PT-2026-4494

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A reference count leak exists in the bpf prog test run xdp function within the Linux kernel. The issue stems from an error handling path introduced by commit 1c1949982524, which failed t...

SUSE CVE-2022-50855

In the Linux kernel, the following vulnerability has been resolved: bpf: prevent leak of lsm program after failed attach In 0, we added the ability to bpfprogattach LSM programs to cgroups, but in our validation to make sure the prog is meant to be attached to BPFLSMCGROUP, we return too early if...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992758)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992758 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add null check for toppipetoprogram in commitplanesforstream This commit address...

Linux Distros Unpatched Vulnerability : CVE-2022-50855

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bpf: prevent leak of lsm program after failed attach In 0, we added the ability to bpfprogattach LSM programs to cgroups, but in our validation to make sure the...

DEBIAN-CVE-2022-50798

SoX 14.4.2 contains a division by zero vulnerability when handling WAV files that can cause program crashes. Attackers can trigger a floating point exception by providing a specially crafted WAV file that causes arithmetic errors during sound file processing...

CVE-2022-50798

Rejected reason: This candidate is a duplicate of CVE-2017-11359...

EUVD-2022-55843

In the Linux kernel, the following vulnerability has been resolved: bpf: prevent leak of lsm program after failed attach In 0, we added the ability to bpfprogattach LSM programs to cgroups, but in our validation to make sure the prog is meant to be attached to BPFLSMCGROUP, we return too early if...

CVE-2023-54232

In the Linux kernel, the following vulnerability has been resolved: m68k: Only force 030 bus error if PC not in exception table getkernelnofault does copy data in supervisor mode when forcing a task backtrace log through /proc/sysrqtrigger. This is expected cause a bus error exception on e.g. NUL...

CVE-2022-50855

In the Linux kernel, the following vulnerability has been resolved: bpf: prevent leak of lsm program after failed attach In 0, we added the ability to bpfprogattach LSM programs to cgroups, but in our validation to make sure the prog is meant to be attached to BPFLSMCGROUP, we return too early if...

UBUNTU-CVE-2023-54303

In the Linux kernel, the following vulnerability has been resolved: bpf: Disable preemption in bpfperfeventoutput The nesting protection in bpfperfeventoutput relies on disabled preemption, which is guaranteed for kprobes and tracepoints. However bpfperfeventoutput can be also called from uprobes...

UBUNTU-CVE-2022-50855

In the Linux kernel, the following vulnerability has been resolved: bpf: prevent leak of lsm program after failed attach In 0, we added the ability to bpfprogattach LSM programs to cgroups, but in our validation to make sure the prog is meant to be attached to BPFLSMCGROUP, we return too early if...

CVE-2022-50855 bpf: prevent leak of lsm program after failed attach

In the Linux kernel, the following vulnerability has been resolved: bpf: prevent leak of lsm program after failed attach In 0, we added the ability to bpfprogattach LSM programs to cgroups, but in our validation to make sure the prog is meant to be attached to BPFLSMCGROUP, we return too early if...

CVE-2022-50855

The CVE-2022-50855 entry concerns a Linux kernel issue where the BPF LSM program attached via bpf_prog_attach to cgroups could leak because the refcnt wasn’t decremented when the validation rejected the attach. The published description across Red Hat, SUSE, Ubuntu (OSV), Debian OSV, NVD, and oth...

CVE-2022-50855 bpf: prevent leak of lsm program after failed attach

In the Linux kernel, the following vulnerability has been resolved: bpf: prevent leak of lsm program after failed attach In 0, we added the ability to bpfprogattach LSM programs to cgroups, but in our validation to make sure the prog is meant to be attached to BPFLSMCGROUP, we return too early if...

PT-2025-54061

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw in the handling of bus errors on m68k systems. Specifically, the get kernel nofault function can cause a bus error exception when logging a kernel task...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the failure to decrement the reference count when the bpfprogattach LSM program fails, which could lead to a...

PT-2025-53973

In the Linux kernel, the following vulnerability has been resolved: bpf: prevent leak of lsm program after failed attach In 0, we added the ability to bpf prog attach LSM programs to cgroups, but in our validation to make sure the prog is meant to be attached to BPF LSM CGROUP, we return too earl...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992347)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992347 advisory. In the Linux kernel, the following vulnerability has been resolved: bpf: Don't redirect packets with invalid pktlen Syzbot found an issue 1: fqcodeldrop try to drop ...

CVE-2025-65411

A NULL pointer dereference in the src/path.c component of GNU Unrtf v0.21.10 allows attackers to cause a Denial of Service DoS via injecting a crafted payload into the searchpath parameter...

PT-2025-54245

Name of the Vulnerable Software and Affected Versions SoX version 14.4.2 Description SoX version 14.4.2 contains a division by zero issue when processing WAV files, potentially leading to program crashes. An attacker can provide a crafted WAV file to trigger a floating point exception due to...