Lucene search
K

439 matches found

OSV
OSV
added 2025/12/30 12:23 p.m.3 views

CVE-2023-54295 mtd: spi-nor: Fix shift-out-of-bounds in spi_nor_set_erase_type

In the Linux kernel, the following vulnerability has been resolved: mtd: spi-nor: Fix shift-out-of-bounds in spinorseterasetype spinorseterasetype was used either to set or to mask out an erase type. When we used it to mask out an erase type a shift-out-of-bounds was hit: UBSAN: shift-out-of-boun...

6.5AI score0.00168EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/12/30 12:0 a.m.11 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992548)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992548 advisory. In the Linux kernel, the following vulnerability has been resolved: mtd: partitions: Fix refcount leak in parseredbootof ofgetchildbyname returns a node pointer with...

5.5CVSS6.1AI score0.0016EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/12/26 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2023-54104

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mtd: rawnand: fslupm: Fix an off-by one test in funexecop 'op-cs' is copied in 'fun-mchipnumber' which is used to access the 'mchipoffsets' and the 'rnbgpio'...

6.7AI score0.00175EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/12/25 12:55 a.m.5 views

SUSE CVE-2023-54104

In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: fslupm: Fix an off-by one test in funexecop 'op-cs' is copied in 'fun-mchipnumber' which is used to access the 'mchipoffsets' and the 'rnbgpio' arrays. These arrays have NANDMAXCHIPS elements, so the index must be...

6.1CVSS6.5AI score0.00175EPSS
Exploits0References21
EUVD
EUVD
added 2025/12/24 3:30 p.m.6 views

EUVD-2023-60341

In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: fslupm: Fix an off-by one test in funexecop 'op-cs' is copied in 'fun-mchipnumber' which is used to access the 'mchipoffsets' and the 'rnbgpio' arrays. These arrays have NANDMAXCHIPS elements, so the index must be...

6AI score0.00175EPSS
Exploits0References6
OSV
OSV
added 2025/12/24 1:16 p.m.4 views

UBUNTU-CVE-2023-54104

In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: fslupm: Fix an off-by one test in funexecop 'op-cs' is copied in 'fun-mchipnumber' which is used to access the 'mchipoffsets' and the 'rnbgpio' arrays. These arrays have NANDMAXCHIPS elements, so the index must be...

5.7AI score0.00175EPSS
Exploits0References7
CVE
CVE
added 2025/12/24 1:6 p.m.13 views

CVE-2023-54104

Technical details for CVE-2023-54104 are not publicly available in the provided documents; monitor for updates.

6.1AI score0.00175EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/12/24 1:6 p.m.25 views

CVE-2023-54104 mtd: rawnand: fsl_upm: Fix an off-by one test in fun_exec_op()

In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: fslupm: Fix an off-by one test in funexecop 'op-cs' is copied in 'fun-mchipnumber' which is used to access the 'mchipoffsets' and the 'rnbgpio' arrays. These arrays have NANDMAXCHIPS elements, so the index must be...

0.00175EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/12/24 12:0 a.m.4 views

PT-2025-53181

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the Linux kernel related to out-of-bounds access within the fun exec op function in the rawnand/fsl upm module. The op-cs value is copied into fun-mchip number, which ...

7.2AI score0.00175EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2025/12/16 2:15 p.m.4 views

CVE-2025-68238

In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: cadence: fix DMA device NULL pointer dereference The DMA device pointer dmadev was being dereferenced before ensuring that cdnsctrl-dmac is properly initialized. Move the assignment of dmadev after successfully...

5.7AI score0.00161EPSS
Exploits0References35
OSV
OSV
added 2025/12/16 2:15 p.m.5 views

UBUNTU-CVE-2025-68237

In the Linux kernel, the following vulnerability has been resolved: mtdchar: fix integer overflow in read/write ioctls The "req.start" and "req.len" variables are u64 values that come from the user at the start of the function. We mask away the high 32 bits of "req.len" so that's capped at U32MAX...

5.8AI score0.00156EPSS
Exploits0References24
OSV
OSV
added 2025/12/16 2:8 p.m.3 views

CVE-2025-68238 mtd: rawnand: cadence: fix DMA device NULL pointer dereference

In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: cadence: fix DMA device NULL pointer dereference The DMA device pointer dmadev was being dereferenced before ensuring that cdnsctrl-dmac is properly initialized. Move the assignment of dmadev after successfully...

6.4AI score0.00161EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2025/12/16 12:0 a.m.5 views

Ubuntu 14.04 LTS / 16.04 LTS : Linux kernel vulnerabilities (USN-7930-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7930-1 advisory. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update...

7.8CVSS7.1AI score0.00284EPSS
Exploits0References19
Tenable Nessus
Tenable Nessus
added 2025/12/16 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-68238

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mtd: rawnand: cadence: fix DMA device NULL pointer dereference The DMA device pointer dmadev was being dereferenced before ensuring that cdnsctrl-dmac is proper...

6AI score0.00161EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2025/12/15 1:41 p.m.9 views

USN-7930-2: Linux kernel (FIPS) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Cryptographic API; - ACPI drivers; - Hardware monitoring drivers; - InfiniBand drivers; - MTD block device drivers;...

7.8CVSS7.1AI score0.00284EPSS
Exploits0
OSV
OSV
added 2025/12/15 1:41 p.m.5 views

USN-7930-2 linux-fips vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Cryptographic API; - ACPI drivers; - Hardware monitoring drivers; - InfiniBand drivers; - MTD block device drivers;...

7.8CVSS6.7AI score0.00284EPSS
Exploits0References19
Ubuntu
Ubuntu
added 2025/12/15 1:25 p.m.9 views

USN-7930-1: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Cryptographic API; - ACPI drivers; - Hardware monitoring drivers; - InfiniBand drivers; - MTD block device drivers;...

7.8CVSS7.1AI score0.00284EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.3 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989697)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989697 advisory. In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: denali: Use managed device resources All of the resources used by this driver has...

5.5CVSS5.7AI score0.00245EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/10/27 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2022-50566

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mtd: Fix device name leak when register device failed in addmtddevice There is a kmemleak when register device failed: unreferenced object 0xffff888101aab550 si...

6.2AI score0.00229EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/10/23 12:10 a.m.4 views

SUSE CVE-2022-50566

In the Linux kernel, the following vulnerability has been resolved: mtd: Fix device name leak when register device failed in addmtddevice There is a kmemleak when register device failed: unreferenced object 0xffff888101aab550 size 8: comm "insmod", pid 3922, jiffies 4295277753 age 925.408s hex du...

4.7CVSS6.4AI score0.00229EPSS
Exploits0References7
Rows per page
Query Builder