49 matches found
UBUNTU-CVE-2023-54169
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: fix memory leak in mlx5eptpopen When kvzallocnode or kvzalloc failed in mlx5eptpopen, the memory pointed by "c" or "cparams" is not freed, which can lead to a memory leak. Fix by freeing the array in the error path...
CVE-2022-50867 drm/msm/a6xx: Fix kvzalloc vs state_kcalloc usage
In the Linux kernel, the following vulnerability has been resolved: drm/msm/a6xx: Fix kvzalloc vs statekcalloc usage adrenoshowobject is a trap! It will re-allocate the pointer it is passed on first call, when the data is ascii85 encoded, using kvmalloc/ kvfree. Which means the data passed to it...
CVE-2022-50867
CVE-2022-50867 is resolved in the Linux kernel (drm/msm/a6xx). The issue centers on kvzalloc vs state_kcalloc usage in adreno_show_object(), which reallocates the passed pointer on the first call when data is ascii85 encoded, via kvmalloc/kvfree. This caused a memory leak that was previously pres...
CVE-2022-50867 drm/msm/a6xx: Fix kvzalloc vs state_kcalloc usage
In the Linux kernel, the following vulnerability has been resolved: drm/msm/a6xx: Fix kvzalloc vs statekcalloc usage adrenoshowobject is a trap! It will re-allocate the pointer it is passed on first call, when the data is ascii85 encoded, using kvmalloc/ kvfree. Which means the data passed to it...
CVE-2023-54169
Technical details on CVE-2023-54169 (affected products/versions, root cause specifics, exploitability, and fixes) are not publicly provided in the supplied documents. Monitor for updates and official advisories.
Linux Distros Unpatched Vulnerability : CVE-2023-54169
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net/mlx5e: fix memory leak in mlx5eptpopen When kvzallocnode or kvzalloc failed in mlx5eptpopen, the memory pointed by c or cparams is not freed, which can lead...
Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-390843)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-390843 advisory. In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: fix a double-free in arfscreategroups When in allocated by kvzalloc fails,...
SUSE CVE-2025-21717
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: add missing cputonode to kvzallocnode in mlx5eopenxdpredirectsq kvzallocnode is not doing a runtime check on the node argument allocpagesnodenoprof does have a VMBUGON, but it expands to nothing on !CONFIGDEBUGVM build...
UBUNTU-CVE-2025-21717
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: add missing cputonode to kvzallocnode in mlx5eopenxdpredirectsq kvzallocnode is not doing a runtime check on the node argument allocpagesnodenoprof does have a VMBUGON, but it expands to nothing on !CONFIGDEBUGVM build...
CVE-2025-21717 net/mlx5e: add missing cpu_to_node to kvzalloc_node in mlx5e_open_xdpredirect_sq
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: add missing cputonode to kvzallocnode in mlx5eopenxdpredirectsq kvzallocnode is not doing a runtime check on the node argument allocpagesnodenoprof does have a VMBUGON, but it expands to nothing on !CONFIGDEBUGVM build...
CVE-2025-21717
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: add missing cputonode to kvzallocnode in mlx5eopenxdpredirectsq kvzallocnode is not doing a runtime check on the node argument allocpagesnodenoprof does have a VMBUGON, but it expands to nothing on !CONFIGDEBUGVM build...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fixed NULL dereference in mlx5etirbuilderalloc. In mlx5etirbuilderalloc, kvzalloc may return NULL, which will be dereferenced on the next line in a reference to the modify field. This issue was identified by the Linux...
CVE-2024-50000
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix NULL deref in mlx5etirbuilderalloc In mlx5etirbuilderalloc kvzalloc may return NULL which is dereferenced on the next line in a reference to the modify field. Found by Linux Verification Center linuxtesting.org wit...
DEBIAN-CVE-2024-50000
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix NULL deref in mlx5etirbuilderalloc In mlx5etirbuilderalloc kvzalloc may return NULL which is dereferenced on the next line in a reference to the modify field. Found by Linux Verification Center linuxtesting.org wit...
AZL-51460 CVE-2024-50000 affecting package kernel for versions less than 5.15.173.1-1
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix NULL deref in mlx5etirbuilderalloc In mlx5etirbuilderalloc kvzalloc may return NULL which is dereferenced on the next line in a reference to the modify field. Found by Linux Verification Center linuxtesting.org wit...
UBUNTU-CVE-2024-50000
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix NULL deref in mlx5etirbuilderalloc In mlx5etirbuilderalloc kvzalloc may return NULL which is dereferenced on the next line in a reference to the modify field. Found by Linux Verification Center linuxtesting.org wit...
CVE-2024-50000 net/mlx5e: Fix NULL deref in mlx5e_tir_builder_alloc()
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix NULL deref in mlx5etirbuilderalloc In mlx5etirbuilderalloc kvzalloc may return NULL which is dereferenced on the next line in a reference to the modify field. Found by Linux Verification Center linuxtesting.org wit...
CVE-2024-50000
CVE-2024-50000 affects the Linux kernel mlx5e driver: in mlx5e_tir_builder_alloc(), kvzalloc() may return NULL and the code dereferences it, causing a NULL pointer dereference. The vulnerability is fixed by the upstream patch in the Linux kernel; remediation is to upgrade to a version containing ...
kernel: net/mlx5e: fix memory leak in mlx5e_ptp_open
A flaw was found in the Linux kernel net/mlx5e Ethernet driver’s mlx5eptpopen function. When memory allocation via kvzallocnode or kvzalloc fails, previously allocated resources c or cparams were not properly freed, leading to a memory leak in the error path. An unprivileged local user interactin...
SUSE CVE-2024-35835
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: fix a double-free in arfscreategroups When in allocated by kvzalloc fails, arfscreategroups will free ft-g and return an error. However, arfscreatetable, the only caller of arfscreategroups, will hold this error and ca...