63134 matches found
CVE-2026-53204
The CVE-2026-53204 issue concerns the Linux kernel firmware component for Stratix10 RSU. A NULL pointer dereference could occur if rsu_send_msg() times out during probe and subsequent error cleanup would still queue messages on a cleared channel. The fix adds proper cleanup: remove the async clie...
CVE-2026-53177
In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix NULL pointer dereference PCIe errors detected by a Root Port or Downstream Port cause error recovery services to run on all subordinate devices regardless of administrative state. The .errordetected callback,...
EUVD-2026-39268
In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix NULL pointer dereference PCIe errors detected by a Root Port or Downstream Port cause error recovery services to run on all subordinate devices regardless of administrative state. The .errordetected callback,...
CVE-2026-53177
In the Linux kernel, the bnxt_en driver fixes a NULL pointer dereference in PCIe error handling. The vulnerability arises when PCIe errors detected by a Root Port or Downstream Port trigger error recovery on subordinate devices even if the NIC is administratively down. Specifically, the .error_de...
CVE-2026-53166
In the Linux kernel, the following vulnerability has been resolved: futex/requeue: Prevent NULL pointer dereference in removewaiter on self-deadlock When FUTEXCMPREQUEUEPI requeues a non-top waiter that already owns the target PI futex, taskblocksonrtmutex returns -EDEADLK before setting...
CVE-2026-53166
The CVE-2026-53166 entry documents a Linux kernel vulnerability in futex/requeue where a NULL pointer dereference can occur in remove_waiter() during self-deadlock. Root cause: when FUTEX_CMP_REQUEUE_PI requeues a non-top waiter that already owns the target PI futex, task_blocks_on_rt_mutex() ret...
CVE-2026-53163
The CVE concerns the Linux kernel rtmutex path: specifically, a vulnerability in remove_waiter() that could dereference a waiter not enqueued, triggered via FUTEX_CMP_REQUEUE_PI. The issue is tied to task_blocks_on_rt_mutex() not arming the waiter on deadlock detection, leaving waiter->task NU...
EUVD-2026-39249
In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: Fix NULL pointer dereference in rpmsg callback A NULL pointer dereference was observed on Hawi at boot when the DSP sends a glink message before fastrpcrpmsgprobe has completed initialization: Unable to handle kern...
CVE-2026-53158
The CVE-2026-53158 issue affects the Linux kernel’s fastrpc rpmsg path. A NULL pointer dereference could occur at boot when a DSP glink message arrives before fastrpc_rpmsg_probe() has finished initialization, causing a crash from an uninitialized spinlock on the fastrpc_channel_ctx. The root cau...
CVE-2026-53152
The CVE affects the Linux kernel driver for rk-series SD/MMC controllers: mmc: dw_mmc-rockchip. The issue stems from missing private data for very old controllers (rk2928, rk3066, rk3188) that do not support UHS speeds and lacked a parse_dt callback and driver private data. The init path now assu...
CVE-2026-53144
The CVE-2026-53144 issue affects the Linux kernel drm/amdkfd path. If usr_queue_id_array is NULL and num_queues is non-zero, get_queue_ids() can return NULL, and callers that only check IS_ERR() miss this, allowing suspend_queues() to call q_array_invalidate() and dereference NULL during iteratio...
EUVD-2025-210334
A NULL pointer dereference in the gffilterinparentchain function /filtercore/filterpid.c of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Denial of Service DoS via supplying a crafted file...
CVE-2025-60473
A NULL pointer dereference in the gffilterinparentchain function /filtercore/filterpid.c of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Denial of Service DoS via supplying a crafted file...
UBUNTU-CVE-2025-60473
A NULL pointer dereference in the gffilterinparentchain function /filtercore/filterpid.c of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Denial of Service DoS via supplying a crafted file...
PT-2026-52449
Name of the Vulnerable Software and Affected Versions Nokogiri versions prior to 1.19.4 Description Nokogiri contains a bug occurring when certain methods are called on native wrapper classes that inherit from Nokogiri::XML::Node and have been allocated but not initialized. This leads to a NULL...
Linux Distros Unpatched Vulnerability : CVE-2026-53111
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bpf: testrun: Fix the null pointer dereference issue in bpflwtxmitpushencap The bpflwtxmitpushencap helper needs to access skbdstskb-dev to calculate the neede...
Linux Distros Unpatched Vulnerability : CVE-2026-53064
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - dm cache: fix null-deref with concurrent writes in passthrough mode In passthrough mode, when dm-cache starts to invalidate a cache entry and bio prison cell lo...
Linux Distros Unpatched Vulnerability : CVE-2026-53034
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bpf, sockmap: Fix afunix null-ptr-deref in proto update unixstreamconnect sets skstate WRITEONCEsk-skstate, TCPESTABLISHED before it assigns a peer unixpeersk =...
Linux Distros Unpatched Vulnerability : CVE-2026-53012
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - nexthop: fix IPv6 route referencing IPv4 nexthop syzbot reported a panic 1 2. When an IPv6 nexthop is replaced with an IPv4 nexthop, the hasv4 flag of all group...
Linux Distros Unpatched Vulnerability : CVE-2026-52957
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libceph: Fix potential null-ptr-deref in decodechooseargs A message of type CEPHMSGOSDMAP contains an OSD map that itself contains a CRUSH map. When decoding th...