CVE-2022-49756 phy: usb: sunplus: Fix potential null-ptr-deref in sp_usb_phy_probe()

In the Linux kernel, the following vulnerability has been resolved: phy: usb: sunplus: Fix potential null-ptr-deref in spusbphyprobe spusbphyprobe will call platformgetresourcebyname that may fail and return NULL. devmioremap will use usbphy-moon4resmem-start as input, which may causes...

The vulnerability of the spl2sw_nvmem_get_mac_address() function in the drivers/net/ethernet/sunplus/spl2sw_driver.c file of the sp7012 Linux operating system’s driver, which allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the spl2swnvmemgetmacaddress function in the drivers/net/ethernet/sunplus/spl2swdriver.c file of the sp7012 kernel driver in the Linux operating system is related to the repeated use of previously freed memory. Exploiting this vulnerability allows an attacker to compromise th...

PT-2025-54033

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The mmc add host function may return an error, and failing to check this return value can lead to a memory leak in mmc alloc host and a null pointer dereference when calling mmc remove...

SUSE CVE-2022-3541

A vulnerability classified as critical has been found in Linux Kernel. This affects the function spl2swnvmemgetmacaddress of the file drivers/net/ethernet/sunplus/spl2swdriver.c of the component BPF. The manipulation leads to use after free. It is recommended to apply a patch to fix this issue. T...

GSD-2023-1001942 phy: usb: sunplus: Fix potential null-ptr-deref in sp_usb_phy_probe()

phy: usb: sunplus: Fix potential null-ptr-deref in spusbphyprobe This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.9 by commit...

CVE-2022-3541

A vulnerability classified as critical has been found in Linux Kernel. This affects the function spl2swnvmemgetmacaddress of the file drivers/net/ethernet/sunplus/spl2swdriver.c of the component BPF. The manipulation leads to use after free. It is recommended to apply a patch to fix this issue. T...

USN-5793-1: Linux kernel vulnerabilities

It was discovered that the iouring subsystem in the Linux kernel did not properly perform reference counting in some situations, leading to a use- after-free vulnerability. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2022-3910 ...

DEBIAN-CVE-2022-3541

A vulnerability classified as critical has been found in Linux Kernel. This affects the function spl2swnvmemgetmacaddress of the file drivers/net/ethernet/sunplus/spl2swdriver.c of the component BPF. The manipulation leads to use after free. It is recommended to apply a patch to fix this issue. T...

AZL-11132 CVE-2022-3541 affecting package kernel for versions less than 5.15.74.1-3

A vulnerability classified as critical has been found in Linux Kernel. This affects the function spl2swnvmemgetmacaddress of the file drivers/net/ethernet/sunplus/spl2swdriver.c of the component BPF. The manipulation leads to use after free. It is recommended to apply a patch to fix this issue. T...

Design/Logic Flaw

A vulnerability classified as critical has been found in Linux Kernel. This affects the function spl2swnvmemgetmacaddress of the file drivers/net/ethernet/sunplus/spl2swdriver.c of the component BPF. The manipulation leads to use after free. It is recommended to apply a patch to fix this issue. T...

UBUNTU-CVE-2022-3541

A vulnerability classified as critical has been found in Linux Kernel. This affects the function spl2swnvmemgetmacaddress of the file drivers/net/ethernet/sunplus/spl2swdriver.c of the component BPF. The manipulation leads to use after free. It is recommended to apply a patch to fix this issue. T...

Linux kernel 资源管理错误漏洞

Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux. A resource management error vulnerability exists in the Linux kernel, which originates from an affected function spl2swnvmemgetmacaddress in the drivers/net/ethernet/sunplus/spl2swdriver.c file of the...

PT-2022-7349 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux Kernel affected versions not specified Description: A critical vulnerability has been found in the Linux Kernel, affecting the spl2sw nvmem get mac address function in the drivers/net/ethernet/sunplus/spl2sw driver.c file of the BPF...

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1505)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Scientific Linux Security Update : kernel on SL6.x i386/x86_64 (20150722)

A flaw was found in the way Linux kernel's Transparent Huge Pages THP implementation handled non-huge page migration. A local, unprivileged user could use this flaw to crash the kernel by migrating transparent hugepages. CVE-2014-3940, Moderate A buffer overflow flaw was found in the way the Linu...

Kernel: HID: off by one error in various _report_fixup routines

Multiple out-of-bounds write flaws were found in the way the Cherry Cymotion keyboard driver, KYE/Genius device drivers, Logitech device drivers, Monterey Genius KB29E keyboard driver, Petalynx Maxter remote control driver, and Sunplus wireless desktop driver handled HID reports with an invalid...

Scientific Linux Security Update : kernel on SL7.x x86_64 (20141209)

A flaw was found in the way the Linux kernel's SCTP implementation handled the association's output queue. A remote attacker could send specially crafted packets that would cause the system to use an excessive amount of memory, leading to a denial of service. CVE-2014-3688, Important Two flaws we...

Kernel: HID: off by one error in various _report_fixup routines

Multiple out-of-bounds write flaws were found in the way the Cherry Cymotion keyboard driver, KYE/Genius device drivers, Logitech device drivers, Monterey Genius KB29E keyboard driver, Petalynx Maxter remote control driver, and Sunplus wireless desktop driver handled HID reports with an invalid...

UBUNTU-CVE-2014-3184

The reportfixup functions in the HID subsystem in the Linux kernel before 3.16.2 might allow physically proximate attackers to cause a denial of service out-of-bounds write via a crafted device that provides a small report descriptor, related to 1 drivers/hid/hid-cherry.c, 2 drivers/hid/hid-kye.c...

VLC Media Player 'AMV' Denial of Service Vulnerability - Windows

VLC Media Player is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...