Lucene search
K

380 matches found

Debian CVE
Debian CVE
added 2026/02/14 4:27 p.m.7 views

CVE-2026-23201

In the Linux kernel, the following vulnerability has been resolved: ceph: fix oops due to invalid pointer for kfree in parselongname This fixes a kernel oops when reading ceph snapshot directories .snap, for example by simply running ls /mnt/myceph/.snap. The variable str is guarded by freekfree,...

5.5CVSS5.2AI score0.00112EPSS
Exploits0
Cvelist
Cvelist
added 2026/02/14 4:27 p.m.39 views

CVE-2026-23201 ceph: fix oops due to invalid pointer for kfree() in parse_longname()

In the Linux kernel, the following vulnerability has been resolved: ceph: fix oops due to invalid pointer for kfree in parselongname This fixes a kernel oops when reading ceph snapshot directories .snap, for example by simply running ls /mnt/myceph/.snap. The variable str is guarded by freekfree,...

0.00112EPSS
Exploits0References3
EUVD
EUVD
added 2026/02/14 4:1 p.m.8 views

EUVD-2026-5874

In the Linux kernel, the following vulnerability has been resolved: drm/xe/nvm: Fix double-free on aux add failure After a successful auxiliarydeviceinit, auxdev-dev.release xenvmreleasedev is responsible for the kfreenvm. When there is failure with auxiliarydeviceadd, driver will call...

5.3AI score0.00113EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/02/14 4:1 p.m.26 views

CVE-2026-23162 drm/xe/nvm: Fix double-free on aux add failure

In the Linux kernel, the following vulnerability has been resolved: drm/xe/nvm: Fix double-free on aux add failure After a successful auxiliarydeviceinit, auxdev-dev.release xenvmreleasedev is responsible for the kfreenvm. When there is failure with auxiliarydeviceadd, driver will call...

0.00113EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/02/04 4:0 p.m.6 views

CVE-2026-23046

In the Linux kernel, the following vulnerability has been resolved: virtionet: fix device mismatch in devmkzalloc/devmkfree Initial rsshdr allocation uses virtiodevice-device, but virtnetsetqueues frees using netdevice-device. This device mismatch causing below devres warning 3788.514041...

5.2AI score0.00176EPSS
Exploits0
CVE
CVE
added 2026/02/04 4:0 p.m.18 views

CVE-2026-23046

CVE-2026-23046 relates to a Linux kernel vulnerability in virtio_net where an allocation (rss_hdr) used virtio_device->device but deallocation used net_device->device, causing devres warnings. Multiple connected advisories (SUSE, Red Hat, Ubuntu, Debian, OSV, NVD) confirm the fix: the alloc...

5.1AI score0.00176EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/27 12:0 a.m.4 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005035)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005035 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix memory leak why Resource release is needed on the error handling path to...

5.5CVSS5.8AI score0.00249EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/01/24 12:25 a.m.3 views

SUSE CVE-2025-71151

In the Linux kernel, the following vulnerability has been resolved: cifs: Fix memory and information leak in smb3reconfigure In smb3reconfigure, if smb3syncsessionctxpasswords fails, the function returns immediately without freeing and erasing the newly allocated newpassword and newpassword2. Thi...

4.7CVSS5.2AI score0.00114EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2026/01/23 3:16 p.m.3 views

CVE-2025-71151

In the Linux kernel, the following vulnerability has been resolved: cifs: Fix memory and information leak in smb3reconfigure In smb3reconfigure, if smb3syncsessionctxpasswords fails, the function returns immediately without freeing and erasing the newly allocated newpassword and newpassword2. Thi...

5.5CVSS5.9AI score0.00114EPSS
Exploits0References25
Cvelist
Cvelist
added 2026/01/23 2:15 p.m.26 views

CVE-2025-71151 cifs: Fix memory and information leak in smb3_reconfigure()

In the Linux kernel, the following vulnerability has been resolved: cifs: Fix memory and information leak in smb3reconfigure In smb3reconfigure, if smb3syncsessionctxpasswords fails, the function returns immediately without freeing and erasing the newly allocated newpassword and newpassword2. Thi...

0.00114EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.2 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004184)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004184 advisory. In auditfreelsmfield of auditfilter.c, there is a possible bad kfree due to a logic error in auditdatatoentry. This could lead to local escalation of privilege with ...

7.8CVSS6.8AI score0.00213EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/01/09 9:51 a.m.10 views

CVE-2020-10841

An issue was discovered on Samsung mobile devices with P9.0 and Q10.0 Exynos 9610 chipsets software. There is an arbitrary kfree in the vipx and vertex drivers. The Samsung ID is SVE-2019-16294 February 2020...

7.8CVSS7.2AI score0.00136EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.7 views

PT-2026-8209

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's Ceph implementation where an invalid pointer is passed to the kfree function within the parse longname function. This occurs when reading Ceph snapsho...

5.5CVSS5.8AI score0.00112EPSS
Exploits0References235
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.7 views

PT-2026-8132

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak exists in the unittest data add function within the Linux kernel. If of resolve phandles fails, the allocated unittest data is not freed, resulting in a memory leak. The fi...

5.5CVSS6.8AI score0.00107EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2025/12/31 12:30 a.m.2 views

SUSE CVE-2022-50873

In the Linux kernel, the following vulnerability has been resolved: vdpa/vpvdpa: fix kfree a wrong pointer in vpvdparemove In vpvdparemove, the code kfree&vpvdpamgtdev-mgtdev.idtable uses a reference of pointer as the argument of kfree, which is the wrong pointer and then may hit crash like this:...

5.5CVSS6.7AI score0.00166EPSS
Exploits0References5
EUVD
EUVD
added 2025/12/30 3:30 p.m.5 views

EUVD-2022-55862

In the Linux kernel, the following vulnerability has been resolved: remoteproc: sysmon: fix memory leak in qcomaddsysmonsubdev The kfree should be called when ofirqgetbyname fails or devmrequestthreadedirq fails in qcomaddsysmonsubdev, otherwise there will be a memory leak, so add kfree to fix it...

5.9AI score0.00211EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2025/12/30 1:16 p.m.6 views

CVE-2022-50873

In the Linux kernel, the following vulnerability has been resolved: vdpa/vpvdpa: fix kfree a wrong pointer in vpvdparemove In vpvdparemove, the code kfree&vpvdpamgtdev-mgtdev.idtable uses a reference of pointer as the argument of kfree, which is the wrong pointer and then may hit crash like this:...

5.7AI score0.00166EPSS
Exploits0References5
OSV
OSV
added 2025/12/30 1:16 p.m.6 views

UBUNTU-CVE-2022-50873

In the Linux kernel, the following vulnerability has been resolved: vdpa/vpvdpa: fix kfree a wrong pointer in vpvdparemove In vpvdparemove, the code kfree&vpvdpamgtdev-mgtdev.idtable uses a reference of pointer as the argument of kfree, which is the wrong pointer and then may hit crash like this:...

5.7AI score0.00166EPSS
Exploits0References6
NVD
NVD
added 2025/12/30 1:15 p.m.7 views

CVE-2022-50836

In the Linux kernel, the following vulnerability has been resolved: remoteproc: sysmon: fix memory leak in qcomaddsysmonsubdev The kfree should be called when ofirqgetbyname fails or devmrequestthreadedirq fails in qcomaddsysmonsubdev, otherwise there will be a memory leak, so add kfree to fix it...

0.00211EPSS
Exploits0References6
CVE
CVE
added 2025/12/30 12:15 p.m.13 views

CVE-2022-50873

CVE-2022-50873 affects the Linux kernel. In vp_vdpa_remove(), kfree is called with the address of vp_vdpa_mgtdev->mgtdev.id_table (a pointer’s address), which is the wrong pointer and can lead to a crash (example trace included). The advisory states this has been resolved via a kernel fix; rem...

6.3AI score0.00166EPSS
Exploits0References3
Rows per page
Query Builder