CVE-2023-53809

The CVE-2023-53809 issue affects the Linux kernel where passing a pppol2tp socket as a UDP socket to l2tp_tunnel_register() could trigger a recursive locking deadlock. Root cause: a lock order condition allowed deadlock when a socket path led to nested locking of sk_lock-AF_PPPOX. The advisory no...

CVE-2023-53809

In the Linux kernel, the following vulnerability has been resolved: l2tp: Avoid possible recursive deadlock in l2tptunnelregister When a file descriptor of pppol2tp socket is passed as file descriptor of UDP socket, a recursive deadlock occurs in l2tptunnelregister. This situation is reproduced b...

CVE-2023-53809 l2tp: Avoid possible recursive deadlock in l2tp_tunnel_register()

In the Linux kernel, the following vulnerability has been resolved: l2tp: Avoid possible recursive deadlock in l2tptunnelregister When a file descriptor of pppol2tp socket is passed as file descriptor of UDP socket, a recursive deadlock occurs in l2tptunnelregister. This situation is reproduced b...

CVE-2023-53802

In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k: htchst: free skb in ath9khtcrxmsg if there is no callback function It is stated that ath9khtcrxmsg either frees the provided skb or passes its management to another callback function. However, the skb is not freed in...

CVE-2023-53802 wifi: ath9k: htc_hst: free skb in ath9k_htc_rx_msg() if there is no callback function

In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k: htchst: free skb in ath9khtcrxmsg if there is no callback function It is stated that ath9khtcrxmsg either frees the provided skb or passes its management to another callback function. However, the skb is not freed in...

CVE-2023-53802 wifi: ath9k: htc_hst: free skb in ath9k_htc_rx_msg() if there is no callback function

In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k: htchst: free skb in ath9khtcrxmsg if there is no callback function It is stated that ath9khtcrxmsg either frees the provided skb or passes its management to another callback function. However, the skb is not freed in...

CVE-2023-53785

The CVE-2023-53785 entry concerns the Linux kernel mt76/mt7921 SDIO path. The vulnerability arises when mt7921_usb_sdio_tx_prepare_skb() and mt7921_skb_add_usb_sdio_hdr() blindly assume sufficient headroom in an skb, which can trigger kernel panics if the skb originates from a receive path (e.g.,...

CVE-2023-53781 smc: Fix use-after-free in tcp_write_timer_handler().

In the Linux kernel, the following vulnerability has been resolved: smc: Fix use-after-free in tcpwritetimerhandler. With Eric's ref tracker, syzbot finally found a repro for use-after-free in tcpwritetimerhandler by kernel TCP sockets. 0 If SMC creates a kernel socket in smccreate, the kernel...

CVE-2022-50655

Summary. CVE-2022-50655 concerns the Linux kernel PPP transmit path where flow dissector could fail to locate the skb’s net namespace, risking misassociation of skb with the device. Multiple trusted sources (OSV, Debian OSV, UBUNTU OSV, NVD, EUVD) confirm the vulnerability was resolved in the Lin...

CVE-2022-50655 ppp: associate skb with a device at tx

In the Linux kernel, the following vulnerability has been resolved: ppp: associate skb with a device at tx Syzkaller triggered flow dissector warning with the following: r0 = openat$ppp0xffffffffffffff9c, &0x7f0000000000, 0xc0802, 0x0 ioctl$PPPIOCNEWUNITr0, 0xc004743e, &0x7f00000000c0...

PT-2025-49707

In the Linux kernel, the following vulnerability has been resolved: net: rds: don't hold sock lock when cancelling work from rds tcp reset callbacks syzbot is reporting lockdep warning at rds tcp reset callbacks 1, for commit ac3615e7f3cffe2a "RDS: TCP: Reduce code duplication in rds tcp reset...

PT-2025-49635

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw related to PPP Point-to-Point Protocol transmission. Specifically, the issue arises when associating an skb socket buffer with a device during...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from ath9khtcrxmsg not freeing the skb when there is no callback function, which could lead to a memory leak...

PT-2026-2507

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's networking subsystem related to handshake cancellations. Specifically, duplicate cancellation requests for the same handshake request can lead to a...

Linux Distros Unpatched Vulnerability : CVE-2023-53836

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bpf, sockmap: Fix skb refcnt race after locking changes There is a race where skb's from the skpsockbacklog can be referenced after userspace side has already...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the bpfskstorage invalid wait context, which could lead to a lock dependency reporting error...

PT-2025-49716

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue was identified in the Linux kernel related to error handling within the kcm sendmsg function when dealing with SOCK DGRAM sockets. A memory leak was initially addressed, but a...

PT-2025-49730

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A data race condition exists around dp-dccps mss cache in the Data Communication Channel Protocol DCCP implementation. The dccp sendmsg function and do dccp getsockopt read dp-dccps mss...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from skb reference count contention in sockmap...

PT-2025-49641

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.3.0-rc4-01174-gb5d54eb5899a 7 Description The Linux kernel contains a use-after-free issue within the tcp write timer handler function. This occurs when the SMC SMC socket creates a kernel socket and the kernel...