Lucene search
K

44 matches found

OSV
OSV
added 2025/05/20 4:58 p.m.7 views

CVE-2025-37982 wifi: wl1251: fix memory leak in wl1251_tx_work

In the Linux kernel, the following vulnerability has been resolved: wifi: wl1251: fix memory leak in wl1251txwork The skb dequeued from txqueue is lost when wl1251pselpwakeup fails with a -ETIMEDOUT error. Fix that by queueing the skb back to txqueue...

5.5CVSS6AI score0.00152EPSS
Exploits0References12
NVD
NVD
added 2025/05/01 3:16 p.m.14 views

CVE-2022-49814

In the Linux kernel, the following vulnerability has been resolved: kcm: close race conditions on skreceivequeue sk-skreceivequeue is protected by skb queue lock, but for KCM sockets its RX path takes mux-rxlock to protect more than just skb queue. However, kcmrecvmsg still only grabs the skb que...

4.7CVSS0.00133EPSS
Exploits0References7
OSV
OSV
added 2025/05/01 3:16 p.m.11 views

UBUNTU-CVE-2022-49814

In the Linux kernel, the following vulnerability has been resolved: kcm: close race conditions on skreceivequeue sk-skreceivequeue is protected by skb queue lock, but for KCM sockets its RX path takes mux-rxlock to protect more than just skb queue. However, kcmrecvmsg still only grabs the skb que...

4.7CVSS5.9AI score0.00133EPSS
Exploits0References10
OSV
OSV
added 2025/05/01 2:9 p.m.13 views

CVE-2022-49814 kcm: close race conditions on sk_receive_queue

In the Linux kernel, the following vulnerability has been resolved: kcm: close race conditions on skreceivequeue sk-skreceivequeue is protected by skb queue lock, but for KCM sockets its RX path takes mux-rxlock to protect more than just skb queue. However, kcmrecvmsg still only grabs the skb que...

4.7CVSS6AI score0.00133EPSS
Exploits0References10
Cvelist
Cvelist
added 2025/05/01 2:9 p.m.25 views

CVE-2022-49814 kcm: close race conditions on sk_receive_queue

In the Linux kernel, the following vulnerability has been resolved: kcm: close race conditions on skreceivequeue sk-skreceivequeue is protected by skb queue lock, but for KCM sockets its RX path takes mux-rxlock to protect more than just skb queue. However, kcmrecvmsg still only grabs the skb que...

0.00133EPSS
Exploits0References7
CVE
CVE
added 2025/05/01 2:9 p.m.75 views

CVE-2022-49814

CVE-2022-49814 concerns a race condition in the Linux kernel KCM RX path. The issue arises because sk_receive_queue is protected by the skb queue lock, but KCM sockets’ RX path uses mux->rx_lock to protect more than just the skb queue, while kcm_recvmsg() continued to only grab the skb queue l...

4.7CVSS6.5AI score0.00133EPSS
Exploits0References7Affected Software1
Positive Technologies
Positive Technologies
added 2025/05/01 12:0 a.m.6 views

PT-2025-18531 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A race condition issue has been resolved in the Linux kernel related to KCM sockets. The sk-sk receive queue is protected by the skb queue lock, but for KCM sockets, the RX path takes...

5.1AI score0.00133EPSS
Exploits0References16
OSV
OSV
added 2025/04/16 3:15 p.m.2 views

UBUNTU-CVE-2025-22050

In the Linux kernel, the following vulnerability has been resolved: usbnet:fix NPE during rxcomplete Missing usbnetgoingaway Check in Critical Path. The usbsubmiturb function lacks a usbnetgoingaway validation, whereas usbnetqueueskb includes this check. This inconsistency creates a race conditio...

4.7CVSS6.1AI score0.00166EPSS
Exploits0References40
NVD
NVD
added 2024/12/27 3:15 p.m.14 views

CVE-2024-56645

In the Linux kernel, the following vulnerability has been resolved: can: j1939: j1939sessionnew: fix skb reference counting Since j1939sessionskbqueue does an extra skbget for each new skb, do the same for the initial one in j1939sessionnew to avoid refcount underflow. mkl: clean up commit messag...

5.5CVSS0.00224EPSS
Exploits0References9
NVD
NVD
added 2024/12/27 3:15 p.m.13 views

CVE-2024-56593

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmfsdiodsglistrw This patch fixes a NULL pointer dereference bug in brcmfmac that occurs when a high 'sdsgentryalign' value applies e.g. 512 and a lot of queued SKBs a...

5.5CVSS0.00224EPSS
Exploits0References9
OSV
OSV
added 2024/12/27 3:15 p.m.2 views

DEBIAN-CVE-2024-56593

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmfsdiodsglistrw This patch fixes a NULL pointer dereference bug in brcmfmac that occurs when a high 'sdsgentryalign' value applies e.g. 512 and a lot of queued SKBs a...

5.5CVSS5.6AI score0.00224EPSS
Exploits0References1
OSV
OSV
added 2024/12/27 3:15 p.m.3 views

UBUNTU-CVE-2024-56593

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmfsdiodsglistrw This patch fixes a NULL pointer dereference bug in brcmfmac that occurs when a high 'sdsgentryalign' value applies e.g. 512 and a lot of queued SKBs a...

5.5CVSS6.2AI score0.00224EPSS
Exploits0References54
Cvelist
Cvelist
added 2024/12/27 3:2 p.m.19 views

CVE-2024-56645 can: j1939: j1939_session_new(): fix skb reference counting

In the Linux kernel, the following vulnerability has been resolved: can: j1939: j1939sessionnew: fix skb reference counting Since j1939sessionskbqueue does an extra skbget for each new skb, do the same for the initial one in j1939sessionnew to avoid refcount underflow. mkl: clean up commit messag...

0.00224EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2024/12/27 2:51 p.m.2 views

CVE-2024-56593 wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmf_sdiod_sglist_rw()

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Fix oops due to NULL pointer dereference in brcmfsdiodsglistrw This patch fixes a NULL pointer dereference bug in brcmfmac that occurs when a high 'sdsgentryalign' value applies e.g. 512 and a lot of queued SKBs a...

7.4AI score0.00224EPSS
Exploits0References7
CVE
CVE
added 2024/12/27 2:51 p.m.146 views

CVE-2024-56593

CVE-2024-56593 – Linux kernel (brcmfmac wifi driver) Root cause: NULL pointer dereference in brcmf_sdiod_sglist_rw() when a high sd_sgentry_align value (e.g., 512) and a large number of queued SKBs cause the pre-allocated sgtable to run out of entries. The calculation uses nents = max(rxglom_size...

5.5CVSS6.4AI score0.00224EPSS
Exploits0References9Affected Software1
Positive Technologies
Positive Technologies
added 2024/12/27 12:0 a.m.4 views

PT-2024-36900

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6.74 Description A NULL pointer dereference bug in the brcmfmac module occurs when a high 'sd sgentry align' value applies and a lot of queued SKBs are sent from the pkt queue. The problem is the number of...

5.5CVSS6.7AI score0.00224EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2024/06/04 2:24 a.m.6 views

SUSE CVE-2024-36962

In the Linux kernel, the following vulnerability has been resolved: net: ks8851: Queue RX packets in IRQ handler instead of disabling BHs Currently the driver uses localbhdisable/localbhenable in its IRQ handler to avoid triggering netrxaction softirq on exit from netifrx. The netrxaction could...

6.2CVSS6.3AI score0.00211EPSS
Exploits0References13
RedhatCVE
RedhatCVE
added 2024/05/23 2:1 p.m.26 views

CVE-2021-47232

In the Linux kernel, the following vulnerability has been resolved: can: j1939: fix Use-after-Free, hold skb ref while in use This patch fixes a Use-after-Free found by the syzbot. The problem is that a skb is taken from the per-session skb queue, without incrementing the ref count. This leads to...

5.5CVSS6.4AI score0.00239EPSS
Exploits0References4
NVD
NVD
added 2024/05/21 3:15 p.m.28 views

CVE-2021-47232

In the Linux kernel, the following vulnerability has been resolved: can: j1939: fix Use-after-Free, hold skb ref while in use This patch fixes a Use-after-Free found by the syzbot. The problem is that a skb is taken from the per-session skb queue, without incrementing the ref count. This leads to...

8.4CVSS6.4AI score0.00239EPSS
Exploits0References4
OSV
OSV
added 2024/05/21 3:15 p.m.13 views

CVE-2021-47232

In the Linux kernel, the following vulnerability has been resolved: can: j1939: fix Use-after-Free, hold skb ref while in use This patch fixes a Use-after-Free found by the syzbot. The problem is that a skb is taken from the per-session skb queue, without incrementing the ref count. This leads to...

8.4CVSS6.3AI score
Exploits0References4
Rows per page
Query Builder