Lucene search
K

914 matches found

Tenable Nessus
Tenable Nessus
added 2025/12/11 12:0 a.m.1 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-991170)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991170 advisory. In the Linux kernel, the following vulnerability has been resolved: net: mdio: validate parameter addr in mdiobusgetphy The caller may pass any value as addr, what m...

7.8CVSS6.2AI score0.00185EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/12/09 12:31 a.m.2 views

SUSE CVE-2022-50624

In the Linux kernel, the following vulnerability has been resolved: net: netsec: fix error handling in netsecregistermdio If phydeviceregister fails, phydevicefree need be called to put refcount, so memory of phy device and device name can be freed in callback function. If getphydevice fails,...

6.5AI score0.00173EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/12/09 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2022-50624

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: netsec: fix error handling in netsecregistermdio If phydeviceregister fails, phydevicefree need be called to put refcount, so memory of phy device and devi...

6AI score0.00173EPSS
Exploits0References2
EUVD
EUVD
added 2025/12/08 3:31 a.m.3 views

EUVD-2022-55688

In the Linux kernel, the following vulnerability has been resolved: net: netsec: fix error handling in netsecregistermdio If phydeviceregister fails, phydevicefree need be called to put refcount, so memory of phy device and device name can be freed in callback function. If getphydevice fails,...

6AI score0.00173EPSS
Exploits0References7
NVD
NVD
added 2025/12/08 2:15 a.m.4 views

CVE-2022-50624

In the Linux kernel, the following vulnerability has been resolved: net: netsec: fix error handling in netsecregistermdio If phydeviceregister fails, phydevicefree need be called to put refcount, so memory of phy device and device name can be freed in callback function. If getphydevice fails,...

0.00173EPSS
Exploits0References6
OSV
OSV
added 2025/12/08 2:15 a.m.1 views

DEBIAN-CVE-2022-50624

In the Linux kernel, the following vulnerability has been resolved: net: netsec: fix error handling in netsecregistermdio If phydeviceregister fails, phydevicefree need be called to put refcount, so memory of phy device and device name can be freed in callback function. If getphydevice fails,...

5.4AI score0.00173EPSS
Exploits0References1
OSV
OSV
added 2025/12/08 2:15 a.m.3 views

UBUNTU-CVE-2022-50624

In the Linux kernel, the following vulnerability has been resolved: net: netsec: fix error handling in netsecregistermdio If phydeviceregister fails, phydevicefree need be called to put refcount, so memory of phy device and device name can be freed in callback function. If getphydevice fails,...

5.8AI score0.00173EPSS
Exploits0References9
Cvelist
Cvelist
added 2025/12/08 1:16 a.m.25 views

CVE-2022-50624 net: netsec: fix error handling in netsec_register_mdio()

In the Linux kernel, the following vulnerability has been resolved: net: netsec: fix error handling in netsecregistermdio If phydeviceregister fails, phydevicefree need be called to put refcount, so memory of phy device and device name can be freed in callback function. If getphydevice fails,...

0.00173EPSS
Exploits0References6
CVE
CVE
added 2025/12/08 1:16 a.m.12 views

CVE-2022-50624

The CVE-2022-50624 issue is in the Linux kernel’s netsec: fix error handling in netsec_register_mdio(). The root cause is improper cleanup when phy_device_register() or get_phy_device() fail during MDIO setup, leading to memory and object leaks. The documented fix ensures that: if phy_device_regi...

6.2AI score0.00173EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2025/12/08 1:16 a.m.4 views

CVE-2022-50624

In the Linux kernel, the following vulnerability has been resolved: net: netsec: fix error handling in netsecregistermdio If phydeviceregister fails, phydevicefree need be called to put refcount, so memory of phy device and device name can be freed in callback function. If getphydevice fails,...

5.4AI score0.00173EPSS
Exploits0
OSV
OSV
added 2025/12/08 1:16 a.m.5 views

CVE-2022-50624 net: netsec: fix error handling in netsec_register_mdio()

In the Linux kernel, the following vulnerability has been resolved: net: netsec: fix error handling in netsecregistermdio If phydeviceregister fails, phydevicefree need be called to put refcount, so memory of phy device and device name can be freed in callback function. If getphydevice fails,...

6.4AI score0.00173EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2025/12/08 12:0 a.m.3 views

PT-2025-49465

In the Linux kernel, the following vulnerability has been resolved: net: netsec: fix error handling in netsec register mdio If phy device register fails, phy device free need be called to put refcount, so memory of phy device and device name can be freed in callback function. If get phy device...

6.5AI score0.00173EPSS
Exploits0References7
Ubuntu
Ubuntu
added 2025/12/05 10:51 a.m.10 views

USN-7909-4: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM32 architecture; - ARM64 architecture; - MIPS architecture; - PowerPC architecture; - RISC-V architecture; - S39...

7.8CVSS7.2AI score0.0037EPSS
Exploits3
EUVD
EUVD
added 2025/12/04 3:31 p.m.6 views

EUVD-2025-201220

In the Linux kernel, the following vulnerability has been resolved: net: phy: micrel: always set shared-phydev for LAN8814 Currently, during the LAN8814 PTP probe shared-phydev is only set if PTP clock gets actually set, otherwise the function will return before setting it. This is an issue as...

6AI score0.00166EPSS
Exploits0References4
CVE
CVE
added 2025/12/04 3:31 p.m.11 views

CVE-2025-40239

CVE-2025-40239 pertains to the Linux kernel’s LAN8814 PHY handling. The issue stems from the LAN8814 PTP probe where shared->phydev is only set if the PTP clock is actually configured; if not, IRQ handling may access a NULL shared->phydev, risking a crash. The documented fix is to always se...

6.1AI score0.00166EPSS
Exploits0References3
OSV
OSV
added 2025/12/04 3:31 p.m.5 views

CVE-2025-40239 net: phy: micrel: always set shared->phydev for LAN8814

In the Linux kernel, the following vulnerability has been resolved: net: phy: micrel: always set shared-phydev for LAN8814 Currently, during the LAN8814 PTP probe shared-phydev is only set if PTP clock gets actually set, otherwise the function will return before setting it. This is an issue as...

6.3AI score0.00166EPSS
Exploits0References6
OSV
OSV
added 2025/12/04 11:3 a.m.12 views

USN-7909-2 linux-intel-iot-realtime, linux-realtime vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM32 architecture; - ARM64 architecture; - MIPS architecture; - PowerPC architecture; - RISC-V architecture; - S39...

7.8CVSS6.5AI score0.0037EPSS
Exploits3References179
Ubuntu
Ubuntu
added 2025/12/04 9:26 a.m.10 views

USN-7909-1: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM32 architecture; - ARM64 architecture; - MIPS architecture; - PowerPC architecture; - RISC-V architecture; - S39...

7.8CVSS7.2AI score0.0037EPSS
Exploits3
Positive Technologies
Positive Technologies
added 2025/12/04 12:0 a.m.6 views

PT-2025-49066

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to the LAN8814 network PHY. Specifically, the shared-phydev pointer is not always initialized during the PTP probe, leading to a potential NULL...

5.4AI score0.00544EPSS
Exploits4References395
Microsoft CVE
Microsoft CVE
added 2025/11/18 1:1 a.m.4 views

net: phy: allow MDIO bus PM ops to start/stop state machine for phylink-controlled PHY

...

5.5CVSS8.8AI score0.00159EPSS
Exploits0
Rows per page
Query Builder