60 matches found
CVE-2025-68249
In the Linux kernel, the following vulnerability has been resolved: most: usb: hdmprobe: Fix calling putdevice before device initialization The early error path in hdmprobe can jump to errfreemdev before &mdev-dev has been initialized with deviceinitialize. Calling putdevice&mdev-dev there trigge...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990607)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990607 advisory. In the Linux kernel, the following vulnerability has been resolved: cpufreq: schedutil: Use kobject release method to free sugovtunables The struct sugovtunables is...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988654)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988654 advisory. In the Linux kernel, the following vulnerability has been resolved: cpufreq: schedutil: Use kobject release method to free sugovtunables The struct sugovtunables is...
EUVD-2022-54716
In the Linux kernel, the following vulnerability has been resolved: cpufreq: governor: Use kobject release method to free dbsdata The struct dbsdata embeds a struct govattrset and the struct govattrset embeds a kobject. Since every kobject must have a release method and we can't use kfree to free...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987573)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987573 advisory. In the Linux kernel, the following vulnerability has been resolved: cpufreq: schedutil: Use kobject release method to free sugovtunables The struct sugovtunables is...
CVE-2023-53613 dax: Fix dax_mapping_release() use after free
In the Linux kernel, the following vulnerability has been resolved: dax: Fix daxmappingrelease use after free A CONFIGDEBUGKOBJECTRELEASE test of removing a device-dax region provider like modprobe -r daxhmem yields: kobject: 'mapping0' ffff93eb460e8800: kobjectrelease, parent 0000000000000000...
CVE-2023-53613 dax: Fix dax_mapping_release() use after free
In the Linux kernel, the following vulnerability has been resolved: dax: Fix daxmappingrelease use after free A CONFIGDEBUGKOBJECTRELEASE test of removing a device-dax region provider like modprobe -r daxhmem yields: kobject: 'mapping0' ffff93eb460e8800: kobjectrelease, parent 0000000000000000...
CVE-2025-39871
CVE-2025-39871 relates to the Linux kernel dmaengine idxd driver. The fix removes an improper idxd_free() call that could trigger a duplicate put_device() leading to refcount underflow and a use-after-free during module unload. The issue arises in idxd_remove() and during module exit when CONFIG_...
kernel: usb: typec: altmode should keep reference to parent
In the Linux kernel, the following vulnerability has been resolved: usb: typec: altmode should keep reference to parent The altmode device release refers to its parent device, but without keeping a reference to it. When registering the altmode, get a reference to the parent and put it in the...
Linux Distros Unpatched Vulnerability : CVE-2024-50150
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: usb: typec: altmode should keep reference to parent The altmode device release refers to its...
OESA-2025-1202 kernel security update
The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: usb: typec: altmode should keep reference to parent The altmode device release refers to its parent device, but without keeping a reference to it. When registeri...
SUSE CVE-2022-49513
In the Linux kernel, the following vulnerability has been resolved: cpufreq: governor: Use kobject release method to free dbsdata The struct dbsdata embeds a struct govattrset and the struct govattrset embeds a kobject. Since every kobject must have a release method and we can't use kfree to free...
CVE-2022-49513
In the Linux kernel, the following vulnerability has been resolved: cpufreq: governor: Use kobject release method to free dbsdata The struct dbsdata embeds a struct govattrset and the struct govattrset embeds a kobject. Since every kobject must have a release method and we can't use kfree to free...
DEBIAN-CVE-2022-49513
In the Linux kernel, the following vulnerability has been resolved: cpufreq: governor: Use kobject release method to free dbsdata The struct dbsdata embeds a struct govattrset and the struct govattrset embeds a kobject. Since every kobject must have a release method and we can't use kfree to free...
UBUNTU-CVE-2022-49513
In the Linux kernel, the following vulnerability has been resolved: cpufreq: governor: Use kobject release method to free dbsdata The struct dbsdata embeds a struct govattrset and the struct govattrset embeds a kobject. Since every kobject must have a release method and we can't use kfree to free...
DEBIAN-CVE-2022-49223
In the Linux kernel, the following vulnerability has been resolved: cxl/port: Hold port reference until decoder release KASAN + DEBUGKOBJECTRELEASE reports a potential use-after-free in cxldecoderrelease where it goes to reference its parent, a cxlport, to free its id back to port-decoderida. BUG...
UBUNTU-CVE-2022-49223
In the Linux kernel, the following vulnerability has been resolved: cxl/port: Hold port reference until decoder release KASAN + DEBUGKOBJECTRELEASE reports a potential use-after-free in cxldecoderrelease where it goes to reference its parent, a cxlport, to free its id back to port-decoderida. BUG...
CVE-2022-49513 cpufreq: governor: Use kobject release() method to free dbs_data
In the Linux kernel, the following vulnerability has been resolved: cpufreq: governor: Use kobject release method to free dbsdata The struct dbsdata embeds a struct govattrset and the struct govattrset embeds a kobject. Since every kobject must have a release method and we can't use kfree to free...
CVE-2022-49513
In the Linux kernel, the following vulnerability has been resolved: cpufreq: governor: Use kobject release method to free dbsdata The struct dbsdata embeds a struct govattrset and the struct govattrset embeds a kobject. Since every kobject must have a release method and we can't use kfree to free...
CVE-2022-49513
The CVE-2022-49513 issue is in the Linux kernel cpufreq governor: a dbs_data structure embeds a kobject, which requires a release() method. The fix introduces cpufreq_dbs_data_release() to free the dbs_data via kobject::release() instead of direct kfree(), addressing a call trace involving delaye...