UBUNTU-CVE-2025-68755

In the Linux kernel, the following vulnerability has been resolved: staging: most: remove broken i2c driver The MOST I2C driver has been completely broken for five years without anyone noticing so remove the driver from staging. Specifically, commit 723de0f9171e "staging: most: remove device from...

CVE-2025-68755 staging: most: remove broken i2c driver

In the Linux kernel, the following vulnerability has been resolved: staging: most: remove broken i2c driver The MOST I2C driver has been completely broken for five years without anyone noticing so remove the driver from staging. Specifically, commit 723de0f9171e "staging: most: remove device from...

CVE-2025-68754

CVE-2025-68754 affects the Linux kernel rtc driver for amlogic-a4. The issue is a double free caused by manually disabling the clock obtained via devm_clk_get_enabled() in error paths, which conflicts with the devm framework’s automatic clock lifecycle management. The recommended remediation is t...

CVE-2025-68754 rtc: amlogic-a4: fix double free caused by devm

In the Linux kernel, the following vulnerability has been resolved: rtc: amlogic-a4: fix double free caused by devm The clock obtained via devmclkgetenabled is automatically managed by devres and will be disabled and freed on driver detach. Manually calling clkdisableunprepare in error path and...

PT-2026-1243

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The MOST I2C driver within the Linux kernel was broken for five years without detection. A commit required drivers to set an interface device pointer before registration, but the I2C...

Linux Distros Unpatched Vulnerability : CVE-2022-50813

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drivers: mcb: fix resource leak in mcbprobe When probe hook function failed in mcbprobe, it doesn't put the device. Compiled test only. CVE-2022-50813 Note that...

CVE-2026-21433

Emlog is an open source website building system. Versions up to and including 2.5.19 are vulnerable to server-side Out-of-Band OOB requests / SSRF via uploaded SVG files. An attacker can upload a crafted SVG to http://emblog/admin/media.php which contains external resource references. When the...

PT-2026-27731

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the DRM client modeset probe function. Specifically, the modes variable in drm client modeset probe may fail to allocate memory using kcalloc. If...

PT-2026-27670

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to error handling within the rocket probe function in the accel/rocket component. Specifically, improper unwinding occurs when rocket core init...

PT-2026-6138

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel driver for spi-sprd-adi contains a flaw where a double-free of the spi controller structure can occur. This happens when devm register restart handler fails, causing the...

PT-2026-27733

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw related to a potential AB-BA deadlock when both LEDS TRIGGER NETDEV and LED TRIGGER PHY are enabled. The issue occurs during the registration of PHY LED...

PT-2026-8190

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak exists in the tegra slink probe function within the SPI subsystem of the Linux kernel. Specifically, when platform get irq fails, the function returns with an error without...

PT-2026-8165

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s drm/imx/tve subsystem related to device probe leakage. Specifically, the issue involves failing to drop a reference to the DDC device during probe...

PT-2026-5523

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to network devices. Specifically, a potential null dereference issue was identified within the vortex probe1 function when handling 3com 3c59x...

CVE-2023-54204

In the Linux kernel, the following vulnerability has been resolved: mmc: sunplus: fix return value check of mmcaddhost mmcaddhost may return error, if we ignore its return value, 1. the memory allocated in mmcallochost will be leaked 2. null-ptr-deref will happen when calling mmcremovehost in...

CVE-2023-54228

In the Linux kernel, the following vulnerability has been resolved: regulator: raa215300: Fix resource leak in case of error The clkregisterclkdev allocates memory by calling vclkdevalloc and this memory is not freed in the error path. Similarly, resources allocated by clkregisterfixedrate are no...

SUSE CVE-2022-50813

In the Linux kernel, the following vulnerability has been resolved: drivers: mcb: fix resource leak in mcbprobe When probe hook function failed in mcbprobe, it doesn't put the device. Compiled test only...

SUSE CVE-2022-50825

In the Linux kernel, the following vulnerability has been resolved: usb: typec: wusb3801: fix fwnode refcount leak in wusb3801probe I got the following report while doing fault injection test: OF: ERROR: memory leak, expected refcount 1 instead of 4, ofnodeget/ofnodeput unbalanced - destroy cset...

SUSE CVE-2022-50847

In the Linux kernel, the following vulnerability has been resolved: drm/bridge: it6505: Initialize AUX channel in it6505i2cprobe During device boot, the HPD interrupt could be triggered before the DRM subsystem registers it6505 as a DRM bridge. In such cases, the driver tries to access AUX channe...

SUSE CVE-2023-54307

In the Linux kernel, the following vulnerability has been resolved: ptpqoriq: fix memory leak in probe Smatch complains that: drivers/ptp/ptpqoriq.c ptpqoriqprobe warn: 'base' from ioremap not released. Fix this by revising the parameter from 'ptpqoriq-base' to 'base'. This is only a bug if...