18 matches found
Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15
In the Linux kernel, the following vulnerability has been resolved: net: mdio: fixed an undefined behavior in bit shifting for mdiobusregister. Shifting a signed 32-bit value by 31 bits is undefined; therefore, the significant bit was changed to unsigned. The UBSAN warning appears as follows:...
Unity Linux 20.1050e Security Update: kernel (UTSA-2026-004863)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004863 advisory. In the Linux kernel, the following vulnerability has been resolved: net: mdio: fix undefined behavior in bit shift for mdiobusregister Shifting signed 32-bit value b...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003582)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003582 advisory. An issue was discovered in the Linux kernel before 5.0. The function mdiobusregister in drivers/net/phy/mdiobus.c calls putdevice, which will trigger a...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003713)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003713 advisory. An issue was discovered in the Linux kernel before 5.0. The function mdiobusregister in drivers/net/phy/mdiobus.c calls putdevice, which will trigger a...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000325)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000325 advisory. An issue was discovered in the Linux kernel before 5.0. The function mdiobusregister in drivers/net/phy/mdiobus.c calls putdevice, which will trigger a...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993042)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993042 advisory. In the Linux kernel, the following vulnerability has been resolved: net: mdio: fix undefined behavior in bit shift for mdiobusregister Shifting signed 32-bit value b...
Linux Distros Unpatched Vulnerability : CVE-2022-50545
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - r6040: Fix kmemleak in probe and remove There is a memory leaks reported by kmemleak: unreferenced object 0xffff888116111000 size 2048: comm modprobe, pid 817,...
SUSE CVE-2022-49907
In the Linux kernel, the following vulnerability has been resolved: net: mdio: fix undefined behavior in bit shift for mdiobusregister Shifting signed 32-bit value by 31 bits is undefined, so changing significant bit to unsigned. The UBSAN warning calltrace like below: UBSAN: shift-out-of-bounds ...
CVE-2022-49907
In the Linux kernel, the following vulnerability has been resolved: net: mdio: fix undefined behavior in bit shift for mdiobusregister Shifting signed 32-bit value by 31 bits is undefined, so changing significant bit to unsigned. The UBSAN warning calltrace like below: UBSAN: shift-out-of-bounds ...
OESA-2024-2369 kernel security update
The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: net: mdio: fix unbalanced fwnode reference count in mdiodevicerelease There is warning report about ofnode refcount leak while probing mdio device: OF: ERROR:...
CVE-2021-47472
REJECTED CVE A memory leak bug was identified in the Linux kernel's net: mdiobus module. When deviceregister fails during mdiobusregister, the reference count is not decremented via putdevice, resulting in unreferenced memory allocations and subsequent leaks...
CVE-2021-47472
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...
SUSE CVE-2019-12819
An issue was discovered in the Linux kernel before 5.0. The function mdiobusregister in drivers/net/phy/mdiobus.c calls putdevice, which will trigger a fixedmdiobusinit use-after-free. This will cause a denial of service...
GSD-2021-1001985 net: mdiobus: Fix memory leak in __mdiobus_register
net: mdiobus: Fix memory leak in mdiobusregister This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.214 by commit...
The vulnerability of the `__mdiobus_register` function in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the mdiobusregister function in Linux operating systems is related to its use after deallocation. Exploiting this vulnerability could allow an attacker to cause a service failure...
kernel: use-after-free in function __mdiobus_register() in drivers/net/phy/mdio_bus.c
A use-after-free flaw was found in the Linux kernel's MDIO section of the network management subsystem. An attacker who is able to hot-plug a network device can trigger the mdiobusregister function in drivers/net/phy/mdiobus.c, which can cause a use-after-free condition causing a memory corruptio...
Linux kernel memory misreference vulnerability (CNVD-2019-38524)
The Linux kernel is a computer operating system kernel written in C and assembly language, compliant with the POSIX standard, and distributed under the GNU General Public License. A fixedmdiobusinit memory misreference vulnerability exists in Linux kernel versions prior to 5.0. The vulnerability...
UBUNTU-CVE-2019-12819
An issue was discovered in the Linux kernel before 5.0. The function mdiobusregister in drivers/net/phy/mdiobus.c calls putdevice, which will trigger a fixedmdiobusinit use-after-free. This will cause a denial of service...