14 matches found
kernel: drm/xe: Fix vm_bind_ioctl double free bug
In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix vmbindioctl double free bug If the argument check during an array bind fails, the bindops are freed twice as seen below. Fix this by setting bindops to NULL after freeing...
Unity Linux 20.1050e Security Update: kernel (UTSA-2025-990148)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990148 advisory. In the Linux kernel, the following vulnerability has been resolved: regmap: set debugfsname to NULL after it is freed There is a upstream commit...
UBUNTU-CVE-2025-40062
In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/qm - set NULL to qm-debug.qmdiffregs When the initialization of qm-debug.accdiffreg fails, the probe process does not exit. However, after qm-debug.qmdiffregs is freed, it is not set to NULL. This can lead to a...
CVE-2025-40062
CVE-2025-40062: In the Linux kernel crypto: hisilicon/qm code, freeing qm->debug.qm_diff_regs without NULLing it can lead to a double-free during removal. The fix is to set qm->debug.qm_diff_regs to NULL after freeing it. Connected advisories from Astra Linux and SUSE/OpenSUSE entries confi...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987270)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987270 advisory. In the Linux kernel, the following vulnerability has been resolved: selinux: fix double free of condlist on error paths On error path from condreadlist and...
CVE-2025-38731 drm/xe: Fix vm_bind_ioctl double free bug
In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix vmbindioctl double free bug If the argument check during an array bind fails, the bindops are freed twice as seen below. Fix this by setting bindops to NULL after freeing...
kernel: media: uvcvideo: Fix double free in error path
In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Fix double free in error path If the uvcstatusinit function fails to allocate the inturb, it will free the dev-status pointer but doesn't reset the pointer to NULL. This results in the kfree call in...
AZL-58039 CVE-2024-57980 affecting package kernel for versions less than 5.15.179.1-1
In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Fix double free in error path If the uvcstatusinit function fails to allocate the inturb, it will free the dev-status pointer but doesn't reset the pointer to NULL. This results in the kfree call in...
DEBIAN-CVE-2024-57980
In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Fix double free in error path If the uvcstatusinit function fails to allocate the inturb, it will free the dev-status pointer but doesn't reset the pointer to NULL. This results in the kfree call in...
SUSE CVE-2024-44997
In the Linux kernel, the following vulnerability has been resolved: net: ethernet: mtkwed: fix use-after-free panic in mtkwedsetuptcblockcb When there are multiple ap interfaces on one band and with WED on, turning the interface down will cause a kernel panic on MT798X. Previously, cbpriv was fre...
kernel: wifi: iwlwifi: fix double-free bug
A vulnerability was found in the Linux kernel's iwlwifi driver, where the TLV PC register data being freed is not properly marked as NULL afterwards, resulting in a double-free issue. This could lead to memory corruption or crashes...
DEBIAN-CVE-2024-26694
In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: fix double-free bug The storage for the TLV PC register data wasn't done like all the other storage in the drv-fw area, which is cleared at the end of deallocation. Therefore, the freeing must also be done...
SUSE CVE-2021-47058
In the Linux kernel, the following vulnerability has been resolved: regmap: set debugfsname to NULL after it is freed There is a upstream commit cffa4b2122f5"regmap:debugfs: Fix a memory leak when calling regmapattachdev" that adds a if condition when create name for debugfsname. With below...
DEBIAN-CVE-2021-47058
In the Linux kernel, the following vulnerability has been resolved: regmap: set debugfsname to NULL after it is freed There is a upstream commit cffa4b2122f5"regmap:debugfs: Fix a memory leak when calling regmapattachdev" that adds a if condition when create name for debugfsname. With below...