CVE-2025-38167 fs/ntfs3: handle hdr_first_de() return value

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: handle hdrfirstde return value The hdrfirstde function returns a pointer to a struct NTFSDE. This pointer may be NULL. To handle the NULL error effectively, it is important to implement an error handler. This will help...

CVE-2025-38133

In the Linux kernel, the following vulnerability has been resolved: iio: adc: ad4851: fix ad4858 chan pointer handling The pointer returned from ad4851parsechannelscommon is incremented internally as each channel is populated. In ad4858parsechannels, the same pointer was further incremented while...

CVE-2025-38133 iio: adc: ad4851: fix ad4858 chan pointer handling

In the Linux kernel, the following vulnerability has been resolved: iio: adc: ad4851: fix ad4858 chan pointer handling The pointer returned from ad4851parsechannelscommon is incremented internally as each channel is populated. In ad4858parsechannels, the same pointer was further incremented while...

CVE-2025-38133

CVE-2025-38133 affects the Linux kernel’s IIO ADC driver (ad4851/ad4858). The root cause was pointer arithmetic: ad4851_parse_channels_common() advances the channel pointer, and ad4858_parse_channels() advanced it again when setting ext_scan_type, causing indio_dev->channels to point past the ...

CVE-2022-50128

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

PT-2025-26054 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue concerns the Linux kernel, specifically the android binder component. It involves the unsafe practice of saving a pointer to a VMA outside of the mmap lock for later use. Thi...

The vulnerability of software products for conducting Zoom Workplace video conferences on the Windows operating system, related to the manipulation of the null pointer, allows a hacker to trigger a service failure.

The vulnerability of software products for conducting Zoom Workplace video conferences on the Windows operating system is related to the handling of the null pointer. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

CVE-2022-25725

Denial of service in MODEM due to improper pointer handling...

CVE-2021-1891

A possible use-after-free occurrence in audio driver can happen when pointers are not properly handled in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon...

The vulnerability of the Adobe Framemaker desktop publishing system, related to the manipulation of the zero pointer, allows a hacker to trigger a service failure.

The vulnerability of the Adobe Framemaker desktop publishing system is related to the handling of the zero pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

Redox UEFI Safe API can cause heap-buffer-overflow

ffi::nstr should be marked unsafe, since a pointer to a buffer without a trailing 0 value will cause a heap buffer overflow...

CVE-2024-58098

In the Linux kernel, the following vulnerability has been resolved: bpf: track changespktdata property for global functions When processing calls to certain helpers, verifier invalidates all packet pointers in a current state. For example, consider the following program: attributenoinline long...

CVE-2024-58098 bpf: track changes_pkt_data property for global functions

In the Linux kernel, the following vulnerability has been resolved: bpf: track changespktdata property for global functions When processing calls to certain helpers, verifier invalidates all packet pointers in a current state. For example, consider the following program: attributenoinline long...

CVE-2023-53058 net/mlx5: E-Switch, Fix an Oops in error handling code

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: E-Switch, Fix an Oops in error handling code The error handling dereferences "vport". There is nothing we can do if it is an error pointer except returning the error code...

CVE-2025-37783

CVE-2025-37783 — Linux kernel (drm/msm/dpu) The issue occurs where dpu_plane_virtual_atomic_check could dereference pointers returned by drm_atomic_get_plane_state without verifying for errors, leading to undefined behavior. The fix adds IS_ERR checks to ensure plane_state is valid before derefer...

CVE-2025-37783 drm/msm/dpu: Fix error pointers in dpu_plane_virtual_atomic_check

In the Linux kernel, the following vulnerability has been resolved: drm/msm/dpu: Fix error pointers in dpuplanevirtualatomiccheck The function dpuplanevirtualatomiccheck was dereferencing pointers returned by drmatomicgetplanestate without checking for errors. This could lead to undefined behavio...

CVE-2025-22033

In the Linux kernel, the following vulnerability has been resolved: arm64: Don't call NULL in docompatalignmentfixup doalignmentt32tohandler only fixes up alignment faults for specific instructions; it returns NULL otherwise e.g. LDREX. When that's the case, signal to the caller that it needs to...

The vulnerability of the iio component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the iio component in the Linux operating system’s kernel is related to the assignment of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the child_cfs_rq_on_list() function in the kernel/sched/fair.c module of Linux operating systems allows a hacker to trigger a service failure.

The vulnerability of the childcfsrqonlist function in the kernel/sched/fair.c module of Linux operating systems is related to the occurrence of out-of-buffer situations due to incorrect pointer handling. Exploiting this vulnerability can allow an attacker to cause a service failure...

UBUNTU-CVE-2023-53017

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcisync: fix memory leak in hciupdateadvdata When hcicmdsyncqueue failed in hciupdateadvdata, instptr is not freed, which will cause memory leak, convert to use ERRPTR/PTRERR to pass the instance to callback so no memo...