Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: thermal/core: A memory leak was fixed in thermalcoolingdeviceregister. I encountered a memory leak during the fault injection test. The unreferenced object is: 0xffff888010080000 size: 264312. The details of the memory leak are a...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988872)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988872 advisory. In the Linux kernel, the following vulnerability has been resolved: thermal/core: Fix memory leak in thermalcoolingdeviceregister I got memory leak as follows when...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987027)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987027 advisory. In the Linux kernel, the following vulnerability has been resolved: thermal/core: Fix memory leak in thermalcoolingdeviceregister I got memory leak as follows when...

EUVD-2023-59708

Malicious code in bioql PyPI...

EUVD-2022-54761

Malicious code in bioql PyPI...

CVE-2025-38354 drm/msm/gpu: Fix crash when throttling GPU immediately during boot

In the Linux kernel, the following vulnerability has been resolved: drm/msm/gpu: Fix crash when throttling GPU immediately during boot There is a small chance that the GPU is already hot during boot. In that case, the call to ofdevfreqcoolingregister will immediately try to apply devfreq cooling,...

CVE-2025-38354 drm/msm/gpu: Fix crash when throttling GPU immediately during boot

In the Linux kernel, the following vulnerability has been resolved: drm/msm/gpu: Fix crash when throttling GPU immediately during boot There is a small chance that the GPU is already hot during boot. In that case, the call to ofdevfreqcoolingregister will immediately try to apply devfreq cooling,...

CVE-2022-49945 hwmon: (gpio-fan) Fix array out of bounds access

In the Linux kernel, the following vulnerability has been resolved: hwmon: gpio-fan Fix array out of bounds access The driver does not check if the cooling state passed to gpiofansetcurstate exceeds the maximum cooling state as stored in fandata-numspeeds. Since the cooling state is later used as...

CVE-2022-49945

The CVE-2022-49945 issue affects the Linux kernel hwmon gpio-fan driver. The vulnerability occurs because gpio_fan_set_cur_state() does not validate the cooling state against fan_data->num_speeds, allowing an out-of-bounds index in set_fan_speed(). Practical impact is potential kernel oops or ...

Vulnerability of the `__thermal_cooling_device_register()` and `thermal_cooling_deviceDestroySysfs()` functions in the Linux operating system, allowing a hacker to trigger a service failure

The vulnerability of the thermalcoolingdeviceregister and thermalcoolingdeviceDestroySysfs functions in the Linux operating system is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

CVE-2022-20569

In thermalcoolingdevicestatsupdate of thermalsysfs.c, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege in the kernel with System execution privileges needed. User interaction is not needed for exploitation.Product:...

CVE-2023-53012

In the Linux kernel, the following vulnerability has been resolved: thermal: core: call putdevice only after deviceregister fails putdevice shouldn't be called before a prior call to deviceregister. thermalcoolingdeviceregister doesn't follow that properly and needs fixing. Also...

CVE-2023-53012

CVE-2023-53012 is documented across multiple connected advisories as a Linux kernel vulnerability affecting the thermal subsystem. The issue arises from calling put_device() before a successful device_register(), specifically in __thermal_cooling_device_register(), and is accompanied by unnecessa...

CVE-2023-53012 thermal: core: call put_device() only after device_register() fails

In the Linux kernel, the following vulnerability has been resolved: thermal: core: call putdevice only after deviceregister fails putdevice shouldn't be called before a prior call to deviceregister. thermalcoolingdeviceregister doesn't follow that properly and needs fixing. Also...

DEBIAN-CVE-2022-49468

In the Linux kernel, the following vulnerability has been resolved: thermal/core: Fix memory leak in thermalcoolingdeviceregister I got memory leak as follows when doing fault injection test: unreferenced object 0xffff888010080000 size 264312: comm "182", pid 102533, jiffies 4296434960 age 10.100...

CVE-2022-49468

In the Linux kernel, the following vulnerability has been resolved: thermal/core: Fix memory leak in thermalcoolingdeviceregister I got memory leak as follows when doing fault injection test: unreferenced object 0xffff888010080000 size 264312: comm "182", pid 102533, jiffies 4296434960 age 10.100...

UBUNTU-CVE-2022-49468

In the Linux kernel, the following vulnerability has been resolved: thermal/core: Fix memory leak in thermalcoolingdeviceregister I got memory leak as follows when doing fault injection test: unreferenced object 0xffff888010080000 size 264312: comm "182", pid 102533, jiffies 4296434960 age 10.100...

CVE-2022-49468 thermal/core: Fix memory leak in __thermal_cooling_device_register()

In the Linux kernel, the following vulnerability has been resolved: thermal/core: Fix memory leak in thermalcoolingdeviceregister I got memory leak as follows when doing fault injection test: unreferenced object 0xffff888010080000 size 264312: comm "182", pid 102533, jiffies 4296434960 age 10.100...

CVE-2022-49468

Summary (CVE-2022-49468) : In the Linux kernel, a memory leak was fixed in thermal/core due to __thermal_cooling_device_register() allocating memory for sysfs trailing paths. The unreferenced object trace and backtrace show allocation in thermal_cooling_device_setup_sysfs() that is not freed unle...

CVE-2022-49468

In the Linux kernel, the following vulnerability has been resolved: thermal/core: Fix memory leak in thermalcoolingdeviceregister I got memory leak as follows when doing fault injection test: unreferenced object 0xffff888010080000 size 264312: comm "182", pid 102533, jiffies 4296434960 age 10.100...