23 matches found
CVE-2026-46048
The CVE-2026-46048 issue is in the Linux kernel ALSA caiaq driver. The bug caused a usb_dev reference leak when probe failed because private_free was assigned only later in init_card(), after several failure points. If init_card() returned early, snd_card_free(card) ran without a matching private...
EUVD-2025-35073
In the Linux kernel, the following vulnerability has been resolved: netfs: fix reference leak Commit 20d72b00ca81 "netfs: Fix the request's work item to not require a ref" modified netfsallocrequest to initialize the reference counter to 2 instead of 1. The rationale was that the requet's "work"...
Linux Distros Unpatched Vulnerability : CVE-2022-50536
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bpf, sockmap: Fix repeated calls to sockput when msg has moredata In tcpbpfsendverdict redirection, the eval variable is assigned to SKREDIRECT after the...
EUVD-2024-29818
Malicious code in bioql PyPI...
CVE-2023-53445 net: qrtr: Fix a refcount bug in qrtr_recvmsg()
In the Linux kernel, the following vulnerability has been resolved: net: qrtr: Fix a refcount bug in qrtrrecvmsg Syzbot reported a bug as following: refcountt: addition on 0; use-after-free. ... RIP: 0010:refcountwarnsaturate+0x17c/0x1f0 lib/refcount.c:25 ... Call Trace: refcountadd...
PT-2025-37550
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A race condition exists between coalescing and releasing SKBs Socket Buffer in the Linux kernel. A commit intended to fix coalescing for page pool fragment recycling inadvertently...
CVE-2024-31960
An issue was discovered in Samsung Mobile Processor Exynos 1480, Exynos 2400. The xclipse amdgpu driver has a reference count bug. This can lead to a use after free...
AZL-51408 CVE-2024-50012 affecting package kernel 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: cpufreq: Avoid a bad reference count on CPU node In the parseperfdomain function, if the call to ofparsephandlewithargs returns an error, then the reference to the CPU device node that was acquired at the start of the function...
CVE-2024-31960
An issue was discovered in Samsung Mobile Processor Exynos 1480, Exynos 2400. The xclipse amdgpu driver has a reference count bug. This can lead to a use after free...
CVE-2024-31960
An issue was discovered in Samsung Mobile Processor Exynos 1480, Exynos 2400. The xclipse amdgpu driver has a reference count bug. This can lead to a use after free...
kernel: vmwgfx: reference count issue leads to use-after-free in surface handling
The reference count changes made as part of the CVE-2023-33951 and CVE-2023-33952 fixes exposed a use-after-free flaw in the way memory objects were handled when they were being used to store a surface. When running inside a VMware guest with 3D acceleration enabled, a local, unprivileged user...
Linux kernel security vulnerabilities
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a contention condition issue in the drm/lima component, where a rendering job may complete before the timeou...
CVE-2022-32082
MariaDB v10.5 to v10.7 was discovered to contain an assertion failure at table-getrefcount == 0 in dict0dict.cc...
AZL-12132 CVE-2022-29581 affecting package kernel for versions less than 5.15.86.1-1
Improper Update of Reference Count vulnerability in net/sched of Linux Kernel allows local attacker to cause privilege escalation to root. This issue affects: Linux Kernel versions prior to 5.18; version 4.14 and later versions...
Linux kernel 安全漏洞
Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux. A security vulnerability exists in Linux kernel versions 4.14 through 5.18, which stems from an improperly updated reference count in net/sched. A local attacker can exploit the vulnerability to elevate...
GHSA-M7FM-4JFH-JRG6 Use after free in boosted trees creation
Impact The implementation for tf.rawops.BoostedTreesCreateEnsemble can result in a use after free error if an attacker supplies specially crafted arguments: python import tensorflow as tf v= tf.Variable0.0 tf.rawops.BoostedTreesCreateEnsemble treeensemblehandle=v.handle, stamptoken=0,...
DEBIAN-CVE-2021-1077
NVIDIA GPU Display Driver for Windows and Linux, R450 and R460 driver branch, contains a vulnerability where the software uses a reference count to manage a resource that is incorrectly updated, which may lead to denial of service...
CVE-2019-20422
In the Linux kernel before 5.3.4, fib6rulelookup in net/ipv6/ip6fib.c mishandles the RT6LOOKUPFDSTNOREF flag in a reference-count decision, leading to for example a crash that was identified by syzkaller, aka CID-7b09c2d052db...
Ubuntu: Security Advisory (USN-3404-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-3404-2 linux-hwe vulnerability
USN-3404-1 fixed a vulnerability in the Linux kernel for Ubuntu 17.04. This update provides the corresponding updates for the Linux Hardware Enablement HWE kernel from Ubuntu 17.04 for Ubuntu 16.04 LTS. A reference count bug was discovered in the Linux kernel ipx protocol stack. A local attacker...