5 matches found
EUVD-2022-55677
The Core Config Manager CCM in Nagios XI versions prior to CCM 3.1.7 / Nagios XI 5.8.9 contains a cross-site scripting XSS vulnerability via the Audit Log page search input. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in...
CVE-2023-53568 s390/zcrypt: don't leak memory if dev_set_name() fails
In the Linux kernel, the following vulnerability has been resolved: s390/zcrypt: don't leak memory if devsetname fails When devsetname fails, zcdncreate doesn't free the newly allocated resources. Do it...
CVE-2023-53568
Vulnerability (CVE-2023-53568) in the Linux kernel affects s390/zcrypt: when dev_set_name() fails, zcdn_create() leaks newly allocated resources instead of freeing them. The issue has been resolved by ensuring proper cleanup. The provided description notes the root cause and fix, and linked refer...
CVE-2022-50477 rtc: class: Fix potential memleak in devm_rtc_allocate_device()
In the Linux kernel, the following vulnerability has been resolved: rtc: class: Fix potential memleak in devmrtcallocatedevice devmrtcallocatedevice will alloc a rtcdevice first, and then run devsetname. If devsetname failed, the rtcdevice will memleak. Move devmaddactionorreset in front of...
PT-2025-7974
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been identified where the dev set name function's return value is not properly checked. If dev set name fails, dev name may return null, potential...