20 matches found
CVE-2026-45911
CVE-2026-45911 affects the Linux kernel USB3 (cdns3) driver. When a USB role switch to host occurs during resume, the host path can dereference an uninitialized xhci-hcd device, causing a NULL pointer dereference. The fixed behavior is to skip the resume operation for the newly chosen role if a r...
CVE-2026-45911 usb: cdns3: fix role switching during resume
In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: fix role switching during resume If the role change while we are suspended, the cdns3 driver switches to the new mode during resume. However, switching to host mode in this context causes a NULL pointer dereference. T...
Astra Linux – Vulnerability found in Linux 5.15, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: stmmac: Clearing the variable when destroying the workqueue Currently, when suspending the driver and stopping the workqueue, it is checked whether workqueue is not NULL. If it is NULL, the workqueue is destroyed. The function...
Astra Linux – Vulnerability found in Linux 5.15, Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: HID: intel-ish-hid: ipc: Disabling and re-enabling the ACPI GPE bit The EHL Elkhart Lake-based platforms provide an out-of-band service that allows devices to wake up when the system is in the S5 Soft-Off state. This out-of-band...
CVE-2026-43363
CVE-2026-43363 concerns the Linux kernel x86 APIC subsystem. If, on resume from s2ram (S2/S3 wake), firmware re-enables x2APIC mode after the kernel has booted with x2APIC disabled, the system can run with x2APIC hardware but the kernel uses the xapic interface, leading to hangs. The issue is cau...
CVE-2026-43363 x86/apic: Disable x2apic on resume if the kernel expects so
In the Linux kernel, the following vulnerability has been resolved: x86/apic: Disable x2apic on resume if the kernel expects so When resuming from s2ram, firmware may re-enable x2apic mode, which may have been disabled by the kernel during boot either because it doesn't support IRQ remapping or f...
CVE-2026-43363
In the Linux kernel, the following vulnerability has been resolved: x86/apic: Disable x2apic on resume if the kernel expects so When resuming from s2ram, firmware may re-enable x2apic mode, which may have been disabled by the kernel during boot either because it doesn't support IRQ remapping or f...
CVE-2026-31461
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix drmedid leak in amdgpudm WHAT When a sink is connected, aconnector-drmedid was overwritten without freeing the previous allocation, causing a memory leak on resume. HOW Free the previous drmedid before updati...
EUVD-2025-203666
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix gpu page fault after hibernation on PF passthrough On PF passthrough environment, after hibernate and then resume, coralgemm will cause gpu page fault. Mode1 reset happens during hibernate, but partition mode is n...
CVE-2025-68230
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix gpu page fault after hibernation on PF passthrough On PF passthrough environment, after hibernate and then resume, coralgemm will cause gpu page fault. Mode1 reset happens during hibernate, but partition mode is n...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989767)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989767 advisory. In the Linux kernel, the following vulnerability has been resolved: net: atlantic: remove aqnicdeinit when resume aqnicdeinit has been called while suspending, so we...
CVE-2022-50498 eth: alx: take rtnl_lock on resume
In the Linux kernel, the following vulnerability has been resolved: eth: alx: take rtnllock on resume Zbynek reports that alx trips an rtnl assertion on resume: RTNL: assertion failed at net/core/dev.c 2891 RIP: 0010:netifsetrealnumtxqueues+0x1ac/0x1c0 Call Trace: alxopen+0x230/0x570 alx...
PT-2025-44760
Name of the Vulnerable Software and Affected Versions Linux Kernel hi311x CAN driver affected versions not specified Description The Linux kernel’s hi311x CAN driver contains a flaw where a null pointer dereference can occur when resuming from sleep if the network interface was not previously...
Linux Distros Unpatched Vulnerability : CVE-2023-52519
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: HID: intel-ish-hid: ipc: Disable and reenable ACPI GPE bit The EHL Elkhart Lake based...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerabilities have been resolved: m68k: Fixed the spinlock race in kernel thread creation. Context switching ensures that the correct lock owner is retained during the switch from the “prev” task to the “next” task. This relies on interrupts remaining disabled...
DEBIAN-CVE-2024-46846
In the Linux kernel, the following vulnerability has been resolved: spi: rockchip: Resolve unbalanced runtime PM / system PM handling Commit e882575efc77 "spi: rockchip: Suspend and resume the bus during NOIRQSYSTEMSLEEPPM ops" stopped respecting runtime PM status and simply disabled clocks...
kernel: wifi: iwlwifi: mvm: ensure offloading TID queue exists
A vulnerability was found in the Linux kernel's iwlwifi driver for Intel wireless devices. This issue occurs when the system attempts to sync the TX queue for an offloading TID during resume, but the queue is not allocated if no packets have been sent on TID 0...
SUSE CVE-2021-47253
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix potential memory leak in DMUB hwinit Why On resume we perform DMUB hwinit which allocates memory: dmresume-dmdmubhwinit-dcdmubsrvcreate-kzalloc That results in memory leak in suspend/resume scenarios. How...
DEBIAN-CVE-2023-52519
In the Linux kernel, the following vulnerability has been resolved: HID: intel-ish-hid: ipc: Disable and reenable ACPI GPE bit The EHL Elkhart Lake based platforms provide a OOB Out of band service, which allows to wakup device when the system is in S5 Soft-Off state. This OOB service can be...
Facebook Careers Page XXE Vulnerability Patched
A vulnerability was discovered and patched in a third-party service that handles resumes on Facebook’s careers page. The discovery was worth more than $6,000 in a bounty paid out by Facebook to researcher Mohamed Ramadan of Egypt, who published some details of the vulnerability and exploit on his...