CVE-2026-46301

In the Linux kernel, the following vulnerability has been resolved: spi: topcliff-pch: fix use-after-free on unbind Give the driver a chance to flush its queue before releasing the DMA buffers on driver unbind...

PT-2026-47368

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A NULL-pointer dereference occurs during driver unbind in the spi: s3c64xx component. This happens because a DMA channel deallocation was incorrectly left in the remove function after th...

CVE-2026-46219

In the Linux kernel, the following vulnerability has been resolved: spi: mpc52xx: fix use-after-free on unbind The state machine work is scheduled by the interrupt handler and therefore needs to be cancelled after disabling interrupts to avoid a potential use-after-free...

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the fact that the resource lifecycle of the spi ch341 driver device is bound to the parent USB...

EUVD-2026-32292

In the Linux kernel, the following vulnerability has been resolved: spi: imx: fix use-after-free on unbind The SPI subsystem frees the controller and any subsystem allocated driver data as part of deregistration unless the allocation is device managed. Take another reference before deregistering...

CVE-2026-45996

spi: imx: fix use-after-free on unbind...

CVE-2026-43189 media: v4l2-async: Fix error handling on steps after finding a match

In the Linux kernel, the following vulnerability has been resolved: media: v4l2-async: Fix error handling on steps after finding a match Once an async connection is found to be matching with an fwnode, a sub-device may be registered in case it wasn't already, its bound operation is called,...

CVE-2026-31725

A flaw was found in the Linux kernel's usb: gadget: fecm component. When a USB gadget function unbinds, the associated netdevice may not be properly de-parented from the destroyed gadget device. This can lead to dangling symbolic links in the /sys/class/net/ directory, potentially causing issues...

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the rt2x00usb driver. In this driver, the USB anchor’s lifecycle is bound to the parent device...

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Fixed device use-after-free issues during unbind operations. A recent change addressed device reference leaks when querying DRM platform device driver data during bind operations. However, a partial fix previously...

Linux Distros Unpatched Vulnerability : CVE-2022-50759

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - media: i2c: ov5648: Free V4L2 fwnode data on unbind The V4L2 fwnode data structure doesn't get freed on unbind, which leads to a memleak. CVE-2022-50759 Note th...

CVE-2025-68327

Summary (CVE-2025-68327) The Linux kernel fix mitigates a synchronous external abort in the Renesas usbhs driver when unbinding after a specific gadget configuration (Renesas RZ/G3S). The issue occurred because usbhs_sys_function_pullup could access IP registers after the USBHS clocks were disabl...

CVE-2025-68327 usb: renesas_usbhs: Fix synchronous external abort on unbind

In the Linux kernel, the following vulnerability has been resolved: usb: renesasusbhs: Fix synchronous external abort on unbind A synchronous external abort occurs on the Renesas RZ/G3S SoC if unbind is executed after the configuration sequence described above: modprobe usbfecm modprobe...

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-991133)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991133 advisory. In the Linux kernel, the following vulnerability has been resolved: PM / devfreq: rk3399dmc: Disable edev on remove Otherwise we hit an unablanced enable-count when...

CVE-2022-50636

In the Linux kernel, the following vulnerability has been resolved: PCI: Fix pcideviceispresent for VFs by checking PF pcideviceispresent previously didn't work for VFs because it reads the Vendor and Device ID, which are 0xffff for VFs, which looks like they aren't present. Check the PF instead...

Linux Distros Unpatched Vulnerability : CVE-2023-53758

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - spi: atmel-quadspi: Free resources even if runtime resume failed in .remove An early error exit in atmelqspiremove doesn't prevent the device unbind. So this...

CVE-2023-53758

In the Linux kernel, the following vulnerability has been resolved: spi: atmel-quadspi: Free resources even if runtime resume failed in .remove An early error exit in atmelqspiremove doesn't prevent the device unbind. So this results in an spi controller with an unbound parent and unmapped regist...

CVE-2025-39906

The CVE-2025-39906 issue affects the Linux kernel drm/amd/display code. A fix removes the OEM I2C adapter on finish, addressing a bug where unbinding the GPU left the OEM I2C adapter registered, which could lead to a NULL pointer dereference when applications access the invalid device. The fix is...

PT-2025-44382

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's USB gadget functionality, specifically within the f ncm module. After a bind/unbind cycle, the ncm-notify req variable can become stale. A subsequent...

CVE-2025-38668

In the Linux kernel, the following vulnerability has been resolved: regulator: core: fix NULL dereference on unbind due to stale coupling data Failing to reset couplingdesc.ncoupled after freeing coupledrdevs can lead to NULL pointer dereference when regulators are accessed post-unbind. This can...