CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

7.1CVSS5.4AI score0.00121EPSS

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: nvme: fixed memory allocation in nvmeprreadkeys nvmeprreadkeys takes numkeys from userspace and uses it to calculate the allocation size for rse via structsize. The upper limit is PRKEYSMAX 64K. A malicious or buggy userspace...

Exploits0References1

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: coresight: Fixed incorrect handling of the return value of devmkzalloc. The return value of devmkzalloc could potentially be a null pointer. Use !desc.pdata to correct the incorrect handling of this return value...

5.2AI score0.00176EPSS

AstraLinux•added 2026/05/03 11:59 p.m.•7 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: clk: imx: clk-imxrt1050: fixed a memory leak in imxrt1050clocksprobe. Use devmofiomap instead of ofiomap to automatically handle the unused ioremap regions. If any errors occur, the memory allocated by kzalloc may leak; howeve...

5.5CVSS5.3AI score0.00145EPSS

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: drm/msm/dpu: checked for a null return from devmkzalloc in dpuwritebackinit. Due to the possible failure of devmkzalloc, dpuwbconn might be NULL, which could lead to a null pointer derefrence later. Therefore, it might be better ...

5.5CVSS5.2AI score0.00134EPSS

7.8CVSS5.8AI score0.00153EPSS

Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: igb: Do not free qvector unless a new one is allocated. Avoid potential use-after-free conditions under memory pressure. If kzalloc fails, qvector will be freed, but it will remain in the original adapter-qvectorvidx array positi...

AstraLinux•added 2026/05/03 11:59 p.m.•5 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Added a NULL pointer check for kzalloc Why & How Check the return pointer of kzalloc before using it...

5.5CVSS5.8AI score0.0024EPSS

AstraLinux•added 2026/05/03 11:59 p.m.•4 views

Astra Linux – Vulnerability in Linux 5.10, Linux, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: drm/msm/mdp5: Added a check for kzalloc. Since kzalloc may fail and return a NULL pointer, it’s better to check the return value in order to avoid dereferencing a NULL pointer. Patchwork:...

5.5CVSS5.3AI score0.00146EPSS

AstraLinux•added 2026/05/03 11:59 p.m.•5 views

Astra Linux – Vulnerability found in Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: media: mtk-vcodec: There is a potential null pointer dereference issue in the SCP code. The return value of devmkzalloc needs to be checked to avoid NULL pointer dereferences. This is similar to the CVE-2022-3113 vulnerability...

5.5CVSS5.5AI score0.00291EPSS

5.5CVSS6.3AI score0.00164EPSS

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: wifi: cfg80211: tests: Fixed a potential NULL dereference in testcfg80211ParseColocatedAp. kunitkzalloc may return NULL. Dereferencing it without a NULL check may lead to a NULL dereference. Added a NULL check for ies...

AstraLinux•added 2026/05/03 11:59 p.m.•4 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: net: sparx5: switchdev: fixed the possible NULL pointer dereferencing issue. As a possible failure in allocation, devmkzalloc may return a NULL pointer. Therefore, it is better to check for ‘db’ to prevent the dereferencing of a...

5.5CVSS5.3AI score0.0024EPSS

Exploits0References1

5.5CVSS6AI score0.00225EPSS

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Error handling was added in xhcimapurbfordma. Currently, xhcimapurbfordma creates a temporary buffer and copies the SG list to the new linear buffer. However, if kzallocnode fails, the call to sgpcopytobuffer may lead ...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: PCI/AER: Fixed NULL pointer access via aerinfo. The kzallocGFPKERNEL function may return NULL, resulting in kernel panic when accessing aerinfo-xxx. This issue has been fixed...

5.1AI score0.00145EPSS

AstraLinux•added 2026/05/03 11:59 p.m.•4 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: drm/tegra: Fixed a possible null pointer derefrence issue. In tegracrtcreset, new memory is allocated using kzalloc, but no checks are performed. Before calling drmatomichelpercrtcreset, the state of the memory allocation should ...

5.5CVSS5.8AI score0.00156EPSS

5.5CVSS5.8AI score0.00754EPSS

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: amdkfd: Using calloc instead of kzalloc to avoid integer overflow. This approach uses calloc instead of performing the multiplication operation, which might lead to integer overflow...

7.1CVSS5.7AI score0.00252EPSS

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: KVM: SVM – Use kzalloc for SEV ioctl interfaces to prevent kernel data leaks. For some SEV ioctl interfaces, the length parameter passed may be less than or equal to SEVFWBLOBMAXSIZE, but larger than the data returned by the PSP...