AZL-74400 CVE-2025-71075 affecting package kernel for versions less than 6.6.121.1-1

In the Linux kernel, the following vulnerability has been resolved: scsi: aic94xx: fix use-after-free in device removal path The asdpciremove function fails to synchronize with pending tasklets before freeing the asdha structure, leading to a potential use-after-free vulnerability. When a device...

SUSE CVE-2022-50714

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921e: fix rmmod crash in driver reload test In insmod/rmmod stress test, the following crash dump shows up immediately. The problem is caused by missing mt76dev in mt7921pciremove. We should make sure the drvdata i...

CVE-2022-50714

CVE-2022-50714 involves a Linux kernel driver issue in wifi mt76/mt7921e. The crash occurs during insmod/rmmod stress testing due to a missing mt76_dev in mt7921_pci_remove(), with the drvdata not guaranteed ready when probe() finishes. The result is a KASAN user-memory-access write (8 bytes) dur...

media: b2c2: Fix use-after-free causing by irq_check_work in flexcop_pci_remove

...

EUVD-2025-34577

In the Linux kernel, the following vulnerability has been resolved: media: b2c2: Fix use-after-free causing by irqcheckwork in flexcoppciremove The original code uses canceldelayedwork in flexcoppciremove, which does not guarantee that the delayed work item irqcheckwork has fully completed if it...

CVE-2025-39996

In the Linux kernel, the following vulnerability has been resolved: media: b2c2: Fix use-after-free causing by irqcheckwork in flexcoppciremove The original code uses canceldelayedwork in flexcoppciremove, which does not guarantee that the delayed work item irqcheckwork has fully completed if it...

CVE-2025-39996

CVE-2025-39996 affects the Linux kernel media driver for B2C2 FlexCop PCI. The underlying issue is a use-after-free caused by cancel_delayed_work() in flexcop_pci_remove(), which may free flexcop_device while irq_check_work is still running. The mitigation is to replace cancel_delayed_work() with...

PT-2025-42270

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a use-after-free flaw within the b2c2 component, specifically in the flexcop pci remove function. The issue arises because cancel delayed work does not guarante...

SUSE CVE-2024-35816

In the Linux kernel, the following vulnerability has been resolved: firewire: ohci: prevent leak of left-over IRQ on unbind Commit 5a95f1ded28691e6 "firewire: ohci: use devres for requested IRQ" also removed the call to freeirq in pciremove, leading to a leftover irq of devmrequestirq at...

CVE-2024-35816

A vulnerability was found in the Linux kernel's FireWire OHCI driver, which could lead to a resource leak by leaving behind an interrupt request IRQ when a device is unbound. This issue may cause instability or improper handling of IRQs, potentially affecting system performance or reliability...

DEBIAN-CVE-2024-35816

In the Linux kernel, the following vulnerability has been resolved: firewire: ohci: prevent leak of left-over IRQ on unbind Commit 5a95f1ded28691e6 "firewire: ohci: use devres for requested IRQ" also removed the call to freeirq in pciremove, leading to a leftover irq of devmrequestirq at...

UBUNTU-CVE-2023-52617

In the Linux kernel, the following vulnerability has been resolved: PCI: switchtec: Fix stdevrelease crash after surprise hot remove A PCI device hot removal may occur while stdev-cdev is held open. The call to stdevrelease then happens during close or exit, at a point way past switchtecpciremove...