4815 matches found
CVE-2025-39956 igc: don't fail igc_probe() on LED setup error
In the Linux kernel, the following vulnerability has been resolved: igc: don't fail igcprobe on LED setup error When igcledsetup fails, igcprobe fails and triggers kernel panic in freenetdev since unregisternetdev is not called. 1 This behavior can be tested using fault-injection framework,...
CVE-2025-39956 igc: don't fail igc_probe() on LED setup error
In the Linux kernel, the following vulnerability has been resolved: igc: don't fail igcprobe on LED setup error When igcledsetup fails, igcprobe fails and triggers kernel panic in freenetdev since unregisternetdev is not called. 1 This behavior can be tested using fault-injection framework,...
CVE-2025-39956
Mode C: The CVE-2025-39956 entry concerns the Linux kernel igc driver: if igc_led_setup() fails during igc_probe(), the probe previously failed and could trigger a kernel panic in free_netdev() due to unregister_netdev() not being called. The published fixes treat LED setup failures as non-fatal,...
PT-2025-41367
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.17.0-rc4-enjuk-tnguy-00865-gc4940196ab02 Description The Linux kernel contains an issue where a failure in the igc led setup function during the probe process can lead to a kernel panic. This occurs because the...
SUSE CVE-2022-50540
In the Linux kernel, the following vulnerability has been resolved: dmaengine: qcom-adm: fix wrong sizeof config in slaveconfig Fix broken slaveconfig function that uncorrectly compare the peripheralsize with the size of the config pointer instead of the size of the config struct. This cause the...
SUSE CVE-2022-50552
In the Linux kernel, the following vulnerability has been resolved: blk-mq: use quiesced elevator switch when reinitializing queues The hctx's runwork may be racing with the elevator switch when reinitializing hardware queues. The queue is merely frozen in this context, but that only prevents...
EUVD-2025-31848
The Find Me On WordPress plugin through 2.0.9.1 does not sanitize and escape a parameter before using it in a SQL statement, allowing subscribers and above to perform SQL injection attacks...
Linux Distros Unpatched Vulnerability : CVE-2025-39903
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ofnuma: fix uninitialized memory nodes causing kernel panic When there are memory-only nodes nodes without CPUs, these nodes are not properly initialized,...
Linux Distros Unpatched Vulnerability : CVE-2023-53531
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: nullblk: fix poll request timeout handling When doing iouring benchmark on /dev/nullb0, it's...
Linux Distros Unpatched Vulnerability : CVE-2023-53538
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - btrfs: insert tree mod log move in pushnodeleft There is a fairly unlikely race condition in tree mod log rewind that can result in a kernel panic which has the...
Linux Distros Unpatched Vulnerability : CVE-2023-53542
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ARM: dts: exynos: Use Exynos5420 compatible for the MIPI video phy For some reason, the driver adding support for Exynos5420 MIPI phy back in 2016 wasn't used o...
Linux Distros Unpatched Vulnerability : CVE-2023-53573
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: clk: rs9: Fix suspend/resume Disabling the cache in commit 2ff4ba9e3702 clk: rs9: Fix I2C...
Linux Distros Unpatched Vulnerability : CVE-2025-39947
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net/mlx5e: Harden uplink netdev access against device unbind The function mlx5uplinknetdevget gets the uplink netdevice pointer from mdev-mlx5eres.uplinknetdev...
Linux Distros Unpatched Vulnerability : CVE-2023-53470
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ionic: catch failure from devlinkalloc Add a check for NULL on the alloc return. If devlinkalloc fails and we try to use devlinkpriv on the NULL return, the...
Linux Distros Unpatched Vulnerability : CVE-2023-53609
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - scsi: Revert scsi: core: Do not increase scsidevice's iorequestcnt if dispatch failed The atomicinc&cmd-device-iorequestcnt in scsiqueuerq would cause kernel...
Linux Distros Unpatched Vulnerability : CVE-2025-39949
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - qed: Don't collect too many protection override GRC elements In the protection override dump path, the firmware can return far too many GRC elements, resulting ...
Linux Distros Unpatched Vulnerability : CVE-2022-50486
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: ethernet: ti: Fix return type of netcpndostartxmit With clang's kernel control flow integrity kCFI, CONFIGCFICLANG, indirect call targets are validated...
Linux Distros Unpatched Vulnerability : CVE-2023-53563
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: cpufreq: amd-pstate-ut: Fix kernel panic when loading the driver After loading the...
CVE-2023-53654
In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: Add validation before accessing cgx and lmac with the addition of new MAC blocks like CN10K RPM and CN10KB RPMUSX, LMACs are noncontiguous and CGX blocks are also noncontiguous. But during RVU driver initialization,...
CVE-2023-53623
In the Linux kernel, the following vulnerability has been resolved: mm/swap: fix swapinfostruct race between swapoff and getswappages The si-lock must be held when deleting the si from the available list. Otherwise, another thread can re-add the si to the available list, which can lead to memory...