CVE-2022-50723

In the Linux kernel, the following vulnerability has been resolved: bnxten: fix memory leak in bnxtnvmtest Free the kzalloc'ed buffer before returning in the success path...

CVE-2022-50723

In the Linux kernel, the following vulnerability has been resolved: bnxten: fix memory leak in bnxtnvmtest Free the kzalloc'ed buffer before returning in the success path...

CVE-2023-54122 drm/msm/dpu: Add check for cstate

In the Linux kernel, the following vulnerability has been resolved: drm/msm/dpu: Add check for cstate As kzalloc may fail and return NULL pointer, it should be better to check cstate in order to avoid the NULL pointer dereference in drmatomichelpercrtcreset. Patchwork:...

CVE-2022-50723 bnxt_en: fix memory leak in bnxt_nvm_test()

In the Linux kernel, the following vulnerability has been resolved: bnxten: fix memory leak in bnxtnvmtest Free the kzalloc'ed buffer before returning in the success path...

CVE-2022-50723 bnxt_en: fix memory leak in bnxt_nvm_test()

In the Linux kernel, the following vulnerability has been resolved: bnxten: fix memory leak in bnxtnvmtest Free the kzalloc'ed buffer before returning in the success path...

PT-2025-53027

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak exists in the bnxt nvm test function within the bnxt en module of the Linux kernel. The issue occurs because a buffer allocated using kzalloc is not freed before the functi...

PT-2025-53199

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s drm/msm/dpu subsystem. Specifically, a missing check for a null pointer after a kzalloc call can lead to a null pointer dereference within the drm...

SUSE CVE-2025-68167

In the Linux kernel, the following vulnerability has been resolved: gpiolib: fix invalid pointer access in debugfs If the memory allocation in gpiolibseqstart fails, the s-private field remains uninitialized and is later dereferenced without checking in gpiolibseqstop. Initialize s-private to NUL...

CVE-2025-68309

In the Linux kernel, the following vulnerability has been resolved: PCI/AER: Fix NULL pointer access by aerinfo The kzallocGFPKERNEL may return NULL, so all accesses to aerinfo-xxx will result in kernel panic. Fix it...

CVE-2025-68309 PCI/AER: Fix NULL pointer access by aer_info

In the Linux kernel, the following vulnerability has been resolved: PCI/AER: Fix NULL pointer access by aerinfo The kzallocGFPKERNEL may return NULL, so all accesses to aerinfo-xxx will result in kernel panic. Fix it...

EUVD-2025-203729

In the Linux kernel, the following vulnerability has been resolved: gpiolib: fix invalid pointer access in debugfs If the memory allocation in gpiolibseqstart fails, the s-private field remains uninitialized and is later dereferenced without checking in gpiolibseqstop. Initialize s-private to NUL...

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-991198)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991198 advisory. In the Linux kernel, the following vulnerability has been resolved: amdkfd: use calloc instead of kzalloc to avoid integer overflow This uses calloc instead of doing...

PT-2025-49051

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel driver allocates memory for sensor data using devm kzalloc, but lacks a check to ensure the allocation was successful. If memory allocation fails, attempting to...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988678)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988678 advisory. In the Linux kernel, the following vulnerability has been resolved: spi: spi-zynq-qspi: Fix a NULL pointer dereference in zynqqspiexecmemop In zynqqspiexecmemop,...

Astra Linux - уязвимость в linux-6.12

In the Linux kernel, the following vulnerability has been resolved: genirq/irqsim: Initialize work context pointers properly Initialize ops member's pointers properly by using kzalloc instead of kmalloc when allocating the simulation work context. Otherwise the pointers contain random content...

SUSE CVE-2025-40059

In the Linux kernel, the following vulnerability has been resolved: coresight: Fix incorrect handling for return value of devmkzalloc The return value of devmkzalloc could be an null pointer, use "!desc.pdata" to fix incorrect handling return value of devmkzalloc...

Siemens SIMATIC Devices Use of Uninitialized Resource (CVE-2024-26901)

In the Linux kernel, the following vulnerability has been resolved: dosysnametohandle: use kzalloc to fix kernel-infoleak. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'...

CVE-2025-40059

CVE-2025-40059 (Linux kernel, coresight) has a fixed issue where devm_kzalloc could return NULL, leading to incorrect handling. The patch corrects the check by using the condition described in the advisory to handle a NULL pdata-derived return value from devm_kzalloc. SUSE and OpenVAS entries con...

CVE-2025-40059 coresight: Fix incorrect handling for return value of devm_kzalloc

In the Linux kernel, the following vulnerability has been resolved: coresight: Fix incorrect handling for return value of devmkzalloc The return value of devmkzalloc could be an null pointer, use "!desc.pdata" to fix incorrect handling return value of devmkzalloc...

CVE-2025-40059 coresight: Fix incorrect handling for return value of devm_kzalloc

In the Linux kernel, the following vulnerability has been resolved: coresight: Fix incorrect handling for return value of devmkzalloc The return value of devmkzalloc could be an null pointer, use "!desc.pdata" to fix incorrect handling return value of devmkzalloc...