CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2025/12/24 1:7 p.m.•6 views

CVE-2023-54161

CVE-2023-54161 concerns the Linux kernel: a null-pointer dereference in unix_stream_sendpage() caused by racing access to a peer socket’s receive queue when data is queued de-pendently by the last skb. The root cause is the peer’s recv queue being accessed locklessly during garbage collection, en...

5.6AI score0.00018EPSS

OSV•added 2025/12/24 1:7 p.m.•2 views

CVE-2023-54161 af_unix: Fix null-ptr-deref in unix_stream_sendpage().

In the Linux kernel, the following vulnerability has been resolved: afunix: Fix null-ptr-deref in unixstreamsendpage. Bing-Jhong Billy Jheng reported null-ptr-deref in unixstreamsendpage with detailed analysis and a nice repro. unixstreamsendpage tries to add data to the last skb in the peer's re...

5.9AI score0.00018EPSS

Cvelist•added 2025/12/24 1:7 p.m.•25 views

CVE-2023-54152 can: j1939: prevent deadlock by moving j1939_sk_errqueue()

In the Linux kernel, the following vulnerability has been resolved: can: j1939: prevent deadlock by moving j1939skerrqueue This commit addresses a deadlock situation that can occur in certain scenarios, such as when running data TP/ETP transfer and subscribing to the error queue while receiving a...

Cvelist•added 2025/12/24 1:6 p.m.•22 views

CVE-2023-54143 media: mediatek: vcodec: fix resource leaks in vdec_msg_queue_init()

In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: fix resource leaks in vdecmsgqueueinit If we encounter any error in the vdecmsgqueueinit then we need to set "msgqueue-wdmaaddr.size = 0;". Normally, this is done inside the vdecmsgqueuedeinit function...

OSV•added 2025/12/24 1:6 p.m.•3 views

CVE-2023-54143 media: mediatek: vcodec: fix resource leaks in vdec_msg_queue_init()

6.4AI score0.00028EPSS

Exploits0References7

CVE•added 2025/12/24 1:6 p.m.•9 views

CVE-2023-54088

CVE-2023-54088 : In the Linux kernel, the vuln is in blk-cgroup where a queue_lock must be held when removing blkg->q_node. If blkg is removed from q->blkg_list via blkg_free_workfn(), not holding queue_lock can cause list corruption or hard lockup during blkg_destroy_all(). The vulnerabili...

6.1AI score0.00028EPSS

Cvelist•added 2025/12/24 1:6 p.m.•18 views

CVE-2023-54088 blk-cgroup: hold queue_lock when removing blkg->q_node

OSV•added 2025/12/24 1:6 p.m.•2 views

CVE-2023-54088 blk-cgroup: hold queue_lock when removing blkg->q_node

6.4AI score0.00028EPSS

Exploits0References7

OSV•added 2025/12/24 1:6 p.m.•2 views

CVE-2023-54082 af_unix: Fix null-ptr-deref in unix_stream_sendpage().

5.9AI score0.00018EPSS

Cvelist•added 2025/12/24 1:6 p.m.•26 views

CVE-2023-54082

...

0.00018EPSS

CVE•added 2025/12/24 1:6 p.m.•4 views

CVE-2023-54082

CVE-2023-54082 has been rejected in the official CVE list, but related connected records describe a Linux kernel vulnerability: af_unix, where unix_stream_sendpage() could race with garbage collection, potentially dereferencing an unlocked skb and causing a use-after-free. The root cause is failu...

5.6AI score0.00018EPSS

Cvelist•added 2025/12/24 1:5 p.m.•21 views

CVE-2022-50748 ipc: mqueue: fix possible memory leak in init_mqueue_fs()

In the Linux kernel, the following vulnerability has been resolved: ipc: mqueue: fix possible memory leak in initmqueuefs commit db7cfc380900 "ipc: Free mqsysctls if ipc namespace creation failed" Here's a similar memory leak to the one fixed by the patch above. retiremqsysctls need to be called...

0.00024EPSS

Exploits0References3

CVE•added 2025/12/24 1:5 p.m.•17 views

CVE-2022-50748

The CVE-2022-50748 entry concerns a memory leak in the Linux kernel’s IPC/mqueue area. The root cause is a failed init_mqueue_fs path where mq_sysctls are not retired, leading to unreleased memory. A fix was applied (see commit db7cfc380900) to ensure retirement of mq_sysctls if IPC namespace cre...

6AI score0.00024EPSS

Exploits0References3

EUVD•added 2025/12/24 12:30 p.m.•2 views

EUVD-2025-205075

In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix null deref on srq-rq.queue after resize failure A NULL pointer dereference can occur in rxesrqchkattr when ibvmodifysrq is invoked twice in succession under certain error conditions. The first call may fail in...

5.9AI score0.00034EPSS

Exploits0References5

OSV•added 2025/12/24 12:23 p.m.•3 views

CVE-2023-54071 wifi: rtw88: use work to update rate to avoid RCU warning

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: use work to update rate to avoid RCU warning The ieee80211ops::starcupdate must be atomic, because ieee80211chanbwchange holds rcuread lock while calling drvstarcupdate, so create a work to do original things...

6.4AI score0.00024EPSS

Exploits0References6

CVE•added 2025/12/24 12:22 p.m.•4 views

CVE-2023-54048

CVE-2023-54048 in the Linux kernel’s RDMA bnxt_re driver: a race can occur after a QP is destroyed when the hardware may generate completions for that QP, leading to a race between destroy_cq and poll_cq. The advisory states that completions must be finished before returning from destroy_qp, and ...

6AI score0.00028EPSS

Cvelist•added 2025/12/24 12:22 p.m.•25 views

CVE-2023-54048 RDMA/bnxt_re: Prevent handling any completions after qp destroy

In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxtre: Prevent handling any completions after qp destroy HW may generate completions that indicates QP is destroyed. Driver should not be scheduling any more completion handlers for this QP, after the QP is destroyed. Since...