CVE-2025-21828

CVE-2025-21828 relates to the Linux kernel wifi/mac80211 subsystem. The issue arises when a station (STA) has not been uploaded to the driver (e.g., STA state pre-moved to AUTHORIZED in IBSS scenarios) and a failed insertion leads to a premature STA free, causing the driver to attempt flushing an...

Linux Distros Unpatched Vulnerability : CVE-2025-21651

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: hns3: don't auto enable misc vector Currently, there is a time window between misc irq enabled and service task inited. If an interrupte is reported at thi...

Linux Distros Unpatched Vulnerability : CVE-2024-50177

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: fix a UBSAN warning in DML2.1 When programming phantom pipe, since...

Linux Distros Unpatched Vulnerability : CVE-2024-50000

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix NULL deref in mlx5etirbuilderalloc In mlx5etirbuilderalloc kvzalloc may retur...

Linux Distros Unpatched Vulnerability : CVE-2024-49948

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: add more sanity checks to qdiscpktleninit One path takes care of SKBGSODODGY, assuming skb-len is bigger than hdrlen. virtionethdrtoskb does not fully...

Linux Distros Unpatched Vulnerability : CVE-2024-52319

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: mm: use aligned address in cleargiganticpage In current kernel, hugetlbnopage calls...

Linux Distros Unpatched Vulnerability : CVE-2024-49886

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: platform/x86: ISST: Fix the KASAN report slab-out-of-bounds bug Attaching SST PCI device to ...

Linux Distros Unpatched Vulnerability : CVE-2024-53104

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Skip parsing frames of type UVCVSUNDEFINED in uvcparseformat This can lead ...

Linux Distros Unpatched Vulnerability : CVE-2025-21832

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - block: don't revert iter for -EIOCBQUEUED blkdevreaditer has a few odd checks, like gating the position and count adjustment on whether or not the result is...

Linux Distros Unpatched Vulnerability : CVE-2024-53066

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - nfs: Fix KMSAN warning in decodegetfattrattrs Fix the following KMSAN warning: CPU: 1 UID: 0 PID: 7651 Comm: cp Tainted: G B Tainted: B=BADPAGE Hardware name:...

Linux Distros Unpatched Vulnerability : CVE-2024-56564

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ceph: pass cred pointer to cephmdsauthmatch This eliminates a redundant getcurrentcred call,...

Linux Distros Unpatched Vulnerability : CVE-2025-21833

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - iommu/vt-d: Avoid use of NULL after WARNONONCE There is a WARNONONCE to catch an unlikely situation when domainremovedevpasid can't find the pasid. In case it...

Linux Distros Unpatched Vulnerability : CVE-2024-49889

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ext4: avoid use-after-free in ext4extshowleaf In ext4findextent, path may be freed by error or be reallocated, so using a previously saved ppath may have been...

Linux Distros Unpatched Vulnerability : CVE-2024-49885

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: mm, slub: avoid zeroing kmalloc redzone Since commit 946fa0dbf2d8 mm/slub: extend redzone...

Linux Distros Unpatched Vulnerability : CVE-2024-57982

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - xfrm: state: fix out-of-bounds read during lookup lookup and resize can run in parallel. The xfrmstatehashgeneration seqlock ensures a retry, but the hash...

Linux Distros Unpatched Vulnerability : CVE-2024-50033

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - slip: make slhcremember more robust against malicious packets syzbot found that slhcremember was missing checks against malicious packets 1. slhcremember only...

Linux Distros Unpatched Vulnerability : CVE-2024-50164

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bpf: Fix overloading of MEMUNINIT's meaning Lonial reported an issue in the BPF verifier where checkmemsizereg has the following code: if !tnumisconstreg-varoff...

Linux Distros Unpatched Vulnerability : CVE-2024-56635

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: net: avoid potential UAF in defaultoperstate syzbot reported an UAF in defaultoperstate 1...

Linux Distros Unpatched Vulnerability : CVE-2024-53152

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: PCI: tegra194: Move controller cleanups to pexepeventpexrstdeassert Currently, the endpoint...

Linux Distros Unpatched Vulnerability : CVE-2024-58001

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ocfs2: handle a symlink read error correctly Patch series Convert ocfs2 to use folios. Mark did a conversion of ocfs2 to use folios and sent it to me as a giant...