35 matches found
Linux Distros Unpatched Vulnerability : CVE-2025-21870
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ASoC: SOF: ipc4-topology: Harden loops for looking up ALH copiers Other, non DAI copier widgets could have the same stream name sname as the ALH copier and in...
Linux Distros Unpatched Vulnerability : CVE-2022-50016
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ASoC: SOF: Intel: cnl: Do not process IPC reply before firmware boot It is not yet clear, but it is possible to create a firmware so broken that it will send a...
Linux Distros Unpatched Vulnerability : CVE-2024-46688
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: erofs: fix out-of-bound access when zerofsgbufgrowsize partially fails If zerofsgbufgrowsize...
Linux Distros Unpatched Vulnerability : CVE-2024-39506
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - liquidio: Adjust a NULL pointer handling path in liovfrepcopypacket In liovfrepcopypacket pginfo-page is compared to a NULL value, but then it is unconditionall...
Linux Distros Unpatched Vulnerability : CVE-2023-52708
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mmc: mmcspi: fix error handling in mmcspiprobe If mmcaddhost fails, it doesn't need to call mmcremovehost, or it will cause null-ptr-deref, because of deleting ...
CVE-2025-27701
CVE-2025-27701 describes a null-pointer dereference in the function process_crypto_cmd , where values in ptrs[i] can be NULL after slice_map_array() and are later dereferenced without a NULL check, enabling a local temporary DoS or out-of-bounds read and information disclosure. The CVE is listed ...
PT-2025-9974 · Linux +3 · Linux Kernel +3
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been identified, related to a missing read barrier in the qcom scm get tzmem pool function. This issue can cause the fetching of a stale scm...
UBUNTU-CVE-2025-21637
In the Linux kernel, the following vulnerability has been resolved: sctp: sysctl: udpport: avoid using current-nsproxy As mentioned in a previous commit of this series, using the 'net' structure via 'current' is not recommended for different reasons: - Inconsistency: getting info from the...
kernel: bnxt_en: Adjust logging of firmware messages in case of released token in __hwrm_send()
In the Linux kernel, the following vulnerability has been resolved: bnxten: Adjust logging of firmware messages in case of released token in hwrmsend In case of token is released due to token-state == BNXTHWRMDEFERRED, released token set to NULL is used in log messages. This issue is expected to ...
DEBIAN-CVE-2024-46835
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix smatch static checker warning adev-gfx.imu.funcs could be NULL...
DEBIAN-CVE-2024-39506
In the Linux kernel, the following vulnerability has been resolved: liquidio: Adjust a NULL pointer handling path in liovfrepcopypacket In liovfrepcopypacket pginfo-page is compared to a NULL value, but then it is unconditionally passed to skbaddrxfrag which looks strange and could lead to null...
SUSE CVE-2024-26802
In the Linux kernel, the following vulnerability has been resolved: stmmac: Clear variable when destroying workqueue Currently when suspending driver and stopping workqueue it is checked whether workqueue is not NULL and if so, it is destroyed. Function destroyworkqueue does drain queue and does...
OESA-2024-1263 stb security update
Single-file public domain libraries for C/C++. Security Fixes: stbimage is a single file MIT licensed library for processing images. It may look like stbiloadgifmain doesn’t give guarantees about the content of output value delays upon failure. Although it sets delays to zero at the beginning, it...
SUSE CVE-2010-4258
The doexit function in kernel/exit.c in the Linux kernel before 2.6.36.2 does not properly handle a KERNELDS getfs value, which allows local users to bypass intended accessok restrictions, overwrite arbitrary kernel memory locations, and gain privileges by leveraging a 1 BUG, 2 NULL pointer...
GHSA-Q8QJ-FC9Q-CPHR Undefined behavior in Tensorflow
Impact If a user passes an invalid argument to dlpack.todlpack the expected validations will cause variables to bind to nullptr while setting a status variable to the error condition. However, this status argument is not properly checked:...