Lucene search
K

302 matches found

OSV
OSV
added 2026/02/04 4:8 p.m.6 views

CVE-2026-23087 scsi: xen: scsiback: Fix potential memory leak in scsiback_remove()

In the Linux kernel, the following vulnerability has been resolved: scsi: xen: scsiback: Fix potential memory leak in scsibackremove Memory allocated for struct vscsiblkinfo in scsibackprobe is not freed in scsibackremove leading to potential memory leaks on remove, as well as in the scsibackprob...

5.5CVSS5.2AI score0.00123EPSS
Exploits0References10
EUVD
EUVD
added 2026/02/04 4:7 p.m.7 views

EUVD-2026-5476

In the Linux kernel, the following vulnerability has been resolved: spi: spi-sprd-adi: Fix double free in probe error path The driver currently uses spiallochost to allocate the controller but registers it using devmspiregistercontroller. If devmregisterrestarthandler fails, the code jumps to the...

5.3AI score0.00129EPSS
Exploits0References4
CVE
CVE
added 2026/02/04 4:7 p.m.25 views

CVE-2026-23068

CVE-2026-23068 (Linux kernel) : The spi-sprd-adi driver could double-free the spi_controller on probe failure due to using spi_alloc_host() with devm_spi_register_controller(), then falling through to spi_controller_put() when a restart handler registration failed. The fix switches to devm_spi_al...

7.8CVSS5.3AI score0.00129EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2026/02/04 4:7 p.m.25 views

CVE-2026-23068 spi: spi-sprd-adi: Fix double free in probe error path

In the Linux kernel, the following vulnerability has been resolved: spi: spi-sprd-adi: Fix double free in probe error path The driver currently uses spiallochost to allocate the controller but registers it using devmspiregistercontroller. If devmregisterrestarthandler fails, the code jumps to the...

0.00129EPSS
Exploits0References5
OSV
OSV
added 2026/02/04 4:7 p.m.5 views

CVE-2026-23068 spi: spi-sprd-adi: Fix double free in probe error path

In the Linux kernel, the following vulnerability has been resolved: spi: spi-sprd-adi: Fix double free in probe error path The driver currently uses spiallochost to allocate the controller but registers it using devmspiregistercontroller. If devmregisterrestarthandler fails, the code jumps to the...

7.8CVSS5.3AI score0.00129EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2026/02/04 4:7 p.m.6 views

CVE-2026-23068

In the Linux kernel, the following vulnerability has been resolved: spi: spi-sprd-adi: Fix double free in probe error path The driver currently uses spiallochost to allocate the controller but registers it using devmspiregistercontroller. If devmregisterrestarthandler fails, the code jumps to the...

7.8CVSS5.3AI score0.00129EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2026/01/31 12:16 p.m.6 views

CVE-2026-23015

In the Linux kernel, the following vulnerability has been resolved: gpio: mpsse: fix reference leak in gpiompsseprobe error paths The reference obtained by calling usbgetdev is not released in the gpiompsseprobe error paths. Fix that by using device managed helper functions. Also remove the...

5.5CVSS5.7AI score0.00128EPSS
Exploits0References4
OSV
OSV
added 2026/01/31 12:16 p.m.4 views

UBUNTU-CVE-2026-23015

In the Linux kernel, the following vulnerability has been resolved: gpio: mpsse: fix reference leak in gpiompsseprobe error paths The reference obtained by calling usbgetdev is not released in the gpiompsseprobe error paths. Fix that by using device managed helper functions. Also remove the...

5.5CVSS5.7AI score0.00128EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/01/31 11:42 a.m.32 views

CVE-2026-23033 dmaengine: omap-dma: fix dma_pool resource leak in error paths

In the Linux kernel, the following vulnerability has been resolved: dmaengine: omap-dma: fix dmapool resource leak in error paths The dmapool created by dmapoolcreate is not destroyed when dmaasyncdeviceregister or ofdmacontrollerregister fails, causing a resource leak in the probe error paths. A...

0.00202EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2026/01/31 11:38 a.m.6 views

CVE-2026-23015

In the Linux kernel, the following vulnerability has been resolved: gpio: mpsse: fix reference leak in gpiompsseprobe error paths The reference obtained by calling usbgetdev is not released in the gpiompsseprobe error paths. Fix that by using device managed helper functions. Also remove the...

5.5CVSS5.2AI score0.00128EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/01/31 12:0 a.m.7 views

PT-2026-5518

In the Linux kernel, the following vulnerability has been resolved: gpio: mpsse: fix reference leak in gpio mpsse probe error paths The reference obtained by calling usb get dev is not released in the gpio mpsse probe error paths. Fix that by using device managed helper functions. Also remove the...

5.7AI score0.00128EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/01/06 12:24 a.m.5 views

SUSE CVE-2025-68754

In the Linux kernel, the following vulnerability has been resolved: rtc: amlogic-a4: fix double free caused by devm The clock obtained via devmclkgetenabled is automatically managed by devres and will be disabled and freed on driver detach. Manually calling clkdisableunprepare in error path and...

6.7CVSS6.6AI score0.00155EPSS
Exploits0References3
CVE
CVE
added 2026/01/05 9:32 a.m.17 views

CVE-2025-68754

CVE-2025-68754 affects the Linux kernel rtc driver for amlogic-a4. The issue is a double free caused by manually disabling the clock obtained via devm_clk_get_enabled() in error paths, which conflicts with the devm framework’s automatic clock lifecycle management. The recommended remediation is t...

6.2AI score0.00155EPSS
Exploits0References3
OSV
OSV
added 2026/01/05 9:32 a.m.6 views

CVE-2025-68754 rtc: amlogic-a4: fix double free caused by devm

In the Linux kernel, the following vulnerability has been resolved: rtc: amlogic-a4: fix double free caused by devm The clock obtained via devmclkgetenabled is automatically managed by devres and will be disabled and freed on driver detach. Manually calling clkdisableunprepare in error path and...

6.5AI score0.00155EPSS
Exploits0References6
CVE
CVE
added 2025/12/30 12:11 p.m.11 views

CVE-2023-54204

CVE-2023-54204 affects the Linux kernel mmc sunplus driver. The patch fixes the return value handling of mmc_add_host(); if its error is ignored, memory allocated in mmc_alloc_host() may be leaked and a NULL pointer dereference can occur in spmmc_drv_remove() when deleting a non-added device. The...

6.1AI score0.00155EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/12/24 1:6 p.m.28 views

CVE-2023-54109 media: rcar_fdp1: Fix refcount leak in probe and remove function

In the Linux kernel, the following vulnerability has been resolved: media: rcarfdp1: Fix refcount leak in probe and remove function rcarfcpget take reference, which should be balanced with rcarfcpput. Add missing rcarfcpput in fdp1remove and the error paths of fdp1probe to fix this. hverkuil:...

0.00184EPSS
Exploits0References8
CVE
CVE
added 2025/12/24 10:55 a.m.11 views

CVE-2022-50703

CVE-2022-50703 relates to two refcount-leak bugs in the Linux kernel soc: qcom: smsm driver (qcom_smsm_probe). The issues occur when local_node and node are escaped from for_each_child_of_node() / for_each_available_child_of_node() without proper of_node_put() calls. The fix adds of_node_put() in...

6.1AI score0.00196EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2025/12/24 12:0 a.m.6 views

PT-2025-53186

In the Linux kernel, the following vulnerability has been resolved: media: rcar fdp1: Fix refcount leak in probe and remove function rcar fcp get take reference, which should be balanced with rcar fcp put. Add missing rcar fcp put in fdp1 remove and the error paths of fdp1 probe to fix this...

6.4AI score0.00184EPSS
Exploits0References9
SUSE CVE
SUSE CVE
added 2025/12/17 12:26 a.m.5 views

SUSE CVE-2025-68172

In the Linux kernel, the following vulnerability has been resolved: crypto: aspeed - fix double free caused by devm The clock obtained via devmclkgetenabled is automatically managed by devres and will be disabled and freed on driver detach. Manually calling clkdisableunprepare in error path and...

5.5CVSS6.6AI score0.00168EPSS
Exploits0References21
Tenable Nessus
Tenable Nessus
added 2025/12/17 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-68316

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - scsi: ufs: core: Fix invalid probe error return value After DME Link Startup, the error return value is set to the MIPI UniPro GenericErrorCode which can be 0...

6AI score0.00158EPSS
Exploits0References2
Rows per page
Query Builder