CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2025/07/03 8:35 a.m.•7 views

CVE-2025-38113 ACPI: CPPC: Fix NULL pointer dereference when nosmp is used

In the Linux kernel, the following vulnerability has been resolved: ACPI: CPPC: Fix NULL pointer dereference when nosmp is used With nosmp in cmdline, other CPUs are not brought up, leaving their cpcdescptr NULL. CPU0's iteration via foreachpossiblecpu dereferences these NULL pointers, causing...

5.5CVSS6.4AI score0.00101EPSS

Exploits0References9

CVE•added 2025/07/03 8:35 a.m.•76 views

CVE-2025-38113

CVE-2025-38113 affects the Linux kernel: ACPI: CPPC: Fix NULL pointer dereference when nosmp is used. With nosmp in the kernel command line, CPUs aren’t brought up and their cpc_desc_ptr can be NULL, leading to NULL dereferences when CPU0 iterates over possible CPUs and panics. The issue is docum...

5.5CVSS7AI score0.00101EPSS

Exploits0References6Affected Software1

Tenable Nessus•added 2025/07/03 12:0 a.m.•8 views

AlmaLinux 9 : kernel (ALSA-2025:8333)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:8333 advisory. kernel: Use after Free in grusetcontextoption leading to kernel panic CVE-2022-3424 kernel: ndisc: use RCU protection in ndiscallocskb CVE-2025-21764...

7.8CVSS6.9AI score0.00023EPSS

Positive Technologies•added 2025/07/03 12:0 a.m.•2 views

PT-2025-27699

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A NULL pointer dereference issue has been identified in the Linux kernel, specifically in the ACPI CPPC component. This issue occurs when the nosmp parameter is used in the command lin...

5.5CVSS6.4AI score0.00101EPSS

Positive Technologies•added 2025/06/30 12:0 a.m.•1 views

PT-2025-34381

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.16.0-rc3+ Description: A list deletion corruption issue was resolved in the ti csi2rx dma callback function within the Linux kernel. If ti csi2rx start dma fails, the buffer is marked as an error but remains i...

6.2CVSS6.2AI score0.00024EPSS

Positive Technologies•added 2025/06/27 12:0 a.m.•3 views

PT-2025-35973

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the libiscsi component. Specifically, the iscsi conn-dd data field is initialized regardless of whether memory allocation succeeds. If ib fast reg...

5.5CVSS6.1AI score0.00024EPSS

Positive Technologies•added 2025/06/24 12:0 a.m.•2 views

PT-2025-28873

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A flaw was discovered in the Linux kernel related to the handling of the atm dev mutex within the ATM Asynchronous Transfer Mode subsystem. Specifically, the mutex was not being releas...

7.8CVSS7.1AI score0.00052EPSS

RedhatCVE•added 2025/06/20 9:23 p.m.•4 views

CVE-2025-38033

In the Linux kernel, the following vulnerability has been resolved: x86/Kconfig: make CFIAUTODEFAULT depend on !RUST or Rust = 1.88 Calling core::fmt::write from rust code while FineIBT is enabled results in a kernel panic: 4614.199779 kernel BUG at arch/x86/kernel/cet.c:132! 4614.205343 Oops:...

5.5CVSS7.2AI score0.00049EPSS

RedhatCVE•added 2025/06/20 7:28 p.m.•4 views

CVE-2025-38018

In the Linux kernel, the following vulnerability has been resolved: net/tls: fix kernel panic when allocpage failed We cannot set fraglist to NULL pointer when allocpage failed. It will be used in tlsstrpcheckqueueok when the next time tlsstrpreadsock is called. This is because we don't reset...

7CVSS6.9AI score0.0009EPSS

RedhatCVE•added 2025/06/20 10:4 a.m.•2 views

CVE-2022-50091

In the Linux kernel, the following vulnerability has been resolved: locking/csdlock: Change csdlockdebug from earlyparam to setup The csdlockdebug kernel-boot parameter is parsed by the earlyparam function csdlockdebug. If set, csdlockdebug invokes staticbranchenable to enable csdlockwait feature...

7CVSS6.1AI score0.00065EPSS

SUSE CVE•added 2025/06/19 3:42 a.m.•1 views

SUSE CVE-2022-50058

In the Linux kernel, the following vulnerability has been resolved: vdpasimblk: set number of address spaces and virtqueue groups Commit bda324fd037a "vdpasim: control virtqueue support" added two new fields nas, ngroups to vdpasimdevattr, but we forgot to initialize them for vdpasimblk. When...

5.5CVSS5.8AI score0.00074EPSS

SUSE CVE•added 2025/06/19 3:42 a.m.•0 views

SUSE CVE-2022-50096

In the Linux kernel, the following vulnerability has been resolved: x86/kprobes: Update kcb status flag after singlestepping Fix kprobes to update kcb kprobes control block status flag to KPROBEHITSSDONE even if the kp-posthandler is not set. This bug may cause a kernel panic if another INT3 user...

5.5CVSS7.4AI score0.00063EPSS

SUSE CVE•added 2025/06/19 3:39 a.m.•1 views

SUSE CVE-2022-50195

In the Linux kernel, the following vulnerability has been resolved: ARM: dts: qcom: replace gcc PXO with pxoboard fixed clock Replace gcc PXO phandle to pxoboard fixed clock declared in the dts. gcc driver doesn't provide PXOSRC as it's a fixed-clock. This cause a kernel panic if any driver...

5.5CVSS6.5AI score0.00074EPSS

SUSE CVE•added 2025/06/19 3:38 a.m.•2 views

SUSE CVE-2022-50230

In the Linux kernel, the following vulnerability has been resolved: arm64: set UXN on swapper page tables This issue was fixed upstream by accident in c3cee924bd85 "arm64: head: cover entire kernel image in initial ID map" as part of a large refactoring of the arm64 boot flow. This simple fix is...

5.5CVSS6.4AI score0.00074EPSS