Lucene search
K

914 matches found

CVE
CVE
added 2025/02/26 2:13 a.m.98 views

CVE-2022-49472

CVE-2022-49472 affects the Linux kernel PHY Micrel driver: if a .probe is present and .driver_data is missing, a NULL pointer dereference can occur. The fix adds NULL checks for priv->type to allow probing without .driver_data. Connected advisories (Astra/Unity Linux) reference Linux kernel ve...

5.5CVSS5.4AI score0.0027EPSS
Exploits0References8Affected Software1
Vulnrichment
Vulnrichment
added 2025/02/26 2:13 a.m.1 views

CVE-2022-49471 rtw89: cfo: check mac_id to avoid out-of-bounds

In the Linux kernel, the following vulnerability has been resolved: rtw89: cfo: check macid to avoid out-of-bounds Somehow, hardware reports incorrect macid and pollute memory. Check index before we access the array. UBSAN: array-index-out-of-bounds in rtw89/phy.c:2517:23 index 188 is out of rang...

7.5AI score0.00252EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/02/26 1:54 a.m.2 views

CVE-2022-49061 net: ethernet: stmmac: fix altr_tse_pcs function when using a fixed-link

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: stmmac: fix altrtsepcs function when using a fixed-link When using a fixed-link, the altrtsepcs driver crashes due to null-pointer dereference as no phydevice is provided to tsepcsfixmacspeed function. Fix this by...

6.5AI score0.0024EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/02/26 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a failure to check macid in the rtw89phycfoparse function, resulting in an array out-of-bounds...

7.8CVSS5.9AI score0.00252EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/02/26 12:0 a.m.4 views

PT-2025-8625 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A NULL pointer dereference issue has been identified in the Linux kernel, specifically in the at803x driver for the AR9331 PHY. This issue occurs when the kernel attempts to configure...

5.5CVSS5.3AI score0.00222EPSS
Exploits0References11
CNNVD
CNNVD
added 2025/02/26 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a missing check for priv-type in the micrel phy driver, which could lead to a null pointer dereference...

5.5CVSS5.5AI score0.0027EPSS
Exploits0References9
CNNVD
CNNVD
added 2025/02/26 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a null pointer dereference in the AR9331 PHY during a configuration interrupt...

5.5CVSS5.1AI score0.00222EPSS
Exploits0References4
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.3 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: Net: dsa: bcmsf2: Fixed a possible memory leak in bcmsf2mdioregister. The bcmsf2mdioregister function calls ofPhyFindDevice and then phydeviceRemove in a loop to remove existing PHY devices. ofPhyFindDevice eventually calls...

5.5CVSS6.5AI score0.0021EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/01/13 6:21 a.m.15 views

CVE-2024-57804

In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Fix corrupt config pages PHY state is switched in sysfs The driver, through the SAS transport, exposes a sysfs interface to enable/disable PHYs in a controller/expander setup. When multiple PHYs are disabled and...

5.5CVSS6.8AI score0.00176EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/01/12 12:14 a.m.3 views

SUSE CVE-2024-57804

In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Fix corrupt config pages PHY state is switched in sysfs The driver, through the SAS transport, exposes a sysfs interface to enable/disable PHYs in a controller/expander setup. When multiple PHYs are disabled and...

4.7CVSS7.6AI score0.00176EPSS
Exploits0References13
OSV
OSV
added 2025/01/11 1:15 p.m.6 views

AZL-62684 CVE-2024-57804 affecting package kernel 6.6.126.1-1

In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Fix corrupt config pages PHY state is switched in sysfs The driver, through the SAS transport, exposes a sysfs interface to enable/disable PHYs in a controller/expander setup. When multiple PHYs are disabled and...

5.5CVSS6.7AI score0.00176EPSS
Exploits0References1
OSV
OSV
added 2025/01/11 1:15 p.m.1 views

DEBIAN-CVE-2024-57804

In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Fix corrupt config pages PHY state is switched in sysfs The driver, through the SAS transport, exposes a sysfs interface to enable/disable PHYs in a controller/expander setup. When multiple PHYs are disabled and...

5.5CVSS5.7AI score0.00176EPSS
Exploits0References1
OSV
OSV
added 2025/01/11 1:15 p.m.3 views

UBUNTU-CVE-2024-57804

In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Fix corrupt config pages PHY state is switched in sysfs The driver, through the SAS transport, exposes a sysfs interface to enable/disable PHYs in a controller/expander setup. When multiple PHYs are disabled and...

5.5CVSS6.2AI score0.00176EPSS
Exploits0References21
CVE
CVE
added 2025/01/11 12:39 p.m.1562 views

CVE-2024-57804

CVE-2024-57804 concerns the Linux kernel’s scsi mpi3mr driver, where rapid disable/enable cycles of PHYs via the SAS sysfs interface could corrupt the persistent and current SAS IO unit/Expander config pages. The root cause is PHY state/page data confusion during successive config requests, leadi...

5.5CVSS6.9AI score0.00176EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2025/01/11 12:39 p.m.29 views

CVE-2024-57804 scsi: mpi3mr: Fix corrupt config pages PHY state is switched in sysfs

In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Fix corrupt config pages PHY state is switched in sysfs The driver, through the SAS transport, exposes a sysfs interface to enable/disable PHYs in a controller/expander setup. When multiple PHYs are disabled and...

0.00176EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2025/01/11 12:39 p.m.14 views

CVE-2024-57804

In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Fix corrupt config pages PHY state is switched in sysfs The driver, through the SAS transport, exposes a sysfs interface to enable/disable PHYs in a controller/expander setup. When multiple PHYs are disabled and...

5.5CVSS5.7AI score0.00176EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.5 views

PT-2026-5993

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.16.7+ 116 Description The Linux kernel contains a flaw related to power management in the Qualcomm USB2 PHY driver qcom-qusb2. Enabling runtime power management before the QPHY instance is attached as driver da...

6.5AI score0.00168EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.5 views

PT-2025-37950

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s macb driver related to the order of operations during device removal. Specifically, the phy exit function was being called before unregister netdev,...

5.5CVSS6AI score0.00146EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2024/12/28 3:50 a.m.3 views

SUSE CVE-2024-53204

In the Linux kernel, the following vulnerability has been resolved: phy: realtek: usb: fix NULL deref in rtkusb3phyprobe In rtkusb3phyprobe devmkzalloc may return NULL but this returned value is not checked...

5.5CVSS7.7AI score0.00212EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2024/12/28 3:50 a.m.4 views

SUSE CVE-2024-53205

In the Linux kernel, the following vulnerability has been resolved: phy: realtek: usb: fix NULL deref in rtkusb2phyprobe In rtkusb2phyprobe devmkzalloc may return NULL but this returned value is not checked...

5.5CVSS7.7AI score0.00264EPSS
Exploits0References3
Rows per page
Query Builder