CVE-2026-21499 NULL Pointer Dereference in iccDEV XML Parser

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles. Prior to version 2.3.1.2, iccDEV is vulnerable to NULL pointer dereference via the XML parser. This issue has been patched in version 2.3.1.2...

Linux Distros Unpatched Vulnerability : CVE-2023-54241

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - MIPS: KVM: Fix NULL pointer dereference After commit 45c7e8af4a5e3f0bea4ac209 MIPS: Remove KVMTE support we get a NULL pointer dereference when creating a KVM...

QNAP Systems QTS和QNAP Systems QuTS hero 代码问题漏洞

QNAP Systems QTS and QNAP Systems QuTS hero are both software with data storage and management capabilities from QNAP Systems of Taiwan, China. A code issue vulnerability exists in QNAP Systems QTS and QNAP Systems QuTS hero that stems from a null pointer dereference and could lead to a denial of...

SUSE CVE-2023-54241

In the Linux kernel, the following vulnerability has been resolved: MIPS: KVM: Fix NULL pointer dereference After commit 45c7e8af4a5e3f0bea4ac209 "MIPS: Remove KVMTE support" we get a NULL pointer dereference when creating a KVM guest: 146.243409 Starting KVM with MIPS VZ extensions 149.849151 CP...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992751)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992751 advisory. In the Linux kernel, the following vulnerability has been resolved: cifs: fix DFS traversal oops without CONFIGCIFSDFSUPCALL When compiled with CONFIGCIFSDFSUPCALL...

EUVD-2023-60505

In the Linux kernel, the following vulnerability has been resolved: usb: typec: bus: verify partner exists in typecaltmodeattention Some usb hubs will negotiate DisplayPort Alt mode with the device but will then negotiate a data role swap after entering the alt mode. The data role swap causes the...

EUVD-2023-60445

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix NULL pointer dereference in 'niwriteinode' Syzbot found the following issue: Unable to handle kernel NULL pointer dereference at virtual address 0000000000000016 Mem abort info: ESR = 0x0000000096000006 EC = 0x25:...

UBUNTU-CVE-2023-54298

In the Linux kernel, the following vulnerability has been resolved: thermal: intel: quarkdts: fix error pointer dereference If allocsocdts fails, then we can just return. Trying to free "socdts" will lead to an Oops...

CVE-2022-50885

In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix NULL-ptr-deref in rxeqpdocleanup when socket create failed There is a null-ptr-deref when mount.cifs over rdma: BUG: KASAN: null-ptr-deref in rxeqpdocleanup+0x2f3/0x360 rdmarxe Read of size 8 at addr 000000000000001...

Sante PACS Server 代码问题漏洞

Sante PACS Server is a medical image storage and communication server from Sante, Inc. A code issue vulnerability exists in Sante PACS Server that stems from improper handling of the HTTP Content-Length header, which can lead to null pointer dereferencing and denial of service...

SUSE SLES12 Security Update : colord (SUSE-SU-2025:4483-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2025:4483-1 advisory. - Rework fix for CVE-2021-42523 to avoid invalid pointer error during certain installations bsc1250750. Tenable has extracted the preceding description...

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference via the association setup handler process. An attacker can cause the service to crash and disrupt user-plane services by sending a PFCP Association Setup Request that omits the mandatory NodeID Information Eleme...

Security update for colord

This update for colord fixes the following issues: Rework fix for CVE-2021-42523 to avoid invalid pointer error during certain installations bsc1250750. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

SUSE-SU-2025:4483-1 Security update for colord

This update for colord fixes the following issues: - Rework fix for CVE-2021-42523 to avoid invalid pointer error during certain installations bsc1250750...

CVE-2025-68303 platform/x86: intel: punit_ipc: fix memory corruption

In the Linux kernel, the following vulnerability has been resolved: platform/x86: intel: punitipc: fix memory corruption This passes the address of the pointer "&punitipcdev" when the intent was to pass the pointer itself "punitipcdev" without the ampersand. This means that the:...

CVE-2025-68228

In the Linux kernel, the following vulnerability has been resolved: drm/plane: Fix createinformatblob return value createinformatblob is either supposed to return a valid pointer or an error, but never NULL. The caller will dereference the blob when it is not an error, and thus will oops if NULL...

UBUNTU-CVE-2025-40346

In the Linux kernel, the following vulnerability has been resolved: archtopology: Fix incorrect error check in topologyparsecpucapacity Fix incorrect use of PTRERRORZERO in topologyparsecpucapacity which causes the code to proceed with NULL clock pointers. The current logic uses !PTRERRORZEROcpuc...

EUVD-2025-201863

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix nullptr err of vmhandlemoved If a amdgpubova is fpriv-prtva, the bo of this one is always NULL. So, such kind of amdgpubova should be updated separately before amdgpuvmhandlemoved...

CVE-2025-40339

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix nullptr err of vmhandlemoved If a amdgpubova is fpriv-prtva, the bo of this one is always NULL. So, such kind of amdgpubova should be updated separately before amdgpuvmhandlemoved...

PT-2025-49702

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to RDMA/rxe functionality. Specifically, a potential NULL pointer dereference can occur within the rxe qp init req function when rxe queue init...