Unspecified vulnerability in Linux kernel (CNVD-2025-01671)

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a null pointer issue in imxaudmixprobe in the ASoC imx-audmix subsystem. No detailed vulnerability details a...

Unspecified vulnerability in Linux kernel (CNVD-2025-01674)

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a null pointer problem in qibatch in the nested parent domain in the iommu/vt-d subsystem. No details of the...

CVE-2024-56587

In the Linux kernel, the following vulnerability has been resolved: leds: class: Protect brightnessshow with ledcdev-ledaccess mutex There is NULL pointer issue observed if from Process A where hid device being added which results in adding a ledcdev addition and later a another call to access of...

CVE-2024-56578

In the Linux kernel, the following vulnerability has been resolved: media: imx-jpeg: Set video drvdata before register video device The video drvdata should be set before the video device is registered, otherwise videodrvdata may return NULL in the open file ops, and led to oops...

CVE-2024-56601

In the Linux kernel, the following vulnerability has been resolved: net: inet: do not leave a dangling sk pointer in inetcreate sockinitdata attaches the allocated sk object to the provided sock object. If inetcreate fails later, the sk object is freed, but the sock object retains the dangling...

CVE-2024-56605

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2capsockcreate btsockalloc allocates the sk object and attaches it to the provided sock object. On error l2capsockalloc frees the sk object, but the dangling pointer...

CVE-2024-56587

In the Linux kernel, the following vulnerability has been resolved: leds: class: Protect brightnessshow with ledcdev-ledaccess mutex There is NULL pointer issue observed if from Process A where hid device being added which results in adding a ledcdev addition and later a another call to access of...

CVE-2024-56587 leds: class: Protect brightness_show() with led_cdev->led_access mutex

In the Linux kernel, the following vulnerability has been resolved: leds: class: Protect brightnessshow with ledcdev-ledaccess mutex There is NULL pointer issue observed if from Process A where hid device being added which results in adding a ledcdev addition and later a another call to access of...

CVE-2024-53188

Technical details beyond the initial description are not provided in the connected documents. No vendor/product/version data here; monitor for updates for concrete impact, affected products, and fixes.

SUSE-SU-2024:4262-1 Security update for the Linux Kernel (Live Patch 28 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-15040024125 fixes several issues. The following security issues were fixed: - CVE-2024-43861: Fix memory leak for not ip packets bsc1229553. - CVE-2021-47598: schcake: do not call cakedestroy from cakeinit bsc1227471. - CVE-2024-40954: net: do not leave a...

SUSE-SU-2024:4235-1 Security update for the Linux Kernel (Live Patch 25 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-15040024116 fixes several issues. The following security issues were fixed: - CVE-2024-36904: tcp: Use refcountincnotzero in tcptwskunique bsc1225733. - CVE-2024-43861: Fix memory leak for not ip packets bsc1229553. - CVE-2024-35905: Fixed int overflow for...

CVE-2018-9390

In procfilewrite of glproc.c, there is a possible out of bounds read of a function pointer due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...

CVE-2024-49904

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: add list empty check to avoid null pointer issue Add list empty check to avoid null pointer issues in some corner cases. - listforeachentrysafe...

CVE-2024-49904

The CVE-2024-49904 issue affects the Linux kernel DRM/AMDGPU subsystem. The vulnerability arises from a missing list empty check in list_for_each_entry_safe, which can lead to a NULL pointer dereference in corner cases. The advisory notes that the fix is to add a list empty check to avoid the nul...

Security update for the Linux Kernel (Live Patch 28 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-15040024125 fixes several issues. The following security issues were fixed: CVE-2024-40954: net: do not leave a dangling sk pointer, when socket creation fails bsc1227808 CVE-2024-41059: hfsplus: fix uninit-value in copyname bsc1228573. Patch Instructions:...

CVE-2024-46778

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check UnboundedRequestEnabled's value CalculateSwathAndDETConfigurationparamsst's UnboundedRequestEnabled is a pointer i.e. dmlboolt UnboundedRequestEnabled, and thus if p-UnboundedRequestEnabled checks its...

PT-2024-20725 · Samsung · Samsung Exynos Modem +1

Name of the Vulnerable Software and Affected Versions: Samsung Exynos versions 9820 through 9825 Samsung Exynos versions 980 through 990 Samsung Exynos versions 850 through 1080 Samsung Exynos versions 2100 through 2200 Samsung Exynos versions 1280 through 1380 Samsung Exynos version 1330 Samsung...

PT-2024-20724 · Samsung · Exynos

Name of the Vulnerable Software and Affected Versions: Samsung Semiconductor Mobile Processor and Modem Exynos versions 9820 through 9825 Samsung Semiconductor Mobile Processor and Modem Exynos versions 980 through 990 Samsung Semiconductor Mobile Processor and Modem Exynos versions 850 through...

CVE-2024-35815

A flaw was found in the Linux kernel's Asynchronous I/O AIO subsystem. This issue occurs when handling I/O control blocks IOCBs, where the kernel fails to properly check the IOCBAIORW flag before converting the aiokiocb structure. This oversight could lead to incorrect handling of I/O requests,...

CVE-2024-32615

HDF5 Library through 1.14.3 contains a heap-based buffer overflow in H5Znbitdecompressonebyte in H5Znbit.c, caused by the earlier use of an initialized pointer...