Lucene search
K

107 matches found

Cvelist
Cvelist
added 2025/12/09 1:30 a.m.24 views

CVE-2023-53854 ASoC: mediatek: mt8186: Fix use-after-free in driver remove path

In the Linux kernel, the following vulnerability has been resolved: ASoC: mediatek: mt8186: Fix use-after-free in driver remove path When devm runs function in the "remove" path for a device it runs them in the reverse order. That means that if you have parts of your driver that aren't using devm...

0.00184EPSS
Exploits0References3
CVE
CVE
added 2025/12/09 1:30 a.m.16 views

CVE-2023-53854

The CVE CVE-2023-53854 concerns ASoC: mediatek mt8186 with a use-after-free in the driver remove path. The root cause was incorrect removal-time ordering of devm-managed resources in mt8186_init_clock(): the code registered clocks (mt8186_audsys_clk_register), allocated clock resources, then retr...

6.4AI score0.00184EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2025/12/09 1:30 a.m.5 views

CVE-2023-53854

In the Linux kernel, the following vulnerability has been resolved: ASoC: mediatek: mt8186: Fix use-after-free in driver remove path When devm runs function in the "remove" path for a device it runs them in the reverse order. That means that if you have parts of your driver that aren't using devm...

5.5AI score0.00184EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2025/12/09 12:29 a.m.6 views

SUSE CVE-2023-53758

In the Linux kernel, the following vulnerability has been resolved: spi: atmel-quadspi: Free resources even if runtime resume failed in .remove An early error exit in atmelqspiremove doesn't prevent the device unbind. So this results in an spi controller with an unbound parent and unmapped regist...

6.5AI score0.00156EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.4 views

PT-2025-49701

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s mmc subsystem, specifically within the omap hsmmc driver. The mmc add host function may return an error, and failure to check this return value can le...

7.8CVSS7.1AI score0.00465EPSS
Exploits2References897
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.3 views

PT-2025-49745

In the Linux kernel, the following vulnerability has been resolved: ASoC: mediatek: mt8186: Fix use-after-free in driver remove path When devm runs function in the "remove" path for a device it runs them in the reverse order. That means that if you have parts of your driver that aren't using devm...

6.7AI score0.00184EPSS
Exploits0References3
OSV
OSV
added 2025/12/08 2:15 a.m.2 views

DEBIAN-CVE-2023-53758

In the Linux kernel, the following vulnerability has been resolved: spi: atmel-quadspi: Free resources even if runtime resume failed in .remove An early error exit in atmelqspiremove doesn't prevent the device unbind. So this results in an spi controller with an unbound parent and unmapped regist...

5.3AI score0.00156EPSS
Exploits0References1
OSV
OSV
added 2025/12/08 2:15 a.m.2 views

DEBIAN-CVE-2022-50618

In the Linux kernel, the following vulnerability has been resolved: mmc: meson-gx: fix return value check of mmcaddhost mmcaddhost may return error, if we ignore its return value, it will lead two issues: 1. The memory that allocated in mmcallochost is leaked. 2. In the remove path, mmcremovehost...

5.3AI score0.00173EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/08 12:0 a.m.5 views

PT-2025-49488

In the Linux kernel, the following vulnerability has been resolved: spi: atmel-quadspi: Free resources even if runtime resume failed in .remove An early error exit in atmel qspi remove doesn't prevent the device unbind. So this results in an spi controller with an unbound parent and unmapped...

6.4AI score0.00156EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/12/08 12:0 a.m.13 views

PT-2025-49459

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel where the mmc add host function's return value is not properly checked. If mmc add host returns an error, the allocated memory in mmc alloc host is...

7.8CVSS6.8AI score0.00465EPSS
Exploits2References897
Positive Technologies
Positive Technologies
added 2025/12/01 12:0 a.m.3 views

PT-2026-2511

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw in the net/mlx5e module where the PSP Profile Support Package can be unregistered twice. This occurs through both the mlx5e remove and mlx5e nic cleanup...

5.2CVSS5.4AI score0.00155EPSS
Exploits0References17
Microsoft CVE
Microsoft CVE
added 2025/11/27 1:1 a.m.9 views

drm/msm: Make .remove and .shutdown HW shutdown consistent

...

5.5CVSS8AI score0.00143EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.3 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988884)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988884 advisory. In the Linux kernel, the following vulnerability has been resolved: brcmfmac: pcie: Release firmwares in the brcmfpciesetup error path This avoids leaking memory if...

5.5CVSS6.2AI score0.00253EPSS
Exploits0References4
NVD
NVD
added 2025/10/30 10:15 a.m.5 views

CVE-2025-40091

In the Linux kernel, the following vulnerability has been resolved: ixgbe: fix too early devlinkfree in ixgberemove Since ixgbeadapter is embedded in devlink, calling devlinkfree prematurely in the ixgberemove path can lead to UAF. Move devlinkfree to the end. KASAN report: BUG: KASAN:...

0.0017EPSS
Exploits0References2
OSV
OSV
added 2025/10/30 10:15 a.m.3 views

UBUNTU-CVE-2025-40091

In the Linux kernel, the following vulnerability has been resolved: ixgbe: fix too early devlinkfree in ixgberemove Since ixgbeadapter is embedded in devlink, calling devlinkfree prematurely in the ixgberemove path can lead to UAF. Move devlinkfree to the end. KASAN report: BUG: KASAN:...

5.7AI score0.0017EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2025/10/13 12:0 a.m.4 views

PT-2025-51626

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the idpf driver related to the removal of the driver. Specifically, a NULL pointer dereference can occur in the idpf remove function when attempti...

4.6CVSS6.1AI score0.00173EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/10/08 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-53567

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - spi: qup: Don't skip cleanup in remove's error path Returning early in a platform driver's remove callback is wrong. In this case the dma resources are not...

5.5CVSS6.5AI score0.00136EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/10/07 12:0 a.m.5 views

PT-2025-41050

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a memory leak in the r6040 driver related to the probe and remove processes. The issue stems from a failure to properly disconnect a phy device when removing an...

6.3AI score0.00196EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.1 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986792)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986792 advisory. In the Linux kernel, the following vulnerability has been resolved: atm: nicstar: Fix possible use-after-free in nicstarcleanup This module's remove path calls...

7.8CVSS6.1AI score0.00247EPSS
Exploits0References4
CVE
CVE
added 2025/10/04 3:17 p.m.18 views

CVE-2023-53567

CVE-2023-53567 – Linux kernel : The issue affects the kernel SPI QUP driver. The root cause is returning early from a platform driver’s remove callback, which prevents releasing DMA resources in the error path, causing a permanent resource leak. The fix ensures proper cleanup by not skipping hard...

5.5CVSS6.1AI score0.00136EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder