302 matches found
CVE-2025-68316 scsi: ufs: core: Fix invalid probe error return value
In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: Fix invalid probe error return value After DME Link Startup, the error return value is set to the MIPI UniPro GenericErrorCode which can be 0 SUCCESS or 1 FAILURE. Upon failure during driver probe, the error code...
CVE-2025-68316
CVE-2025-68316 affects the Linux kernel’s SCSI UFS core. The root cause was an invalid non‑negative error code propagated from ufshcd_init(), causing a failed probe to be treated as success and potentially leaving the driver in an invalid state. The available connected sources confirm the issue a...
EUVD-2025-203715
In the Linux kernel, the following vulnerability has been resolved: drm/radeon: Remove calls to drmputdev Since the allocation of the drivers main structure was changed to devmdrmdevalloc drmputdev'ing to trigger it to be free'd should be done by devres. However, drmputdev is still in the probe...
EUVD-2025-203724
In the Linux kernel, the following vulnerability has been resolved: crypto: aspeed - fix double free caused by devm The clock obtained via devmclkgetenabled is automatically managed by devres and will be disabled and freed on driver detach. Manually calling clkdisableunprepare in error path and...
CVE-2025-68181
In the Linux kernel, the following vulnerability has been resolved: drm/radeon: Remove calls to drmputdev Since the allocation of the drivers main structure was changed to devmdrmdevalloc drmputdev'ing to trigger it to be free'd should be done by devres. However, drmputdev is still in the probe...
CVE-2025-68215
In the Linux kernel, the following vulnerability has been resolved: ice: fix PTP cleanup on driver removal in error path Improve the cleanup on releasing PTP resources in error path. The error case might happen either at the driver probe and PTP feature initialization or on PTP restart errors in...
CVE-2025-68204 pmdomain: arm: scmi: Fix genpd leak on provider registration failure
In the Linux kernel, the following vulnerability has been resolved: pmdomain: arm: scmi: Fix genpd leak on provider registration failure If ofgenpdaddprovideronecell fails during probe, the previously created generic power domains are not removed, leading to a memory leak and potential kernel cra...
CVE-2025-68181 drm/radeon: Remove calls to drm_put_dev()
In the Linux kernel, the following vulnerability has been resolved: drm/radeon: Remove calls to drmputdev Since the allocation of the drivers main structure was changed to devmdrmdevalloc drmputdev'ing to trigger it to be free'd should be done by devres. However, drmputdev is still in the probe...
CVE-2025-68181
Technical details for CVE-2025-68181 are not provided in the supplied documents; public information here is limited to general Linux kernel/RADEON DRM context. Monitor for updates from OSV/Ubuntu/SUSE advisories.
PT-2025-51617
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak can occur in the Linux kernel when of genpd add provider onecell fails during probe. This happens because generic power domains are not removed, potentially leading to a...
PT-2025-51594
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue within the DRM/radeon driver related to the incorrect handling of device resource management. Specifically, calls to drm put dev persist in the probe...
Linux Distros Unpatched Vulnerability : CVE-2025-68181
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/radeon: Remove calls to drmputdev Since the allocation of the drivers main structure was changed to devmdrmdevalloc drmputdev'ing to trigger it to be free'd...
EUVD-2023-60127
In the Linux kernel, the following vulnerability has been resolved: mfd: dln2: Fix memory leak in dln2probe When dln2setuprxurbs in dln2probe fails, error outfree forgets to call usbputdev to decrease the refcount of dln2-usbdev. Fix this by adding usbputdev in the error handling code of dln2prob...
PT-2025-49639
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak exists in the dln2 probe function within the kernel's MFD Multiple Function Device driver for DLN2 devices. Specifically, when dln2 setup rx urbs fails during the probe...
PT-2025-49691
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak exists in the ipw2200 driver within the Linux kernel. Specifically, the issue occurs in the ipw wdev init function, where memory allocated within the function is not releas...
kernel: ALSA: bcd2000: Fix a UAF bug on the error path of probing
In the Linux kernel, the following vulnerability has been resolved: ALSA: bcd2000: Fix a UAF bug on the error path of probing When the driver fails in sndcardregister at probe time, it will free the 'bcd2k-midiouturb' before killing it, which may cause a UAF bug. The following log can reveal it:...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-56576)
media: i2c: tc358743: crash in the probe error path when using polling. If an error occurs in the probe function, the polling timer that was alarmed earlier should be removed, otherwise the timer is called with arguments that are already freed, which results in a crash. This plugin only works wit...
CVE-2025-40156 PM / devfreq: mtk-cci: Fix potential error pointer dereference in probe()
In the Linux kernel, the following vulnerability has been resolved: PM / devfreq: mtk-cci: Fix potential error pointer dereference in probe The drv-sramreg pointer could be set to ERRPTR-EPROBEDEFER which would lead to a error pointer dereference. Use ISERRORNULL to check that the pointer is vali...
CVE-2025-40144 nvdimm: ndtest: Return -ENOMEM if devm_kcalloc() fails in ndtest_probe()
In the Linux kernel, the following vulnerability has been resolved: nvdimm: ndtest: Return -ENOMEM if devmkcalloc fails in ndtestprobe devmkcalloc may fail. ndtestprobe allocates three DMA address arrays dcrdma, labeldma, dimmdma and later unconditionally uses them in ndtestnvdimminit, which can...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989381)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989381 advisory. In the Linux kernel, the following vulnerability has been resolved: ASoC: mediatek: Fix error handling in mt8173max98090devprobe Call ofnodeputplatformnode to avoid...