Lucene search
K

27 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: scsi: snic: Fixed a possible Use-after-Allocation UAF in snictgtcreate A warning is reported as follows: drivers/scsi/snic/snicdisc.c:307 snictgtcreate warning: &‘tgt-list’ was not removed from the list If the deviceadd function...

6.1AI score0.00239EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: scsi: snic: A memory leak was fixed by using debugfslookup. When calling debugfslookup, the result must also call dput; otherwise, a memory leak will occur over time. To simplify things, simply call debugfslookupandremove, which...

5.5CVSS5.2AI score0.00135EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.7 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013553)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013553 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: snic: Fix possible UAF in snictgtcreate Smatch reports a warning as follows:...

5.5AI score0.00239EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.7 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-013372)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013372 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: snic: Fix possible UAF in snictgtcreate Smatch reports a warning as follows:...

5.6AI score0.00239EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.5 views

Unity Linux 20.1050e / 20.1070e Security Update: kernel (UTSA-2026-011290)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011290 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: snic: Fix possible memory leak if deviceadd fails If deviceadd returns error, the name...

5.5CVSS5.8AI score0.00136EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/03/04 12:0 a.m.4 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005629)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005629 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: snic: Fix possible memory leak if deviceadd fails If deviceadd returns error, the name...

5.5CVSS5.8AI score0.00136EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/03/03 12:0 a.m.2 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005653)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005653 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: snic: Fix possible memory leak if deviceadd fails If deviceadd returns error, the name...

5.5CVSS6.3AI score0.00136EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/05 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2022-50840

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - scsi: snic: Fix possible UAF in snictgtcreate Smatch reports a warning as follows: drivers/scsi/snic/snicdisc.c:307 snictgtcreate warn: '&tgt-list' not removed...

6.7AI score0.00239EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/12/31 11:47 a.m.3 views

CVE-2022-50840

In the Linux kernel, the following vulnerability has been resolved: scsi: snic: Fix possible UAF in snictgtcreate Smatch reports a warning as follows: drivers/scsi/snic/snicdisc.c:307 snictgtcreate warn: '&tgt-;list' not removed from list If deviceadd fails in snictgtcreate, tgt will be freed, bu...

5.8AI score0.00239EPSS
Exploits0References4
NVD
NVD
added 2025/12/30 1:15 p.m.4 views

CVE-2022-50840

In the Linux kernel, the following vulnerability has been resolved: scsi: snic: Fix possible UAF in snictgtcreate Smatch reports a warning as follows: drivers/scsi/snic/snicdisc.c:307 snictgtcreate warn: '&tgt-list' not removed from list If deviceadd fails in snictgtcreate, tgt will be freed, but...

0.00239EPSS
Exploits0References9
Cvelist
Cvelist
added 2025/12/30 12:10 p.m.26 views

CVE-2022-50840 scsi: snic: Fix possible UAF in snic_tgt_create()

In the Linux kernel, the following vulnerability has been resolved: scsi: snic: Fix possible UAF in snictgtcreate Smatch reports a warning as follows: drivers/scsi/snic/snicdisc.c:307 snictgtcreate warn: '&tgt-list' not removed from list If deviceadd fails in snictgtcreate, tgt will be freed, but...

0.00239EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2025/12/30 12:0 a.m.4 views

PT-2025-53958

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a use-after-free issue within the snic tgt create function in the SCSI subsystem. Specifically, if device add fails during the creation of a target, the target’...

7.8CVSS6.3AI score0.00465EPSS
Exploits2References899
Tenable Nessus
Tenable Nessus
added 2025/12/30 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-992520)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992520 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: snic: Fix possible memory leak if deviceadd fails If deviceadd returns error, the name...

5.5CVSS5.9AI score0.00136EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/09/25 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2023-53436

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - scsi: snic: Fix possible memory leak if deviceadd fails If deviceadd returns error, the name allocated by devsetname needs be freed. As the comment of deviceadd...

5.5CVSS6.1AI score0.00136EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/09/18 11:37 p.m.3 views

SUSE CVE-2023-53436

In the Linux kernel, the following vulnerability has been resolved: scsi: snic: Fix possible memory leak if deviceadd fails If deviceadd returns error, the name allocated by devsetname needs be freed. As the comment of deviceadd says, putdevice should be used to give up the reference in the error...

5.5CVSS6.5AI score0.00136EPSS
Exploits0References20
RedhatCVE
RedhatCVE
added 2025/09/18 5:59 p.m.12 views

CVE-2023-53414

In the Linux kernel, the following vulnerability has been resolved: scsi: snic: Fix memory leak with using debugfslookup When calling debugfslookup the result must have dput called on it, otherwise the memory will leak over time. To make things simpler, just call debugfslookupandremove instead...

5.5CVSS5.8AI score0.00135EPSS
Exploits0References4
NVD
NVD
added 2025/09/18 4:15 p.m.6 views

CVE-2023-53436

In the Linux kernel, the following vulnerability has been resolved: scsi: snic: Fix possible memory leak if deviceadd fails If deviceadd returns error, the name allocated by devsetname needs be freed. As the comment of deviceadd says, putdevice should be used to give up the reference in the error...

5.5CVSS0.00136EPSS
Exploits0References8
OSV
OSV
added 2025/09/18 4:15 p.m.3 views

UBUNTU-CVE-2023-53436

In the Linux kernel, the following vulnerability has been resolved: scsi: snic: Fix possible memory leak if deviceadd fails If deviceadd returns error, the name allocated by devsetname needs be freed. As the comment of deviceadd says, putdevice should be used to give up the reference in the error...

5.5CVSS5.8AI score0.00136EPSS
Exploits0References11
CVE
CVE
added 2025/09/18 4:4 p.m.26 views

CVE-2023-53436

CVE-2023-53436 : In the Linux kernel, the scsi: snic path had a memory leak when device_add() fails because the name allocated by dev_set_name() wasn’t freed. The fix releases the reference in the error path by calling put_device(), allowing kobject_cleanp() to free the name. The vulnerability’s ...

5.5CVSS6.1AI score0.00136EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2025/09/18 4:4 p.m.7 views

CVE-2023-53436 scsi: snic: Fix possible memory leak if device_add() fails

In the Linux kernel, the following vulnerability has been resolved: scsi: snic: Fix possible memory leak if deviceadd fails If deviceadd returns error, the name allocated by devsetname needs be freed. As the comment of deviceadd says, putdevice should be used to give up the reference in the error...

0.00136EPSS
Exploits0References8
Rows per page
Query Builder