CVE-2026-53156

In the Linux kernel, the following vulnerability has been resolved: nvmem: core: fix use-after-free bugs in error paths Fix several instances of error paths in which we call nvmemdeviceput - which may end up freeing the underlying memory and other resources - and then keep on using the nvmem...

CVE-2026-53156

In the Linux kernel, the nvmem core had use-after-free bugs exposed in error paths where __nvmem_device_put() could free memory/resources and the code would continue to use the nvmem structure. The fix ensures the reference to the nvmem device is always released as the last step before returning ...

EUVD-2026-39247

In the Linux kernel, the following vulnerability has been resolved: nvmem: core: fix use-after-free bugs in error paths Fix several instances of error paths in which we call nvmemdeviceput - which may end up freeing the underlying memory and other resources - and then keep on using the nvmem...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: nvmem: zynqmpnvmem: Fixed the buffer size in DMA and memcpy. The buffer size used in DMA allocation and memcpy is incorrect. This can lead to undersized DMA buffer accesses and potential memory corruption. Use the correct buff...

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: nvmem: core: Fixed a memory leak in nvmemregister. In nvmemsetname, memory will be allocated for nvmem-dev.kobj.name during nvmemregister. When nvmemvalidatekeepouts fails, nvmem’s memory will be freed, but no one will free the...

SUSE CVE-2026-31743

In the Linux kernel, the following vulnerability has been resolved: nvmem: zynqmpnvmem: Fix buffer size in DMA and memcpy Buffer size used in dma allocation and memcpy is wrong. It can lead to undersized DMA buffer access and possible memory corruption. use correct buffer size in dmaalloccoherent...

Astra Linux – Vulnerability in Linux, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: nvmem: Fixed the shift-out-of-bound issue UBSAN when using cells with byte-sized bits. If a cell has “nbits” that is a multiple of BITSPERBYTE, the logic p &= GENMASKcell-nbits % BITSPERBYTE - 1, 0; will result in undefined...

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: nvmem: core: fix cleanup after devsetname If devsetname fails, we may leak nvmem-wpgpio because the cleanup does not handle it properly. While a minimal fix would be to add the gpiodput call, we can improve the situation by...

CVE-2026-31743

A flaw was found in the Linux kernel, specifically within the nvmem and zynqmpnvmem modules. An incorrect buffer size used during Direct Memory Access DMA allocation and memcpy operations can lead to undersized DMA buffer access. This vulnerability could allow a local attacker to cause memory...

CVE-2026-31743

In the Linux kernel, the following vulnerability has been resolved: nvmem: zynqmpnvmem: Fix buffer size in DMA and memcpy Buffer size used in dma allocation and memcpy is wrong. It can lead to undersized DMA buffer access and possible memory corruption. use correct buffer size in dmaalloccoherent...

CVE-2026-31743

In the Linux kernel, the following vulnerability has been resolved: nvmem: zynqmpnvmem: Fix buffer size in DMA and memcpy Buffer size used in dma allocation and memcpy is wrong. It can lead to undersized DMA buffer access and possible memory corruption. use correct buffer size in dmaalloccoherent...

EUVD-2026-26556

In the Linux kernel, the following vulnerability has been resolved: nvmem: zynqmpnvmem: Fix buffer size in DMA and memcpy Buffer size used in dma allocation and memcpy is wrong. It can lead to undersized DMA buffer access and possible memory corruption. use correct buffer size in dmaalloccoherent...

PT-2026-36378

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the zynqmp nvmem component of the nvmem subsystem where an incorrect buffer size is used during DMA allocation and memory copying. This can result in undersized DMA...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013502)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013502 advisory. In the Linux kernel, the following vulnerability has been resolved: nvmem: core: fix cleanup after devsetname If devsetname fails, we leak nvmem-wpgpio as the cleanu...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-010815)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010815 advisory. In the Linux kernel, the following vulnerability has been resolved: nvmem: core: fix cleanup after devsetname If devsetname fails, we leak nvmem-wpgpio as the cleanu...

Unity Linux 20.1050a Security Update: kernel (UTSA-2026-007004)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007004 advisory. In the Linux kernel, the following vulnerability has been resolved: eeprom: at24: fix memory corruption race condition If the eeprom is not accessible, an nvmem devi...

MiracleLinux 9 : kernel-5.14.0-570.16.1.el9_6 (AXSA:2025-10431:39)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10431:39 advisory. kernel: iouring/sqpoll: zero sqd-thread on tctx errors CVE-2025-21633 kernel: soc: qcom: socinfo: Avoid out of bounds read of serial number...

ROS-20260119-7393

A vulnerability in the pcf85063nvmemread function of the drivers/rtc/rtc-pcf85063.c component of the Linux operating system kernel is related to writing beyond buffer boundaries. Exploitation of the vulnerability may allow an attacker to gain access to sensitive data, violate its integrity, and...

Linux Distros Unpatched Vulnerability : CVE-2022-50734

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - nvmem: core: Fix memleak in nvmemregister devsetname will alloc memory for nvmem-dev.kobj.name in nvmemregister, when nvmemvalidatekeepouts failed, nvmem's memo...

SUSE CVE-2022-50734

In the Linux kernel, the following vulnerability has been resolved: nvmem: core: Fix memleak in nvmemregister devsetname will alloc memory for nvmem-dev.kobj.name in nvmemregister, when nvmemvalidatekeepouts failed, nvmem's memory will be freed and return, but nobody will free memory for...