Fix use-after-free issue in ishtphidremove The system can experience a random crash a few minutes after the driver is removed. This issue occurs due to improper handling of memory freeing in the ishtphidremove...

PT-2025-14312

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to the version containing commit b15c87263a69 Description A vulnerability in the Linux kernel has been resolved, related to the handling of hwpoisoned pages. The issue arises when the folio lock is not held before...

PT-2025-20497

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 2de451a329cf662b Description A vulnerability in the Linux kernel has been resolved, specifically related to the arm64 architecture. The issue involves the source register not being used for SET operations, and...

CVE-2023-53016

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix possible deadlock in rfcommskstatechange syzbot reports a possible deadlock in rfcommskstatechange 1. While rfcommsockconnect acquires the sk lock and waits for the rfcomm lock, rfcommsockrelease could have the...

DEBIAN-CVE-2022-49740

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Check the count value of channel spec to prevent out-of-bounds reads This patch fixes slab-out-of-bounds reads in brcmfmac that occur in brcmfconstructchaninfo and brcmfenablebw402g when the count value of channel...

CVE-2023-53020 l2tp: close all race conditions in l2tp_tunnel_register()

In the Linux kernel, the following vulnerability has been resolved: l2tp: close all race conditions in l2tptunnelregister The code in l2tptunnelregister is racy in several ways: 1. It modifies the tunnel socket after publishing it. 2. It calls setupudptunnelsock on an existing socket without...

CVE-2023-53016 Bluetooth: Fix possible deadlock in rfcomm_sk_state_change

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix possible deadlock in rfcommskstatechange syzbot reports a possible deadlock in rfcommskstatechange 1. While rfcommsockconnect acquires the sk lock and waits for the rfcomm lock, rfcommsockrelease could have the...

CVE-2023-52989 firewire: fix memory leak for payload of request subaction to IEC 61883-1 FCP region

In the Linux kernel, the following vulnerability has been resolved: firewire: fix memory leak for payload of request subaction to IEC 61883-1 FCP region This patch is fix for Linux kernel v2.6.33 or later. For request subaction to IEC 61883-1 FCP region, Linux FireWire subsystem have had an issue...

CVE-2022-49740 wifi: brcmfmac: Check the count value of channel spec to prevent out-of-bounds reads

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Check the count value of channel spec to prevent out-of-bounds reads This patch fixes slab-out-of-bounds reads in brcmfmac that occur in brcmfconstructchaninfo and brcmfenablebw402g when the count value of channel...

CVE-2022-49740 wifi: brcmfmac: Check the count value of channel spec to prevent out-of-bounds reads

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Check the count value of channel spec to prevent out-of-bounds reads This patch fixes slab-out-of-bounds reads in brcmfmac that occur in brcmfconstructchaninfo and brcmfenablebw402g when the count value of channel...

UBUNTU-CVE-2024-58091

In the Linux kernel, the following vulnerability has been resolved: drm/fbdev-dma: Add shadow buffering for deferred I/O DMA areas are not necessarily backed by struct page, so we cannot rely on it for deferred I/O. Allocate a shadow buffer for drivers that require deferred I/O and use it as...

CVE-2024-58091 drm/fbdev-dma: Add shadow buffering for deferred I/O

In the Linux kernel, the following vulnerability has been resolved: drm/fbdev-dma: Add shadow buffering for deferred I/O DMA areas are not necessarily backed by struct page, so we cannot rely on it for deferred I/O. Allocate a shadow buffer for drivers that require deferred I/O and use it as...

PT-2025-16742

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.23-lts-next-06236-gb586a521770e Description A kernel panic issue has been resolved in the Linux kernel. The problem occurs during the release of firmware in a stress test scenario where WLAN and Bluetooth...

Important: Red Hat Security Advisory: kpatch-patch-5_14_0-427_13_1, kpatch-patch-5_14_0-427_31_1, kpatch-patch-5_14_0-427_44_1, and kpatch-patch-5_14_0-427_55_1 security update

An update for kpatch-patch-5140-427131, kpatch-patch-5140-427311, kpatch-patch-5140-427441, and kpatch-patch-5140-427551 is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common...

SUSE SLES15 Security Update : kernel (Live Patch 3 for SLE 15 SP6) (SUSE-SU-2025:0922-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:0922-1 advisory. This update for the Linux Kernel 6.4.0-1506002317 fixes several issues. The following security issues were fixed: - CVE-2024-46818:...

CVE-2024-44949 affecting package kernel for versions less than 5.15.176.3-1

CVE-2024-44949 affecting package kernel for versions less than 5.15.176.3-1. A patched version of the package is available...

CVE-2024-53130 affecting package kernel for versions less than 5.15.176.3-1

CVE-2024-53130 affecting package kernel for versions less than 5.15.176.3-1. A patched version of the package is available...

PT-2025-18419

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.13.0-rc2+ Description A slab-use-after-free bug has been identified in the Linux kernel, specifically in the ext4 file system. The issue arises when the kernel fails to ignore extended attributes past the 'end'...

scsi: sg: Fix slab-use-after-free read in sg_release()

...

bcache: revert replacing IS_ERR_OR_NULL with IS_ERR again

...