CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

141 matches found

OSV•added 2025/06/18 11:3 a.m.•4 views

CVE-2022-50226 crypto: ccp - Use kzalloc for sev ioctl interfaces to prevent kernel memory leak

In the Linux kernel, the following vulnerability has been resolved: crypto: ccp - Use kzalloc for sev ioctl interfaces to prevent kernel memory leak For some sev ioctl interfaces, input may be passed that is less than or equal to SEVFWBLOBMAXSIZE, but larger than the data that PSP firmware return...

5.5CVSS6.1AI score0.00063EPSS

Exploits0References8

CNNVD•added 2025/06/18 12:0 a.m.•1 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from ccp sev ioctl using kmalloc instead of kzalloc, which could lead to a kernel memory leak...

5.5CVSS6.3AI score0.00063EPSS

Exploits0References6

SUSE CVE•added 2025/05/21 12:45 a.m.•1 views

SUSE CVE-2025-37989

In the Linux kernel, the following vulnerability has been resolved: net: phy: leds: fix memory leak A network restart test on a router led to an out-of-memory condition, which was traced to a memory leak in the PHY LED trigger code. The root cause is misuse of the devm API. The registration...

5.5CVSS7.6AI score0.00066EPSS

Exploits0References17

OSV•added 2025/05/20 6:15 p.m.•6 views

DEBIAN-CVE-2025-37989

5.5CVSS5.7AI score0.00066EPSS

Exploits0References1

CVE•added 2025/05/20 5:9 p.m.•104 views

CVE-2025-37989

Technical details about CVE-2025-37989 are not publicly provided in the connected documents. Monitor for updates from official advisories; the current sources do not reveal affected products, versions, impact, or fixes beyond the description.

5.5CVSS6.5AI score0.00066EPSS

Exploits0References9Affected Software1

OSV•added 2025/05/20 5:9 p.m.•5 views

CVE-2025-37989 net: phy: leds: fix memory leak

5.5CVSS6.1AI score0.00066EPSS

Exploits0References12

NVD•added 2025/05/01 1:15 p.m.•13 views

CVE-2025-37743

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Avoid memory leak while enabling statistics Driver uses monitor destination rings for extended statistics mode and standalone monitor mode. In extended statistics mode, TLVs are parsed from the buffer received from...

5.5CVSS0.00031EPSS

Exploits0References2

OSV•added 2025/04/01 4:15 p.m.•0 views

DEBIAN-CVE-2025-21980

In the Linux kernel, the following vulnerability has been resolved: sched: address a potential NULL pointer dereference in the GRED scheduler. If kzalloc in gredinit returns a NULL pointer, the code follows the error handling path, invoking greddestroy. This, in turn, calls gredoffload, where...

5.5CVSS5.6AI score0.00033EPSS

Exploits0References1

OSV•added 2025/04/01 4:15 p.m.•1 views

UBUNTU-CVE-2025-21950

In the Linux kernel, the following vulnerability has been resolved: drivers: virt: acrn: hsm: Use kzalloc to avoid info leak in pmcmdioctl In the "pmcmdioctl" function, three memory objects allocated by kmalloc are initialized by "hcallgetcpustate", which are then copied to user space. The...

7.1CVSS6.2AI score0.00009EPSS

Exploits0References35

Cvelist•added 2025/04/01 3:41 p.m.•16 views

CVE-2025-21950 drivers: virt: acrn: hsm: Use kzalloc to avoid info leak in pmcmd_ioctl

0.00009EPSS

Exploits0References6

Debian CVE•added 2025/04/01 3:41 p.m.•6 views

CVE-2025-21950

7.1CVSS5.6AI score0.00009EPSS

Exploits0

SUSE CVE•added 2025/03/28 3:41 a.m.•1 views

SUSE CVE-2022-49740

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Check the count value of channel spec to prevent out-of-bounds reads This patch fixes slab-out-of-bounds reads in brcmfmac that occur in brcmfconstructchaninfo and brcmfenablebw402g when the count value of channel...

5.5CVSS6.8AI score0.00023EPSS

Exploits0References4

SUSE CVE•added 2025/02/27 3:5 a.m.•2 views

SUSE CVE-2022-49556

In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Use kzalloc for sev ioctl interfaces to prevent kernel data leak For some sev ioctl interfaces, the length parameter that is passed maybe less than or equal to SEVFWBLOBMAXSIZE, but larger than the data that PSP firmwar...

5.5CVSS6.4AI score0.00083EPSS

Exploits0References7

Cvelist•added 2025/02/26 2:14 a.m.•10 views

CVE-2022-49556 KVM: SVM: Use kzalloc for sev ioctl interfaces to prevent kernel data leak

0.00083EPSS

Exploits0References5

RedhatCVE•added 2025/01/20 5:51 a.m.•5 views

CVE-2024-57911

In the Linux kernel, the following vulnerability has been resolved: iio: dummy: iiosimplydummybuffer: fix information leak in triggered buffer The 'data' array is allocated via kmalloc and it is used to push data to user space from a triggered buffer, but it does not set values for inactive...

5.5CVSS6.8AI score0.00016EPSS

Exploits0References4

SUSE CVE•added 2025/01/20 3:48 a.m.•1 views

SUSE CVE-2024-57911

3.3CVSS7.5AI score0.00016EPSS

Exploits0References13

NVD•added 2025/01/19 12:15 p.m.•8 views

CVE-2024-57911

7.1CVSS0.00016EPSS

Exploits0References9

OSV•added 2025/01/19 12:15 p.m.•1 views

UBUNTU-CVE-2024-57911

7.1CVSS6.3AI score0.00016EPSS

Exploits0References45

Cvelist•added 2025/01/19 11:52 a.m.•16 views

CVE-2024-57911 iio: dummy: iio_simply_dummy_buffer: fix information leak in triggered buffer

0.00016EPSS

Exploits0References7

CVE•added 2025/01/06 4:20 p.m.•121 views

CVE-2024-56766

The CVE-2024-56766 issue affects the Linux kernel’s MTD/NAND path (mtd: rawnand) with a double-free in atmel_pmecc_create_user(). The root cause is allocating the user object with kzalloc() and then freeing it with kfree() after converting the allocation to devm_kzalloc(), leading to a use-after-...

7.8CVSS6.6AI score0.00017EPSS

Exploits0References9Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by