CVE-2025-39910 mm/vmalloc, mm/kasan: respect gfp mask in kasan_populate_vmalloc()

In the Linux kernel, the following vulnerability has been resolved: mm/vmalloc, mm/kasan: respect gfp mask in kasanpopulatevmalloc kasanpopulatevmalloc and its helpers ignore the caller's gfpmask and always allocate memory using the hardcoded GFPKERNEL flag. This makes them inconsistent with...

PT-2025-40160

Name of the Vulnerable Software and Affected Versions Linux kernel versions affected versions not specified Description The Linux kernel contains an issue where the iio Industrial I/O memory was allocated but not released during driver shutdown, leading to a kernel memory leak kmemleak. This occu...

CVE-2025-39886 bpf: Tell memcg to use allow_spinning=false path in bpf_timer_init()

In the Linux kernel, the following vulnerability has been resolved: bpf: Tell memcg to use allowspinning=false path in bpftimerinit Currently, calling bpfmapkmallocnode from bpfasyncinit can cause various locking issues; see the following stack trace edited for style as one example: ... 10.011566...

Linux Distros Unpatched Vulnerability : CVE-2023-53391

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - shmem: use ramfskillsb for killsb method of ramfs-based tmpfs As the ramfs-based tmpfs uses ramfsinitfscontext for the initfscontext method, which allocates...

SUSE CVE-2023-53303

In the Linux kernel, the following vulnerability has been resolved: net: microchip: vcap api: Fix possible memory leak for vcapduprule Inject fault When select CONFIGVCAPKUNITTEST, the below memory leak occurs. If kzalloc for duprule succeeds, but the following kmemdup fails, the duprule, ckf and...

Linux Distros Unpatched Vulnerability : CVE-2022-50396

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: sched: fix memory leak in tcindexsetparms Syzkaller reports a memory leak as follows: ==================================== BUG: memory leak unreferenced...

Linux Distros Unpatched Vulnerability : CVE-2023-53441

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bpf: cpumap: Fix memory leak in cpumapupdateelem Syzkaller reported a memory leak as follows: BUG: memory leak unreferenced object 0xff110001198ef748 size 192:...

Linux Distros Unpatched Vulnerability : CVE-2025-39852

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net/tcp: Fix socket memory leak in TCP-AO failure handling for IPv6 When tcpaocopyallmatching fails in tcpv6synrecvsock it just exits the function. This ends up...

Linux Distros Unpatched Vulnerability : CVE-2023-53402

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - kernel/printk/index.c: fix memory leak with using debugfslookup When calling debugfslookup the result must have dput called on it, otherwise the memory will lea...

SUSE CVE-2022-50376

In the Linux kernel, the following vulnerability has been resolved: orangefs: Fix kmemleak in orangefskernel,clientdebuginit When insert and remove the orangefs module, there are memory leaked as below: unreferenced object 0xffff88816b0cc000 size 2048: comm "insmod", pid 783, jiffies 4294813439 a...

SUSE CVE-2023-53288

In the Linux kernel, the following vulnerability has been resolved: drm/client: Fix memory leak in drmclientmodesetprobe When a new mode is set to modeset-mode, the previous mode should be freed. This fixes the following kmemleak report: drmmodeduplicate+0x45/0x220 drm...

SUSE CVE-2023-53344

In the Linux kernel, the following vulnerability has been resolved: can: bcm: bcmtxsetup: fix KMSAN uninit-value in vfswrite Syzkaller reported the following issue: ===================================================== BUG: KMSAN: uninit-value in aiorwdone fs/aio.c:1520 inline BUG: KMSAN:...

SUSE CVE-2023-53401

In the Linux kernel, the following vulnerability has been resolved: mm: kmem: fix a NULL pointer dereference in objstockflushrequired KCSAN found an issue in objstockflushrequired: stock-cachedobjcg can be reset between the check and dereference:...

CVE-2022-50376

In the Linux kernel, the following vulnerability has been resolved: orangefs: Fix kmemleak in orangefskernel,clientdebuginit When insert and remove the orangefs module, there are memory leaked as below: unreferenced object 0xffff88816b0cc000 size 2048: comm "insmod", pid 783, jiffies 4294813439 a...

UBUNTU-CVE-2023-53412

In the Linux kernel, the following vulnerability has been resolved: USB: gadget: bcm63xxudc: fix memory leak with using debugfslookup When calling debugfslookup the result must have dput called on it, otherwise the memory will leak over time. To make things simpler, just call debugfslookupandremo...

UBUNTU-CVE-2023-53401

In the Linux kernel, the following vulnerability has been resolved: mm: kmem: fix a NULL pointer dereference in objstockflushrequired KCSAN found an issue in objstockflushrequired: stock-cachedobjcg can be reset between the check and dereference:...

CVE-2023-53401 mm: kmem: fix a NULL pointer dereference in obj_stock_flush_required()

In the Linux kernel, the following vulnerability has been resolved: mm: kmem: fix a NULL pointer dereference in objstockflushrequired KCSAN found an issue in objstockflushrequired: stock-cachedobjcg can be reset between the check and dereference:...

CVE-2022-50396 net: sched: fix memory leak in tcindex_set_parms

In the Linux kernel, the following vulnerability has been resolved: net: sched: fix memory leak in tcindexsetparms Syzkaller reports a memory leak as follows: ==================================== BUG: memory leak unreferenced object 0xffff88810c287f00 size 256: comm "syz-executor105", pid 3600,...

CVE-2022-50391 mm/mempolicy: fix memory leak in set_mempolicy_home_node system call

In the Linux kernel, the following vulnerability has been resolved: mm/mempolicy: fix memory leak in setmempolicyhomenode system call When encountering any vma in the range with policy other than MPOLBIND or MPOLPREFERREDMANY, an error is returned without issuing a mpolput on the policy just...

PT-2025-40626

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak exists in the SMB client within the Linux kernel, specifically within the smbd negotiate function's error handling path. The leak occurs due to objects remaining on kmem...