175 matches found
CVE-2022-49873
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix wrong reg type conversion in releasereference Some helper functions will allocate memory. To avoid memory leaks, the verifier requires the eBPF program to release these memories by calling the corresponding helper...
CVE-2022-49798
CVE-2022-49798 describes a race in the Linux kernel tracing eprobes where the event’s triggers could be invoked before the event record is populated, risking a NULL dereference. This is caused by a flag set for eprobes after enabling the eprobe, potentially triggering at the start of the event wh...
CVE-2025-21953
CVE-2025-21953 describes a Linux kernel issue in the mana subsystem (MANA VM) triggered during hibernation. If mana_gd_resume() fails while creating HWC, mana_port_debugfs is not reinitialized and may point to an older, cleaned-up dentry. Later in the hibernate path, during power_down(), mana_gd_...
Linux 6.5 Kernel Pointer Leak
The Linux cachestat syscall introduced in 6.5 has a read-after-type-change of folio that leads to a kernel pointer leak...
Linux Distros Unpatched Vulnerability : CVE-2024-26713
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries/iommu: Fix iommu initialisation during DLPAR add When a PCI device is...
CVE-2024-58020
CVE-2024-58020 affects the Linux kernel HID multitouch driver. The issue arises when devm_kasprintf() returns NULL and the result is used in mt_input_configured() without a NULL check, risking NULL pointer dereference. Acknowledged fixes add a NULL check in mt_input_configured(); impact is listed...
UBUNTU-CVE-2024-57885
In the Linux kernel, the following vulnerability has been resolved: mm/kmemleak: fix sleeping function called from invalid context at print message Address a bug in the kernel that triggers a "sleeping function called from invalid context" warning when /sys/kernel/debug/kmemleak is printed under...
CVE-2024-56634 gpio: grgpio: Add NULL check in grgpio_probe
In the Linux kernel, the following vulnerability has been resolved: gpio: grgpio: Add NULL check in grgpioprobe devmkasprintf can return a NULL pointer on failure,but this returned value in grgpioprobe is not checked. Add NULL check in grgpioprobe, to handle kernel NULL pointer dereference error...
CVE-2024-56573
Technical details for CVE-2024-56573 are not provided in the connected documents. The description mentions a Linux kernel fix in efi/libstub, but no vendor/product/version specifics are disclosed here. Monitor official advisories for updates.
SUSE CVE-2021-47608
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix kernel address leakage in atomic fetch The change in commit 37086bfdc737 "bpf: Propagate stack bounds to registers in atomics w/ BPFFETCH" around checkmemaccess handling is buggy since this would allow for unprivileged...
CVE-2024-36888 workqueue: Fix selection of wake_cpu in kick_pool()
In the Linux kernel, the following vulnerability has been resolved: workqueue: Fix selection of wakecpu in kickpool With cpupossiblemask=0-63 and cpuonlinemask=0-7 the following kernel oops was observed: smp: Bringing up secondary CPUs ... smp: Brought up 1 node, 8 CPUs Unable to handle kernel...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a kernel pointer leak in the RDMA/hfi1 module...
kernel: Information leak in l2cap_parse_conf_req in net/bluetooth/l2cap_core.c
An information leak vulnerability was found in the Linux kernel's implementation of logical link control and adaptation protocol L2CAP, part of the Bluetooth stack in the l2capparseconfreq function. An attacker with physical access within the range of standard Bluetooth transmission could use thi...
DEBIAN-CVE-2021-47216
In the Linux kernel, the following vulnerability has been resolved: scsi: advansys: Fix kernel pointer leak Pointers should be printed with %p or %px rather than cast to 'unsigned long' and printed with %lx. Change %lx to %p to print the hashed pointer...
CVE-2021-47216
In the Linux kernel, the following vulnerability has been resolved: scsi: advansys: Fix kernel pointer leak Pointers should be printed with %p or %px rather than cast to 'unsigned long' and printed with %lx. Change %lx to %p to print the hashed pointer...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel, which stems from the presence of a kernel pointer leak...
CVE-2021-46938
In the Linux kernel, the following vulnerability has been resolved: dm rq: fix double free of blkmqtagset in dev remove after table load fails When loading a device-mapper table for a request-based mapped device, and the allocation/initialization of the blkmqtagset for the device fails, a followi...
CVE-2021-46938
In the Linux kernel, the following vulnerability has been resolved: dm rq: fix double free of blkmqtagset in dev remove after table load fails When loading a device-mapper table for a request-based mapped device, and the allocation/initialization of the blkmqtagset for the device fails, a followi...
kernel: speculative pointer dereference in do_prlimit() in kernel/sys.c
A vulnerabilty was found in Linux Kernel, where a speculative pointer dereference problem exists in the Linux Kernel on the doprlimit function. The resource argument value is controlled and is used in pointer arithmetic for the 'rlim' variable and can be used to leak the contents...
kernel: uninitialized registers on stack in nft_do_chain can cause kernel pointer leakage to UM
A flaw was found in the Linux kernel in net/netfilter/nftablescore.c:nftdochain, which can cause a use-after-free. This issue needs to handle 'return' with proper preconditions, as it can lead to a kernel information leak problem caused by a local, unprivileged attacker...