Lucene search
K

53 matches found

Cvelist
Cvelist
added 2025/10/04 3:17 p.m.7 views

CVE-2023-53571 drm/i915: Make intel_get_crtc_new_encoder() less oopsy

In the Linux kernel, the following vulnerability has been resolved: drm/i915: Make intelgetcrtcnewencoder less oopsy The point of the WARN was to print something, not oops straight up. Currently that is precisely what happens if we can't find the connector for the crtc in the atomic state. Get th...

0.00135EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-59864

Malicious code in bioql PyPI...

8.6AI score0.00146EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2025/09/15 12:0 a.m.3 views

PT-2025-37576

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a use-after-free issue within the dvbdev module. The dvb unregister device function can release the dvb device structure while pointers in file-private data...

6.2AI score0.0015EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2025/09/09 12:0 a.m.3 views

PT-2025-40069

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.17.0-rc4-dirty 343 Description The Linux kernel contained a flaw in the sched numa find nth cpu function. This function, when used with an offline CPU mask, could lead to a null pointer dereference due to an...

5.5CVSS6.4AI score0.00136EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/06 8:4 a.m.8 views

scsi: lpfc: Check for hdwq null ptr when cleaning up lpfc_vport structure

...

5.5CVSS6.8AI score0.00159EPSS
Exploits0
OSV
OSV
added 2025/09/04 4:15 p.m.2 views

DEBIAN-CVE-2025-38704

In the Linux kernel, the following vulnerability has been resolved: rcu/nocb: Fix possible invalid rdp's-nocbcbkthread pointer access In the preparation stage of CPU online, if the corresponding the rdp's-nocbcbkthread does not exist, will be created, there is a situation where the rdp's rcuop...

7.8CVSS6.1AI score0.00155EPSS
Exploits0References1
CVE
CVE
added 2025/08/22 4:0 p.m.22 views

CVE-2025-38641

The CVE-2025-38641 issue concerns the Linux kernel Bluetooth subsystem (btusb). A NULL pointer dereference could occur on kmalloc failure because the return value wasn’t properly checked, leading to unsafe dereference in the affected code path. The connected documents state the fix as: validate t...

5.5CVSS6.6AI score0.00128EPSS
Exploits0References2Affected Software1
Github Security Blog
Github Security Blog
added 2025/08/14 10:23 p.m.14 views

User-defined implementations of the safe trait scratchpad::Tracking can cause heap buffer overflows

The get and set methods of the public trait scratchpad::Tracking interact with unsafe code regions in the crate, and they influence the computation of addresses returned as raw pointers. However, the trait itself is not marked as unsafe, meaning users may provide custom implementations under the...

7.8AI score
Exploits0References3Affected Software1
RedHat Linux
RedHat Linux
added 2025/08/11 9:43 a.m.3 views

kernel: ipv6: mcast: extend RCU protection in igmp6_send()

In the Linux kernel, the following vulnerability has been resolved: ipv6: mcast: extend RCU protection in igmp6send igmp6send can be called without RTNL or RCU being held. Extend RCU protection so that we can safely fetch the net pointer and avoid a potential UAF. Note that we no longer can use...

7.8CVSS6.8AI score0.07174EPSS
Exploits0References5
OSV
OSV
added 2025/07/25 2:15 p.m.18 views

AZL-70498 CVE-2025-38408 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: genirq/irqsim: Initialize work context pointers properly Initialize ops member's pointers properly by using kzalloc instead of kmalloc when allocating the simulation work context. Otherwise the pointers contain random content...

5.5CVSS5.6AI score0.00158EPSS
Exploits0References1
OSV
OSV
added 2025/07/02 3:15 p.m.4 views

UBUNTU-CVE-2025-38092

In the Linux kernel, the following vulnerability has been resolved: ksmbd: use listfirstentryornull for opinfogetlist The listfirstentry macro never returns NULL. If the list is empty then it returns an invalid pointer. Use listfirstentryornull to check if the list is empty...

5.5CVSS5.9AI score0.00136EPSS
Exploits0References14
SUSE CVE
SUSE CVE
added 2025/06/19 3:42 a.m.3 views

SUSE CVE-2022-50069

In the Linux kernel, the following vulnerability has been resolved: BPF: Fix potential bad pointer dereference in bpfsysbpf The bpfsysbpf helper function allows an eBPF program to load another eBPF program from within the kernel. In this case the argument union bpfattr pointer as well as the insn...

5.5CVSS5.8AI score0.00195EPSS
Exploits0References3
OSV
OSV
added 2025/06/18 11:15 a.m.3 views

DEBIAN-CVE-2022-50069

In the Linux kernel, the following vulnerability has been resolved: BPF: Fix potential bad pointer dereference in bpfsysbpf The bpfsysbpf helper function allows an eBPF program to load another eBPF program from within the kernel. In this case the argument union bpfattr pointer as well as the insn...

5.5CVSS5.4AI score0.00195EPSS
Exploits0References1
OSV
OSV
added 2025/05/02 4:15 p.m.7 views

DEBIAN-CVE-2023-53116

In the Linux kernel, the following vulnerability has been resolved: nvmet: avoid potential UAF in nvmetreqcomplete An nvme target -queueresponse operation implementation may free the request passed as argument. Such implementation potentially could result in a use after free of the request pointe...

7.8CVSS5.5AI score0.00174EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/02/28 2:23 a.m.4 views

SUSE CVE-2024-57978

In the Linux kernel, the following vulnerability has been resolved: media: imx-jpeg: Fix potential error pointer dereference in detachpm The proble is on the first line: if jpeg-pddevi && !pmruntimesuspendedjpeg-pddevi If jpeg-pddevi is an error pointer, then passing it to pmruntimesuspended will...

5.5CVSS7.7AI score0.00208EPSS
Exploits0References13
OSV
OSV
added 2025/02/27 8:16 p.m.7 views

UBUNTU-CVE-2025-21810

In the Linux kernel, the following vulnerability has been resolved: driver core: class: Fix wild pointer dereferences in API classdeviternext There are a potential wild pointer dereferences issue regarding APIs classdeviterinit|next|exit, as explained by below typical usage: // All members of @it...

5.5CVSS6.5AI score0.0018EPSS
Exploits0References19
OSV
OSV
added 2025/02/27 3:15 a.m.11 views

AZL-57772 CVE-2024-58002 affecting package kernel for versions less than 5.15.179.1-1

In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Remove dangling pointers When an async control is written, we copy a pointer to the file handle that started the operation. That pointer will be used when the device is done. Which could be anytime in the future...

7.8CVSS6.6AI score0.00229EPSS
Exploits0References1
OSV
OSV
added 2025/02/26 7:1 a.m.1 views

UBUNTU-CVE-2022-49425

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix dereference of stale list iterator after loop body The list iterator variable will be a bogus pointer if no break was hit. Dereferencing it cur-page in this case could load an out-of-bounds/undefined value making it...

5.5CVSS5.8AI score0.00247EPSS
Exploits0References10
Microsoft CVE
Microsoft CVE
added 2025/01/29 8:0 a.m.2 views

hv_sock: Initializing vsk->trans to NULL to prevent a dangling pointer

...

7.8CVSS7AI score0.00237EPSS
Exploits1
CVE
CVE
added 2025/01/19 11:52 a.m.128 views

CVE-2024-57926

CVE-2024-57926 is a Linux kernel vulnerability affecting the Mediatek DRM path. The issue arises in the shutdown path where private->all_drm_private[i]->drm may be accessed after a failed mtk_drm_bind, causing a use-after-free detected by KASAN in drm_atomic_helper_shutdown. The root cause ...

7.8CVSS6.3AI score0.00246EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder