23 matches found
Linux Distros Unpatched Vulnerability : CVE-2025-40232
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - rv: Fully convert enabledmonitors to use listhead as iterator The callbacks in enabledmonitorsseqops are inconsistent. Some treat the iterator as struct rvmonit...
CVE-2025-40232 rv: Fully convert enabled_monitors to use list_head as iterator
In the Linux kernel, the following vulnerability has been resolved: rv: Fully convert enabledmonitors to use listhead as iterator The callbacks in enabledmonitorsseqops are inconsistent. Some treat the iterator as struct rvmonitor , while others treat the iterator as struct listhead . This causes...
CVE-2025-40232 rv: Fully convert enabled_monitors to use list_head as iterator
In the Linux kernel, the following vulnerability has been resolved: rv: Fully convert enabledmonitors to use listhead as iterator The callbacks in enabledmonitorsseqops are inconsistent. Some treat the iterator as struct rvmonitor , while others treat the iterator as struct listhead . This causes...
CVE-2023-53250 firmware: dmi-sysfs: Fix null-ptr-deref in dmi_sysfs_register_handle
In the Linux kernel, the following vulnerability has been resolved: firmware: dmi-sysfs: Fix null-ptr-deref in dmisysfsregisterhandle KASAN reported a null-ptr-deref error: KASAN: null-ptr-deref in range 0x0000000000000008-0x000000000000000f CPU: 0 PID: 1373 Comm: modprobe Hardware name: QEMU...
Linux Distros Unpatched Vulnerability : CVE-2021-46930
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: usb: mtu3: fix listhead check warning This is caused by uninitialization of listhead. BUG:...
CVE-2025-38387 RDMA/mlx5: Initialize obj_event->obj_sub_list before xa_insert
In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Initialize objevent-objsublist before xainsert The objevent may be loaded immediately after inserted, then if the listhead is not initialized then we may get a poisonous pointer. This fixes the crash below: mlx5core...
The vulnerability of the list_head() function in the mtu3 component of the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the listhead function in the mtu3 component of the Linux operating system’s kernel is related to the lack of initialization of the listhead. Exploiting this vulnerability could allow an attacker to cause a service failure...
CVE-2024-39464
In the Linux kernel, the following vulnerability has been resolved: media: v4l: async: Fix notifier list entry init struct v4l2asyncnotifier has several listhead members, but only waitinglist and donelist are initialized. notifierentry was kept 'zeroed' leading to an uninitialized listhead. This...
CVE-2024-39464 media: v4l: async: Fix notifier list entry init
In the Linux kernel, the following vulnerability has been resolved: media: v4l: async: Fix notifier list entry init struct v4l2asyncnotifier has several listhead members, but only waitinglist and donelist are initialized. notifierentry was kept 'zeroed' leading to an uninitialized listhead. This...
CVE-2024-39464
CVE-2024-39464 (Linux kernel) : The vulnerability lies in media: v4l: async: Fix notifier list entry init. The v4l2_async_notifier struct contains several list_head members, but notifier_entry was left zeroed while waiting_list and done_list were initialized, causing an uninitialized list_head. T...
CVE-2024-39464 media: v4l: async: Fix notifier list entry init
In the Linux kernel, the following vulnerability has been resolved: media: v4l: async: Fix notifier list entry init struct v4l2asyncnotifier has several listhead members, but only waitinglist and donelist are initialized. notifierentry was kept 'zeroed' leading to an uninitialized listhead. This...
CVE-2024-36925 swiotlb: initialise restricted pool list_head when SWIOTLB_DYNAMIC=y
In the Linux kernel, the following vulnerability has been resolved: swiotlb: initialise restricted pool listhead when SWIOTLBDYNAMIC=y Using restricted DMA pools CONFIGDMARESTRICTEDPOOL=y in conjunction with dynamic SWIOTLB CONFIGSWIOTLBDYNAMIC=y leads to the following crash when initialising the...
SUSE CVE-2021-46930
In the Linux kernel, the following vulnerability has been resolved: usb: mtu3: fix listhead check warning This is caused by uninitialization of listhead. BUG: KASAN: use-after-free in listdelentryvalid+0x34/0xe4 Call trace: dumpbacktrace+0x0/0x298 showstack+0x24/0x34 dumpstack+0x130/0x1a8...
CVE-2021-46930
In the Linux kernel, the following vulnerability has been resolved: usb: mtu3: fix listhead check warning This is caused by uninitialization of listhead. BUG: KASAN: use-after-free in listdelentryvalid+0x34/0xe4 Call trace: dumpbacktrace+0x0/0x298 showstack+0x24/0x34 dumpstack+0x130/0x1a8...
Spoofing
In the Linux kernel, the following vulnerability has been resolved: usb: mtu3: fix listhead check warning This is caused by uninitialization of listhead. BUG: KASAN: use-after-free in listdelentryvalid+0x34/0xe4 Call trace: dumpbacktrace+0x0/0x298 showstack+0x24/0x34 dumpstack+0x130/0x1a8...
CVE-2021-46930 usb: mtu3: fix list_head check warning
In the Linux kernel, the following vulnerability has been resolved: usb: mtu3: fix listhead check warning This is caused by uninitialization of listhead. BUG: KASAN: use-after-free in listdelentryvalid+0x34/0xe4 Call trace: dumpbacktrace+0x0/0x298 showstack+0x24/0x34 dumpstack+0x130/0x1a8...
Linux kernel security vulnerabilities
The Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux. A security vulnerability exists in the Linux kernel that stems from an uninitialized listhead...
DEBIAN-CVE-2023-1075
A flaw was found in the Linux Kernel. The tlsistxready incorrectly checks for list emptiness, potentially accessing a type confused entry to the listhead, leaking the last byte of the confused field that overlaps with rec-txready...
CVE-2023-1075
A flaw was found in the Linux Kernel. The tlsistxready incorrectly checks for list emptiness, potentially accessing a type confused entry to the listhead, leaking the last byte of the confused field that overlaps with rec-txready...
CVE-2023-1077
In the Linux kernel, picknextrtentity may return a type confused entry, not detected by the BUGON condition, as the confused entry will not be NULL, but listhead.The buggy error condition would lead to a type confused entry with the list head,which would then be used as a type confused...